ASSCA: API sequence and statistics features combined architecture for malware detection

Lu Xiaofeng; Jiang Fangshuo; Zhou Xiao; Yi Shengwei; Sha Jing; Lio Pietro

首页> 外文期刊>Computer networks >ASSCA: API sequence and statistics features combined architecture for malware detection

【24h】

ASSCA: API sequence and statistics features combined architecture for malware detection

机译：ASSCA：API序列和统计功能结合了用于恶意软件检测的架构

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

In this paper, a new deep learning and machine learning combined model is proposed for malware behavior analysis. One part of it analyzes the dependency relation in API (Application Programming Interface) call sequence at the functional level, and extracts features for random forest to learn and classify. The other part employs a bidirectional residual neural network to study the API sequence and discover malware with redundant information preprocessing. In the API call sequence, future information is much more important for conjecturing the semantic of the current API call. We conducted experiments on a malware dataset. The experiment results show that both methods can effectively detect malwares. However, the combined framework has better classification performance. The classification accuracy of the combined malware detection architecture is 0.967. (C) 2019 Published by Elsevier B.V.

机译：本文提出了一种新的深度学习和机器学习相结合的模型，用于恶意软件行为分析。它的一部分在功能级别上分析了API（应用程序编程接口）调用序列中的依赖关系，并提取了供随机森林学习和分类的功能。另一部分使用双向残差神经网络来研究API序列并通过冗余信息预处理发现恶意软件。在API调用序列中，将来的信息对于推测当前API调用的语义更为重要。我们对恶意软件数据集进行了实验。实验结果表明，两种方法都可以有效地检测恶意软件。但是，组合框架具有更好的分类性能。组合恶意软件检测体系结构的分类精度为0.967。（C）2019由Elsevier B.V.发布

著录项

来源
《Computer networks》 |2019年第5期|99-111|共13页
作者
Lu Xiaofeng; Jiang Fangshuo; Zhou Xiao; Yi Shengwei; Sha Jing; Lio Pietro;
展开▼
作者单位

Beijing Univ Post & Telecommun, Sch Cyberspace Secur, Beijing, Peoples R China;

Beijing Univ Post & Telecommun, Sch Cyberspace Secur, Beijing, Peoples R China;

Beijing Univ Post & Telecommun, Sch Cyberspace Secur, Beijing, Peoples R China;

China Informat Technol Secur Evaluat Ctr, Beijing, Peoples R China;

Minist Publ Secur, Res Inst 3, Beijing, Peoples R China;

Univ Cambridge, Comp Lab, Cambridge, England;

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类
关键词
Computer virus and prevention; Malware classification; Machine learning; Deep learning; Call sequence;

机译：计算机病毒与预防;恶意软件分类;机器学习;深度学习;调用顺序;

相似文献

外文文献
中文文献
专利

1. ASSCA: API based Sequence and Statistics features Combined malware detection Architecture [J] . Lu Xiaofeng, Zhou Xiao, Jiang Fangshuo, Procedia Computer Science . 2018,第47期

机译：ASSCA：基于API的序列和统计功能结合了恶意软件检测架构
2. ASSCA: API based Sequence and Statistics features Combined malware detection Architecture [J] . Lu Xiaofeng, Zhou Xiao, Jiang Fangshuo, Procedia Computer Science . 2018,第22期

机译：ASSCA：基于API的序列和统计功能结合了恶意软件检测架构
3. Feature-Chain Based Malware Detection Using Multiple Sequence Alignment of API Call [J] . Hyun-Joo KIM, Jong-Hyun KIM, Jung-Tai KIM, IEICE transactions on information and systems . 2016,第4期

机译：使用API调用的多序列比对的基于特征链的恶意软件检测
4. An incremental malware detection model for meta-feature API and system call sequence [C] . Pushkar Kishore, Swadhin Kumar Barisal, Durga Prasad Mohapatra Federated Conference on Computer Science and Information Systems . 2020

机译：用于元功能API和系统调用序列的增量恶意软件检测模型
5. Android Malware Detection Using Textural Feature Recognition of Visualized Binary [D] . Minor, Adam K. 2019

机译：使用可视化二进制的纹理特征识别的Android恶意软件检测
6. Combining Statistical and Geometric Features for Colonic Polyp Detection in CTC Based on Multiple Kernel Learning [O] . Shijun Wang, Jianhua Yao, Nicholas Petrick, -1

机译：基于多个内核学习的CTC中结肠息肉检测结合统计和几何特征
7. An incremental malware detection model for meta-feature API and system call sequence [O] . Pushkar Kishore, Swadhin Kumar Barisal, Durga Prasad Mohapatra 2020

机译：元特征API和系统呼叫序列的增量恶意软件检测模型

ASSCA: API sequence and statistics features combined architecture for malware detection

摘要

著录项

相似文献

相关主题

期刊订阅