A Novel Malware Classification Method Based on Crucial Behavior

被引：8

作者：

Xiao, Fei ^{[1
,2
]}

Sun, Yi ^{[1
,2
]}

Du, Donggao ^{[1
,2
]}

Li, Xuelei ^{[3
,4
]}

Luo, Min ^{[5
]}

机构：

[1] Beijing Univ Posts & Telecommun, Network & Informat Ctr, Inst Network Technol, Beijing 100876, Peoples R China

[2] Beijing Univ Posts & Telecommun, Natl Engn Lab Mobile Network Secur 2013 2685, Beijing 100876, Peoples R China

[3] Inspur Elect Informat Ind Co Ltd, Jinan 250000, Peoples R China

[4] State Key Lab High End Server & Storage Technol, Jinan 250000, Peoples R China

[5] Ernst & Young, Tokyo, Japan

来源：

MATHEMATICAL PROBLEMS IN ENGINEERING | 2020年 / 2020卷 / 2020期

基金：

中国国家自然科学基金;

关键词：

Inverse problems;

D O I：

10.1155/2020/6804290

中图分类号：

T [工业技术];

学科分类号：

08 ;

摘要：

Recently, some graph-based methods have been proposed for malware detection. However, current malware is generally characterized by sophisticated behaviors, which makes graph-based malware detection extremely challenging. To address this issue, we propose a graph repartition algorithm by transforming API call graphs into fragment behaviors based on programs' dynamic execution traces. The proposed algorithm relies on the N-order subgraph (NSG) for constructing the appropriate fragment behavior. Moreover, we improve the term frequency-inverse document frequency- (TF-IDF-) like measure and information gain (IG) to extract the crucial N-order subgraph (CNSG). This novel behavioral representation and improved extraction method can accurately represent crucial behaviors of malware. Experiments on 4,400 samples demonstrate that the proposed method achieves a high accuracy of 99.75% in malware detection and promising performance of 95.27% in malware classification.

引用

页数：12

共 50 条

[21] Behavior Classification based Self-learning Mobile Malware Detection
Guo, Dai-Fei
Sui, Ai-Fen
Shi, Yi-Jie
Hu, Jian-Jun
Lin, Guan-Zhou
Guo, Tao
[J]. JOURNAL OF COMPUTERS, 2014, 9 (04) : 851 - 858
[22] Malware Classification Based on the Behavior Analysis and Back Propagation Neural Network
Pan, Zhi-Peng
Feng, Chao
Tang, Chao-Jing
[J]. 3RD ANNUAL INTERNATIONAL CONFERENCE ON INFORMATION TECHNOLOGY AND APPLICATIONS (ITA 2016), 2016, 7
[23] A NOVEL AND EFFICIENT SEQUENTIAL LEARNING-BASED MALWARE CLASSIFICATION MODEL
Bensalem, Zine El Abidine
Benkhaddra, Ilyas
Setitra, Mohamed Ali
Fan, Mingyu
[J]. 2022 19TH INTERNATIONAL COMPUTER CONFERENCE ON WAVELET ACTIVE MEDIA TECHNOLOGY AND INFORMATION PROCESSING (ICCWAMTIP), 2022,
[24] A Novel Malware Traffic Classification Method using Semi-Supervised Learning
Ning, Jinhui
Wang, Yu
Yang, Jie
Gacanin, Haris
Ci, Song
[J]. 2021 IEEE 94TH VEHICULAR TECHNOLOGY CONFERENCE (VTC2021-FALL), 2021,
[25] A Novel Neural Network-Based Malware Severity Classification System
Li, Miles Q.
Fung, Benjamin C. M.
[J]. SOFTWARE TECHNOLOGIES, ICSOFT 2021, 2022, 1622 : 218 - 232
[26] A novel malware classification and augmentation model based on convolutional neural network
Tekerek, Adem
Yapici, Muhammed Mutlu
[J]. COMPUTERS & SECURITY, 2022, 112
[27] A Novel and Efficient Sequential Learning-Based Malware Classification Model
Abidine Bensalem, Zine El
Benkhaddra, Ilyas
Setitra, Mohamed Ali
Fan, Mingyu
[J]. 2022 19th International Computer Conference on Wavelet Active Media Technology and Information Processing, ICCWAMTIP 2022, 2022,
[28] MALDC: a depth detection method for malware based on behavior chains
Zhang, Hao
Zhang, Wenjun
Lv, Zhihan
Sangaiah, Arun Kumar
Huang, Tao
Chilamkurti, Naveen
[J]. WORLD WIDE WEB-INTERNET AND WEB INFORMATION SYSTEMS, 2020, 23 (02): : 991 - 1010
[29] MALDC: a depth detection method for malware based on behavior chains
Hao Zhang
Wenjun Zhang
Zhihan Lv
Arun Kumar Sangaiah
Tao Huang
Naveen Chilamkurti
[J]. World Wide Web, 2020, 23 : 991 - 1010
[30] Malware Classification Method Based on Word Vector of Bytes and Multilayer Perception
Qiao, Yanchen
Zhang, Bin
Zhang, Weizhe
[J]. ICC 2020 - 2020 IEEE INTERNATIONAL CONFERENCE ON COMMUNICATIONS (ICC), 2020,

← 1 2 3 4 5 →