Effective One-Class Classifier Model for Memory Dump Malware Detection
نویسندگان
چکیده
Malware complexity is rapidly increasing, causing catastrophic impacts on computer systems. Memory dump malware gaining increased attention due to its ability expose plaintext passwords or key encryption files. This paper presents an enhanced classification model based One class SVM (OCSVM) classifier that can identify any deviation from the normal memory file patterns and detect it as malware. The proposed integrates OCSVM Principal Component Analysis (PCA) for sensitivity efficiency. An up-to-date dataset known “MALMEMANALYSIS-2022” was utilized during evaluation phase of this study. accuracy achieved by traditional one-class (TOCC) 55%, compared 99.4% in with PCA (OCC-PCA) model. Such results have confirmed improved performance
منابع مشابه
Adversarially Learned One-Class Classifier for Novelty Detection
Novelty detection is the process of identifying the observation(s) that differ in some respect from the training observations (the target class). In reality, the novelty class is often absent during training, poorly sampled or not well defined. Therefore, one-class classifiers can efficiently model such problems. However, due to the unavailability of data from the novelty class, training an end...
متن کاملOne-Class to Multi-Class Model Update Using the Class-Incremental Optimum-Path Forest Classifier
ion-Based Verification of Infinite-State Reactive Modules 725 Francesco Belardinelli and Alessio Lomuscio Translation-Based Revision and Merging for Minimal Horn Reasoning 734 Gerhard Brewka, Jean-Guy Mailly and Stefan Woltran Parallel Filter-Based Feature Selection Based on Balanced Incomplete Block Designs 743 Antonio Salmerón, Anders L. Madsen, Frank Jensen, Helge Langseth, Thomas D. Nielsen...
متن کاملAcceleration of Statistical Detection of Zero-day Malware in the Memory Dump Using CUDA-enabled GPU Hardware
This paper focuses on the anticipatory enhancement of methods of detecting stealth software. Cyber security detection tools are insufficiently powerful to reveal the most recent cyber-attacks which use malware. In this paper, we will present first an idea of the highest stealth malware, as this is the most complicated scenario for detection because it combines both existing anti-forensic techni...
متن کاملLTL Model-Checking for Malware Detection
Nowadays, malware has become a critical security threat. Traditional antiviruses such as signature-based techniques and code emulation become insufficient and easy to get around. Thus, it is important to have efficient and robust malware detectors. In [23,21], CTL model-checking for PushDown Systems (PDSs) was shown to be a robust technique for malware detection. However, the approach of [23,21...
متن کاملMinimum spanning tree based one-class classifier
In the problem of one-class classification one of the classes, called the target class, has to be distinguished from all other possible objects. These are considered as non-targets. The need for solving such a task arises in many practical applications, e.g. in machine fault detection, face recognition, authorship verification, fraud recognition or person identification based on biometric data....
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: Journal of Sensor and Actuator Networks
سال: 2023
ISSN: ['2224-2708']
DOI: https://doi.org/10.3390/jsan12010005