Behavioral Malware Classification using Convolutional Recurrent Neural Networks

机译：使用卷积递归神经网络的行为恶意软件分类

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

Behavioral malware detection aims to improve on the performance of static signature-based techniques used by anti-virus systems, which are less effective against modern polymorphic and metamorphic malware. Behavioral malware classification aims to go beyond the detection of malware by also identifying a malware's family according to a naming scheme such as the ones used by anti-virus vendors. Behavioral malware classification techniques use run-time features, such as file system or network activities, to capture the behavioral characteristic of running processes. The increasing volume of malware samples, diversity of malware families, and the variety of naming schemes given to malware samples by anti-virus vendors present challenges to behavioral malware classifiers. We describe a behavioral classifier that uses a Convolutional Recurrent Neural Network and data from Microsoft Windows Prefetch files. We demonstrate the model's improvement on the state-of-the-art using a large dataset of malware families and four major anti-virus vendor naming schemes. The model is effective in classifying malware samples that belong to common and rare malware families and can incrementally accommodate the introduction of new malware samples and families.

机译：行为恶意软件检测旨在提高防病毒系统使用的基于静态签名的技术的性能，这些技术对现代多态和变态恶意软件的有效性较低。行为性恶意软件分类的目的不仅是通过检测恶意软件的类别，还可以根据诸如防病毒供应商所使用的命名方案来识别恶意软件的家族。行为恶意软件分类技术使用运行时功能（例如文件系统或网络活动）来捕获正在运行的进程的行为特征。恶意软件样本数量的增加，恶意软件家族的多样性以及反病毒供应商为恶意软件样本提供的各种命名方案，给行为恶意软件分类器带来了挑战。我们描述了一种行为分类器，该行为分类器使用卷积递归神经网络和Microsoft Windows Prefetch文件中的数据。我们使用大量的恶意软件家族数据集和四种主要的反病毒供应商命名方案，论证了模型在最新技术上的改进。该模型可以有效地对属于常见和罕见恶意软件家族的恶意软件样本进行分类，并且可以逐步适应新恶意软件样本和家族的引入。

著录项

来源
《International Conference on Malicious and Unwanted Software》|2018年|103-111|共9页
会议地点
作者
Bander Alsulami; Spiros Mancoridis;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类
关键词
Malware; Prefetching; Microsoft Windows; Training; Feature extraction; Recurrent neural networks; Radio frequency;

机译：恶意软件;预取; Microsoft Windows;培训;特征提取;递归神经网络;射频;

相似文献

外文文献
中文文献
专利

1. MCFT-CNN: Malware classification with fine-tune convolution neural networks using traditional and transfer learning in Internet of Things [J] . Sudhakar, Sushil Kumar Future generation computer systems . 2021,第Deca期

机译：MCFT-CNN：使用传统和转移学习的微调卷积神经网络的恶意软件分类
2. Using API Call Sequences for IoT Malware Classification Based on Convolutional Neural Networks [J] . Qianguang Lin, Ni Li, Qi Qi, International journal of software engineering and knowledge engineering . 2021,第4期

机译：基于卷积神经网络的API调用序列进行IoT恶意软件分类
3. An effective malware classification framework with automated feature extraction based on deep convolutional neural networks [J] . Guoqing Xiao, Jingning Li, Yuedan Chen, Journal of Parallel and Distributed Computing . 2020,第Jula期

机译：基于深度卷积神经网络的自动特征提取有效的恶意软件分类框架
4. Behavioral Malware Classification using Convolutional Recurrent Neural Networks [C] . Bander Alsulami, Spiros Mancoridis International Conference on Malicious and Unwanted Software . 2018

机译：使用卷积经常性神经网络进行行为恶意软件分类
5. Deep Neural Language Model for Text Classification Based on Convolutional and Recurrent Neural Networks [D] . Hassan, Abdalraouf. 2018

机译：基于卷积神经网络和递归神经网络的深度神经语言文本分类模型
6. 3D Convolutional Neural Networks Initialized from Pretrained 2D Convolutional Neural Networks for Classification of Industrial Parts [O] . Ibon Merino, Jon Azpiazu, Anthony Remazeilles, 2021

机译：3D卷积神经网络从佩带的2D卷积神经网络初始化用于工业部件的分类
7. Human activity recognition and classification using of convolutional neural networks and recurrent neural networks [O] . Mohammed ALBABA, Alhakam QASSAB, Arif YILMAZ 2020

机译：人类活动认可与卷积神经网络和经常性神经网络的分类

Behavioral Malware Classification using Convolutional Recurrent Neural Networks

摘要

著录项

相似文献

相关主题

期刊订阅