A Study on Variant Malware Detection Techniques Using Static and Dynamic Features

被引:7
|
作者
Kang, Jinsu [1 ]
Won, Yoojae [1 ]
机构
[1] Chungnam Natl Univ, Dept Comp Sci Engn, Daejeon, South Korea
来源
JOURNAL OF INFORMATION PROCESSING SYSTEMS | 2020年 / 16卷 / 04期
关键词
Computer Security; Dynamic Analysis Machine Learning; Metamorphic; Polymorphic; Static Analysis; Windows Malware;
D O I
10.3745/JIPS.03.0145
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
The amount of malware increases exponentially every day and poses a threat to networks and operating systems. Most new malware is a variant of existing malware. It is difficult to deal with numerous malware variants since they bypass the existing signature-based malware detection method. Thus, research on automated methods of detecting and processing variant malware has been continuously conducted. This report proposes a method of extracting feature data from files and detecting malware using machine learning. Feature data were extracted from 7,000 malware and 3,000 benign files using static and dynamic malware analysis tools. A malware classification model was constructed using multiple DNN, XGBoost, and RandomForest layers and the performance was analyzed. The proposed method achieved up to 96.3% accuracy.
引用
收藏
页码:882 / 895
页数:14
相关论文
共 50 条
  • [41] A Hybrid Static Tool to Increase the Usability and Scalability of Dynamic Detection of Malware
    Kim, Danny
    Mirsky, Daniel
    Majlesi-Kupaei, Amir
    Barua, Rajeev
    PROCEEDINGS OF THE 2018 13TH INTERNATIONAL CONFERENCE ON MALICIOUS AND UNWANTED SOFTWARE (MALWARE 2018), 2018, : 115 - 123
  • [42] Evaluation of Supervised Machine Learning Techniques for Dynamic Malware Detection
    Zhao, Hongwei
    Li, Mingzhao
    Wu, Taiqi
    Yang, Fei
    INTERNATIONAL JOURNAL OF COMPUTATIONAL INTELLIGENCE SYSTEMS, 2018, 11 (01) : 1153 - 1169
  • [43] Discovering optimal features using static analysis and a genetic search based method for Android malware detection
    Firdaus, Ahmad
    Anuar, Nor Badrul
    Karim, Ahmad
    Ab Razak, Mohd Faizal
    FRONTIERS OF INFORMATION TECHNOLOGY & ELECTRONIC ENGINEERING, 2018, 19 (06) : 712 - 736
  • [44] DockerWatch: a two-phase hybrid detection of malware using various static features in container cloud
    Wang, Yulong
    Wang, Qixu
    Qin, Xue
    Chen, Xingshu
    Xin, Bangzhou
    Yang, Run
    SOFT COMPUTING, 2023, 27 (02) : 1015 - 1031
  • [45] Evaluation of Supervised Machine Learning Techniques for Dynamic Malware Detection
    Hongwei Zhao
    Mingzhao Li
    Taiqi Wu
    Fei Yang
    International Journal of Computational Intelligence Systems, 2018, 11 : 1153 - 1169
  • [46] Discovering optimal features using static analysis and a genetic search based method for Android malware detection
    Ahmad Firdaus
    Nor Badrul Anuar
    Ahmad Karim
    Mohd Faizal Ab Razak
    Frontiers of Information Technology & Electronic Engineering, 2018, 19 : 712 - 736
  • [47] DockerWatch: a two-phase hybrid detection of malware using various static features in container cloud
    Yulong Wang
    Qixu Wang
    Xue Qin
    Xingshu Chen
    Bangzhou Xin
    Run Yang
    Soft Computing, 2023, 27 : 1015 - 1031
  • [48] Detection of Android Malware: Combined with Static Analysis and. Dynamic Analysis
    Su, Ming-Yang
    Fung, Kek-Tung
    Huang, Yu-Hao
    Kang, Ming-Zhi
    Chung, Yen-Heng
    2016 INTERNATIONAL CONFERENCE ON HIGH PERFORMANCE COMPUTING & SIMULATION (HPCS 2016), 2016, : 1013 - 1018
  • [49] Integrating Static and Dynamic Malware Analysis Using Machine Learning
    Mangialardo, R. J.
    Duarte, J. C.
    IEEE LATIN AMERICA TRANSACTIONS, 2015, 13 (09) : 3080 - 3087
  • [50] Dynamic Malware Detection using API Similarity
    Alkhateeb, Ehab M.
    2017 IEEE INTERNATIONAL CONFERENCE ON COMPUTER AND INFORMATION TECHNOLOGY (CIT), 2017, : 297 - 301
12345