Evolving Computational Intelligence System for Malware Detection

机译：不断发展的计算智能系统，用于恶意软件检测

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
相似文献
相关主题

摘要

Recent malware developments have the ability to remain hidden during infection and operation. They prevent analysis and removal, using various techniques, namely: obscure filenames, modification of file attributes, or operation under the pretense of legitimate programs and services. Also, the malware might attempt to subvert modern detection software, by hiding running processes, network connections and strings with malicious URLs or registry keys. The malware can go a step further and obfuscate the entire file with a packer, which is special software that takes the original malware file and compresses it, thus making all the original code and data unreadable. This paper proposes a novel approach, which uses minimum computational power and resources, to indentify Packed Executable (PEX), so as to spot the existence of malware software. It is an Evolving Computational Intelligence System for Malware Detection (ECISMD) which performs classification by Evolving Spiking Neural Networks (eSNN), in order to properly label a packed executable. On the other hand, it uses an Evolving Classification Function (ECF) for the detection of malwares and applies Genetic Algorithms to achieve ECF Optimization.

机译：最近的恶意软件开发具有在感染和操作期间保持隐藏状态的能力。它们使用各种技术来防止分析和删除，即：模糊的文件名，文件属性的修改或在合法程序和服务的伪装下进行的操作。此外，该恶意软件还可能通过隐藏正在运行的进程，网络连接以及带有恶意URL或注册表项的字符串来试图颠覆现代的检测软件。该恶意软件可以更进一步，并使用打包程序混淆整个文件，该打包程序是一种特殊软件，可以提取原始恶意软件文件并对其进行压缩，从而使所有原始代码和数据都不可读。本文提出了一种新颖的方法，该方法使用最小的计算能力和资源来识别打包可执行文件（PEX），从而发现恶意软件的存在。它是一个用于恶意软件检测的演化计算智能系统（ECISMD），它通过演化尖刺神经网络（eSNN）进行分类，以正确标记打包的可执行文件。另一方面，它使用进化分类函数（ECF）来检测恶意软件，并应用遗传算法来实现ECF优化。

著录项

来源
《Advanced information systems engineering workshops》|2014年|322-334|共13页
会议地点 Thessaloniki(GR)
作者
Konstantinos Demertzis; Lazaros Iliadis;
展开▼
作者单位

Democritus University of Thrace, Department of Forestry Management of the Environment Natural Resources, 193 Pandazidou st., 68200 N Orestiada, Greece;

Democritus University of Thrace, Department of Forestry Management of the Environment Natural Resources, 193 Pandazidou st., 68200 N Orestiada, Greece;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类
关键词
Security; Packed Executable; Malware; Evolving Spiking Neural Networks; Evolving Classification Function; Genetic Algorithm for Offline ECF Optimization;

机译：安全;打包可执行文件；恶意软件；不断发展的尖峰神经网络；分类功能的发展；离线ECF优化的遗传算法;

相似文献

外文文献
中文文献
专利

1. Preventing Unknown Malware Attack by using Intelligence intrusion Multi detection prevention Systems [J] . K.Kuppusamy, S.Murugan International journal of computer science and network security . 2009,第12期

机译：使用智能入侵多检测预防系统预防未知的恶意软件攻击
2. Preventing Unknown Malware Attack by using Intelligence intrusion Multi detection prevention Systems [J] . K.Kuppusamy, S.Murugan International journal of computer science and network security . 2009,第12期

机译：使用智能入侵多检测预防系统预防未知的恶意软件攻击
3. Computational intelligence anti-malware framework for android OS [J] . Konstantinos Demertzis, Lazaros Iliadis Vietnam Journal of Computer Science . 2017,第4期

机译：适用于Android OS的计算智能反恶意软件框架
4. Evolving Computational Intelligence System for Malware Detection [C] . Konstantinos Demertzis, Lazaros Iliadis International conference on advanced information systems engineering . 2014

机译：不断发展的恶意软件检测计算智能系统
5. Malware Detection: An Investigation Into the Deployment of Artificial Intelligence for Antimalware Solutions [D] . Lozic, Matthew. 2018

机译：恶意软件检测：针对反恶意软件解决方案的人工智能部署的调查
6. Adversarial Samples on Android Malware Detection Systems for IoT Systems [O] . Xiaolei Liu, Xiaojiang Du, Xiaosong Zhang, 2019

机译：用于物联网系统的Android恶意软件检测系统上的对抗性样本
7. DroidEvolver: Self-Evolving Android Malware Detection System [O] . Ke Xu, Yingjiu Li, Robert Deng, 2019

机译：DroideVolver：自我不断变化的Android恶意软件检测系统

Evolving Computational Intelligence System for Malware Detection

摘要

著录项

相似文献

相关主题

期刊订阅