MPass: Bypassing Learning-based Static Malware Detectors

被引:0
|
作者
Wang, Jialai [1 ]
Qu, Wenjie [2 ]
Rong, Yi [1 ]
Qiu, Han [1 ]
Li, Qi [1 ]
Li, Zongpeng [1 ,3 ]
Zhang, Chao [1 ,4 ]
机构
[1] Tsinghua Univ, Beijing, Peoples R China
[2] Huazhong Univ Sci & Technol, Wuhan, Peoples R China
[3] Quan Cheng Lab, Beijing, Peoples R China
[4] Zhongguancun Lab, Beijing, Peoples R China
来源
2023 60TH ACM/IEEE DESIGN AUTOMATION CONFERENCE, DAC | 2023年
基金
中国国家自然科学基金;
关键词
D O I
10.1109/DAC56929.2023.10247858
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
Machine learning (ML) based static malware detectors are widely deployed, but vulnerable to adversarial attacks. Unlike images or texts, tiny modifications to malware samples would significantly compromise their functionality. Consequently, existing attacks against images or texts will be significantly restricted when being deployed on malware detectors. In this work, we propose a hard-label black-box attack MPass against ML-based detectors. MPass employs a problemspace explainability method to locate critical positions of malware, applies adversarial modifications to such positions, and utilizes a runtime recovery technique to preserve the functionality. Experiments show MPass outperforms existing solutions and bypasses both state-of-the-art offline models and commercial ML-based antivirus products.
引用
收藏
页数:6
相关论文
共 50 条
  • [21] On Distribution Shift in Learning-based Bug Detectors
    He, Jingxuan
    Beurer-Kellner, Luca
    Vechev, Martin
    INTERNATIONAL CONFERENCE ON MACHINE LEARNING, VOL 162, 2022,
  • [22] Towards Deep Learning-Based Approach for Detecting Android Malware
    Booz, Jarrett
    McGiff, Josh
    Hatcher, William
    Yu, Wei
    Nguyen, James
    Lu, Chao
    INTERNATIONAL JOURNAL OF SOFTWARE INNOVATION, 2019, 7 (04) : 1 - 24
  • [23] A lightweight deep learning-based android malware detection framework
    Ma, Runze
    Yin, Shangnan
    Feng, Xia
    Zhu, Huijuan
    Sheng, Victor S.
    EXPERT SYSTEMS WITH APPLICATIONS, 2024, 255
  • [24] Leveraging Machine Learning-Based PDF Malware Detection in Snort
    Chbib, Fadlallah
    Mustafa, Ali
    Khatoun, Rida
    International Conference on Electrical, Computer, Communications and Mechatronics Engineering, ICECCME 2024, 2024,
  • [25] A NOVEL AND EFFICIENT SEQUENTIAL LEARNING-BASED MALWARE CLASSIFICATION MODEL
    Bensalem, Zine El Abidine
    Benkhaddra, Ilyas
    Setitra, Mohamed Ali
    Fan, Mingyu
    2022 19TH INTERNATIONAL COMPUTER CONFERENCE ON WAVELET ACTIVE MEDIA TECHNOLOGY AND INFORMATION PROCESSING (ICCWAMTIP), 2022,
  • [26] On the Influence of Image Settings in Deep Learning-based Malware Detection
    Mercaldo, Francesco
    Martinelli, Fabio
    Santone, Antonella
    Vinod, P.
    PROCEEDINGS OF THE 8TH INTERNATIONAL CONFERENCE ON INFORMATION SYSTEMS SECURITY AND PRIVACY (ICISSP), 2021, : 669 - 676
  • [27] Transferability of Adversarial Examples in Machine Learning-based Malware Detection
    Hu, Yang
    Wang, Ning
    Chen, Yimin
    Lou, Wenjing
    Hou, Y. Thomas
    2022 IEEE CONFERENCE ON COMMUNICATIONS AND NETWORK SECURITY (CNS), 2022, : 28 - 36
  • [28] An Adversarial Learning-based Tor Malware Traffic Detection Model
    Hu, Xiaoyan
    Gao, Yishu
    Cheng, Guang
    Wu, Hua
    Li, Ruidong
    2022 IEEE GLOBAL COMMUNICATIONS CONFERENCE (GLOBECOM 2022), 2022, : 74 - 79
  • [29] A survey on machine learning-based malware detection in executable files
    Singh, Jagsir
    Singh, Jaswinder
    JOURNAL OF SYSTEMS ARCHITECTURE, 2021, 112
  • [30] Deep Learning-Based Malware Detection Using PE Headers
    Nakrosis, Arnas
    Lagzdinyte-Budnike, Ingrida
    Paulauskaite-Taraseviene, Agne
    Paulikas, Giedrius
    Dapkus, Paulius
    INFORMATION AND SOFTWARE TECHNOLOGIES, ICIST 2022, 2022, 1665 : 3 - 18
12345