Using Static and Dynamic Malware features to perform Malware Ascription
نویسندگان
چکیده
Malware ascription is a relatively unexplored area, and it rather difficult to attribute malware detect authorship. In this paper, we employ various Static Dynamic features of malicious executables classify based on their family. We leverage Cuckoo Sandbox machine learning make progress in research. Post analysis, classification performed using deep algorithms. Using the gathered from VirusTotal (static) (dynamic) reports, ran vectorized data against Multinomial Naive Bayes, Support Vector Machine, Bagging Decision Trees as base estimator. For each classifier, tuned hyper-parameters exhaustive search methods. Our reports can be extremely useful ascription.
منابع مشابه
Implementation of Malware Analysis using Static and Dynamic Analysis Method
Malware analysis is a process to perform analysis of malware and how to study the components and behavior of malware. On this paper it will use two methods of malware analysis, static analysis and dynamic analysis. Static analysis is a method of malware analysis which done without running the malware. While dynamic analysis is a method of malware analysis which the malware is running in a secur...
متن کاملMutantX-S: Scalable Malware Clustering Based on Static Features
The current lack of automatic and speedy labeling of a large number (thousands) of malware samples seen everyday delays the distribution of malware signatures, leading to a low detection rate of new malware samples in the wild. In this paper, we design, implement and evaluate a novel, scalable framework, called MutantX-S, that can efficiently cluster a large number of samples into families base...
متن کاملmalWASH: Washing Malware to Evade Dynamic Analysis
Hiding malware processes from fingerprinting is challenging. Current techniques like metamorphic algorithms and diversity generate different instances of a program, protecting it against static detection. Unfortunately, all existing techniques are prone to detection through behavioral analysis – a runtime analysis that records behavior (e.g., through system call invocations), and can detect exe...
متن کاملRevisiting Static Analysis of Android Malware
The mobile malware threat is fought by both static and dynamic analysis, two complementary approaches in need of constant sharpening. In this paper, static analysis is revisited to update and deepen knowledge about Android malware, correlate malicious samples through common artifacts, and further understand malware developers’ modus operandi. By looking at more than 200,000 malware samples, our...
متن کاملA Static Malware Detection System Using Data Mining Methods
A serious threat today is malicious executables. It is designed to damage computer system and some of them spread over network without the knowledge of the owner using the system. Two approaches have been derived for it i.e. Signature Based Detection and Heuristic Based Detection. These approaches performed well against known malicious programs but cannot catch the new malicious programs. Diffe...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: ECS transactions
سال: 2022
ISSN: ['2151-2051', '1938-5862', '1938-6737']
DOI: https://doi.org/10.1149/10701.3187ecst