2021
DOI: 10.3390/sym13071107
|View full text |Cite
|
Sign up to set email alerts
|

Android Malware Detection Using TCN with Bytecode Image

Abstract: With the rapid increase in the number of Android malware, the image-based analysis method has become an effective way to defend against symmetric encryption and confusing malware. At present, the existing Android malware bytecode image detection method, based on a convolution neural network (CNN), relies on a single DEX file feature and requires a large amount of computation. To solve these problems, we combine the visual features of the XML file with the data section of the DEX file for the first time, and pr… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
1
1
1
1

Citation Types

0
17
0

Year Published

2022
2022
2024
2024

Publication Types

Select...
4
3

Relationship

0
7

Authors

Journals

citations
Cited by 40 publications
(17 citation statements)
references
References 23 publications
0
17
0
Order By: Relevance
“…They used a CNN model, which has a precision of 98.3%, to classify malware without relying on any special features. In [ 22 , 24 , 41 , 42 ] CNN and TCN models were used to classify malware with texture features. The proposed deep learning models directly collect the malware images for classification without selecting the special features using descriptors.…”
Section: Resultsmentioning
confidence: 99%
See 1 more Smart Citation
“…They used a CNN model, which has a precision of 98.3%, to classify malware without relying on any special features. In [ 22 , 24 , 41 , 42 ] CNN and TCN models were used to classify malware with texture features. The proposed deep learning models directly collect the malware images for classification without selecting the special features using descriptors.…”
Section: Resultsmentioning
confidence: 99%
“…Gradient boosting [ 23 ] uses an ensemble of weak prediction models, usually decision trees, to classify malware. A temporal convolutional network (TCN) [ 24 ] is influenced by convolutional architectures, which combine easiness, vector autoregression prediction, and enormously long memory for malware classification. A general meta-approach to machine learning called ensemble learning combines the predictions from various models to improve malware classification performance [ 25 ].…”
Section: Related Workmentioning
confidence: 99%
“…When it comes to extracting images from DEX files, reference [15] used the same method, though they only used the data segment. Reference [16] created grayscale graphics by combining the data segment of DEX files with Android Computational Intelligence and Neuroscience Manifest.xml entries. Such inputs are converted into a temporal convolutional network (TCN) in order to detect mobile malware.…”
Section: Literature Reviewmentioning
confidence: 99%
“…Finally, the hybrid method is proposed to increase classification success and eliminate the limitations of static and dynamic methods. However, it requires more processing time and memory space, making it very difficult to use on mobile devices with limited resources 16 . In addition to these main approaches, probabilistic detection methods are also available 17 .…”
Section: Introductionmentioning
confidence: 99%
“…However, it requires more processing time and memory space, making it very difficult to use on mobile devices with limited resources. 16 In addition to these main approaches, probabilistic detection methods are also available. 17 Probabilistic estimation is made based on different parameters such as compute load, memory usage, and comprehensibility.…”
mentioning
confidence: 99%