MPass: Bypassing Learning-based Static Malware Detectors

被引:0
|
作者
Wang, Jialai [1 ]
Qu, Wenjie [2 ]
Rong, Yi [1 ]
Qiu, Han [1 ]
Li, Qi [1 ]
Li, Zongpeng [1 ,3 ]
Zhang, Chao [1 ,4 ]
机构
[1] Tsinghua Univ, Beijing, Peoples R China
[2] Huazhong Univ Sci & Technol, Wuhan, Peoples R China
[3] Quan Cheng Lab, Beijing, Peoples R China
[4] Zhongguancun Lab, Beijing, Peoples R China
来源
2023 60TH ACM/IEEE DESIGN AUTOMATION CONFERENCE, DAC | 2023年
基金
中国国家自然科学基金;
关键词
D O I
10.1109/DAC56929.2023.10247858
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
Machine learning (ML) based static malware detectors are widely deployed, but vulnerable to adversarial attacks. Unlike images or texts, tiny modifications to malware samples would significantly compromise their functionality. Consequently, existing attacks against images or texts will be significantly restricted when being deployed on malware detectors. In this work, we propose a hard-label black-box attack MPass against ML-based detectors. MPass employs a problemspace explainability method to locate critical positions of malware, applies adversarial modifications to such positions, and utilizes a runtime recovery technique to preserve the functionality. Experiments show MPass outperforms existing solutions and bypasses both state-of-the-art offline models and commercial ML-based antivirus products.
引用
收藏
页数:6
相关论文
共 50 条
  • [41] Rapidrift: Elementary Techniques to Improve Machine Learning-Based Malware Detection
    Manikandaraja, Abishek
    Aaby, Peter
    Pitropakis, Nikolaos
    COMPUTERS, 2023, 12 (10)
  • [42] DL-AMDet: Deep learning-based malware detector for android
    Nasser, Ahmed R.
    Hasan, Ahmed M.
    Humaidi, Amjad J.
    INTELLIGENT SYSTEMS WITH APPLICATIONS, 2024, 21
  • [43] An optimal deep learning-based framework for the detection and classification of android malware
    Bose, S. Jebin
    Kalaiselvi, R.
    JOURNAL OF INTELLIGENT & FUZZY SYSTEMS, 2023, 44 (06) : 9297 - 9310
  • [44] Malware Detection With Subspace Learning-Based One-Class Classification
    Al-Khshali, Hasan H.
    Ilyas, Muhammad
    Sohrab, Fahad
    Gabbouj, Moncef
    IEEE ACCESS, 2024, 12 : 81017 - 81029
  • [45] MAPAS: a practical deep learning-based android malware detection system
    Jinsung Kim
    Younghoon Ban
    Eunbyeol Ko
    Haehyun Cho
    Jeong Hyun Yi
    International Journal of Information Security, 2022, 21 : 725 - 738
  • [46] Deep Learning-Based Multi-classification for Malware Detection in IoT
    Wang, Zhiqiang
    Liu, Qian
    Wang, Zhuoyue
    Chi, Yaping
    JOURNAL OF CIRCUITS SYSTEMS AND COMPUTERS, 2022, 31 (17)
  • [47] A Comprehensive Study on Learning-Based PE Malware Family Classification Methods
    Ma, Yixuan
    Liu, Shuang
    Jiang, Jiajun
    Chen, Guanhong
    Li, Keqiu
    PROCEEDINGS OF THE 29TH ACM JOINT MEETING ON EUROPEAN SOFTWARE ENGINEERING CONFERENCE AND SYMPOSIUM ON THE FOUNDATIONS OF SOFTWARE ENGINEERING (ESEC/FSE '21), 2021, : 1314 - 1325
  • [48] Comparison of Three Deep Learning-based Approaches for IoT Malware Detection
    Khanh Duy Tung Nguyen
    Tran Minh Tuan
    Le, Son Hai
    Anh Phan Viet
    Ogawa, Mizuhito
    Nguyen Le Minh
    PROCEEDINGS OF 2018 10TH INTERNATIONAL CONFERENCE ON KNOWLEDGE AND SYSTEMS ENGINEERING (KSE), 2018, : 382 - 387
  • [49] MAPAS: a practical deep learning-based android malware detection system
    Kim, Jinsung
    Ban, Younghoon
    Ko, Eunbyeol
    Cho, Haehyun
    Yi, Jeong Hyun
    INTERNATIONAL JOURNAL OF INFORMATION SECURITY, 2022, 21 (04) : 725 - 738
  • [50] Leveraging Classification and Detection of Malware: A Robust Machine Learning-Based Framework
    Sethi, Lingaraj
    Patra, Prashanta Kumar
    PROCEEDINGS OF SECOND INTERNATIONAL CONFERENCE ON ADVANCES IN COMPUTER ENGINEERING AND COMMUNICATION SYSTEMS, ICACECS 2021, 2022, : 299 - 306
12345