Heuristic Malware Detection Mechanism Based on Executable Files Static Analysis

Kozachok, A. V.; Bochkov, Maxim V.; Kochetkov, E. V.

doi:10.18287/1613-0073-2017-1901-132-139

Cited by 2 publications

(2 citation statements)

References 4 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Since malware detection is typically a classification task, various classical ML-based classifiers have been employed, such as logistic regression [135], SVMs [136], [137], knearest neighbors (k-NNs) [138], [139], decision trees [140], RFs [141], Naïve Bayes classifiers [142]. They operate in various feature spaces, containing either static features, such as strings (e.g., filenames, code fragments), N-grams, API calls, entropy, malware representation as a gray scale image, function call graphs (FCGs), CFGs, or dynamic ones: values of the memory contents at runtime, dynamic instruction traces (sequences of processor instructions called during the execution of a program), OpCodes [143], network traffic parameters or API call traces [16].…”

Section: A Shallow Machine Learning Algorithmsmentioning

confidence: 99%

Tight Arms Race: Overview of Current Malware Threats and Trends in Their Detection

Caviglione

Choraś

Corona³

et al. 2021

IEEE Access

100

View full text Add to dashboard Cite

Section: A Shallow Machine Learning Algorithmsmentioning

confidence: 99%

Tight Arms Race: Overview of Current Malware Threats and Trends in Their Detection

Caviglione

Choraś

Corona³

et al. 2021

IEEE Access

100

View full text Add to dashboard Cite

“…Combining these static and dynamic features to detect malicious software can achieve higher performance [24]. Models used for training include logistic regression [25], SVM [26], k-nearest neighbor (k-NN) [27], decision tree [28], random forest [29], and so on. The newest research on the machine learning-based malware detection focus on innovative feature spaces.…”

Section: Shallow Machine Learning Based Malware Detection Approachesmentioning

confidence: 99%

MalCaps: A Capsule Network Based Model for the Malware Classification

Zhang

Chen

et al. 2021

Processes

View full text Add to dashboard Cite

The research on malware detection enabled by deep learning has become a hot issue in the field of network security. The existing malware detection methods based on deep learning suffer from some issues, such as weak ability of deep feature extraction, relatively complex model, and insufficient ability of model generalization. Traditional deep learning architectures, such as convolutional neural networks (CNNs) variants, do not consider the spatial hierarchies between features, and lose some information on the precise position of a feature within the feature region, which is crucial for a malware file which has specific sections. In this paper, we draw on the idea of image classification in the field of computer vision and propose a novel malware detection method based on capsule network architecture with hyper-parameter optimized convolutional layers (MalCaps), which overcomes CNNs limitations by removing the need for a pooling layer and introduces capsule layers. Firstly, the malware is transformed into a grayscale image. Then, the dynamic routing-based capsule network is used to detect and classify the image. Without advanced feature extraction and with only a small number of labeled samples, the presented method is tested on an unbalanced Microsoft Malware Classification Challenge (MMCC) dataset and experimental results produce testing accuracy of 99.34%, improving on a number of traditional deep learning models posited in recent malware classification literature.

show abstract

Heuristic Malware Detection Mechanism Based on Executable Files Static Analysis

Cited by 2 publications

References 4 publications

Tight Arms Race: Overview of Current Malware Threats and Trends in Their Detection

Tight Arms Race: Overview of Current Malware Threats and Trends in Their Detection

MalCaps: A Capsule Network Based Model for the Malware Classification

Contact Info

Product

Resources

About