Machine Learning Analysis of Memory Images for Process Characterization and Malware Detection

被引：0

作者：

Lyles, Seth ^{[1
]}

Desantis, Mark ^{[1
]}

Donaldson, John ^{[1
]}

Gallegos, Micaela ^{[1
]}

Nyholm, Hannah ^{[1
]}

Taylor, Claire ^{[1
]}

Monteith, Kristine ^{[1
]}

机构：

[1] Lawrence Livermore Natl Lab, Livermore, CA USA

来源：

52ND ANNUAL IEEE/IFIP INTERNATIONAL CONFERENCE ON DEPENDABLE SYSTEMS AND NETWORKS WORKSHOP VOLUME (DSN-W 2022) | 2022年

关键词：

D O I：

10.1109/DSN-W54100.2022.00035

中图分类号：

TP3 [计算技术、计算机技术];

学科分类号：

0812 ;

摘要：

As signature-based malware detection techniques mature, malware authors have been forced to leave fewer footprints on target machines. Malicious activity can be conducted by chaining together benign, built-in functions in subversive ways. Because the functions are native to the host system, attackers can slip under the radar of signature filtering tools such as YARA. To address this challenge, we utilize the Volatility memory forensics framework to measure and characterize typical in-memory behavior, then observe the deviations from normal use that may indicate a compromise. We demonstrate that processes have characteristic memory footprints, and that machine learning models can flag malicious behavior as anomalous.

引用

页码：162 / 169

页数：8

共 50 条

[1] Analysis of machine learning models for malware detection
Rahul
Kedia, Priyansh
Sarangi, Subrat
Monika
[J]. JOURNAL OF DISCRETE MATHEMATICAL SCIENCES & CRYPTOGRAPHY, 2020, 23 (02): : 395 - 407
[2] ANALYSIS OF MACHINE LEARNING METHODS ON MALWARE DETECTION
Aydogan, Emre
Sen, Sevil
[J]. 2014 22ND SIGNAL PROCESSING AND COMMUNICATIONS APPLICATIONS CONFERENCE (SIU), 2014, : 2066 - 2069
[3] Malware Detection using Machine Learning Based Analysis of Virtual Memory Access Patterns
Xu, Zhixing
Ray, Sayak
Subramanyan, Pramod
Malik, Sharad
[J]. PROCEEDINGS OF THE 2017 DESIGN, AUTOMATION & TEST IN EUROPE CONFERENCE & EXHIBITION (DATE), 2017, : 169 - 174
[4] Malware Analysis and Detection Using Machine Learning Algorithms
Akhtar, Muhammad Shoaib
Feng, Tao
[J]. SYMMETRY-BASEL, 2022, 14 (11):
[5] A Novel Malware Analysis for Malware Detection and Classification using Machine Learning Algorithms
Sethi, Kamalakanta
Chaudhary, Shankar Kumar
Tripathy, Bata Krishan
Bera, Padmalochan
[J]. SIN'17: PROCEEDINGS OF THE 10TH INTERNATIONAL CONFERENCE ON SECURITY OF INFORMATION AND NETWORKS, 2017, : 107 - 113
[6] Application of Machine Learning in Malware Detection
Van Quynh, Trinh
Hien, Vu Thanh
Nguyen, Vu Thanh
Bao, Huynh Quoc
[J]. FUTURE DATA AND SECURITY ENGINEERING. BIG DATA, SECURITY AND PRIVACY, SMART CITY AND INDUSTRY 4.0 APPLICATIONS, FDSE 2022, 2022, 1688 : 362 - 374
[7] IoT Malware Detection with Machine Learning
Buttyan, Levente
Ferenc, Rudolf
[J]. ERCIM NEWS, 2022, (129): : 17 - 19
[8] A Novel Malware Analysis Framework for Malware Detection and Classification using Machine Learning Approach
Sethi, Kamalakanta
Chaudhary, Shankar Kumar
Tripathy, Bata Krishan
Bera, Padmalochan
[J]. ICDCN'18: PROCEEDINGS OF THE 19TH INTERNATIONAL CONFERENCE ON DISTRIBUTED COMPUTING AND NETWORKING, 2018,
[9] A Comparative Analysis of Machine Learning Techniques for Classification and Detection of Malware
Al-Janabi, Maryam
Altamimi, Ahmad Mousa
[J]. 2020 21ST INTERNATIONAL ARAB CONFERENCE ON INFORMATION TECHNOLOGY (ACIT), 2020,
[10] Applications of Machine Learning in Malware Detection
Vaduva, Jan-Alexandru
Pasca, Vlad-Raul
Florea, Iulia-Maria
Rughinis, Razvan
[J]. NEW TECHNOLOGIES AND REDESIGNING LEARNING SPACES, VOL II, 2019, : 286 - 293

← 1 2 3 4 5 →