Malware Detection using Windows Api Sequence and Machine Learning
Chandrasekar Ravi,R Manoharan +1 more
TL;DR: The key novelty of the proposed malware detection system is the iterative learning process combined with the run-time monitoring of program execution behavior which makes this as a dynamic malware detection System outperforms the existing malware detection systems.
read more
Abstract: onitoring the behavior of program execution at run-time is widely used to differentiate benign and malicious processes executing in the host computer Most of the existing run-time malware detection methods use the information available in Windows Application Programming Interface (API) calls The proposed malware detection system uses the Windows API call sequence A 3rd order Markov chain (ie 4-grams) is used to model the API calls This composite feature set is provided as an input to the malware detection system to raise the final alarm Association mining based classification is used because it yields higher detection accuracy than previous data mining based detection systems which employed Naive Bayes, Support Vector Machine and Decision Tree techniques A minimal subset of API categories is monitored while maintaining high detection accuracy The number of generated rules is reduced, by removing the redundant rules, to make the malware analysis efficient The key novelty of the proposed malware detection system is the iterative learning process combined with the run-time monitoring of program execution behavior which makes this as a dynamic malware detection system The performance of the proposed malware detection system is evaluated for accuracy of malware detection system and compared with the existing data mining based detection systems It is inferred that the proposed malware detection system outperforms the existing malware detection systems
read more
Chat with Paper
AI Agents for this Paper
Find similar papers on Google Scholar, PubMed and Arxiv
Write a critical review of this paper
Analyze citations of this paper to find unaddressed research gaps
Citations
Using convolutional neural networks for classification of malware represented as images
TL;DR: Motivated by the visual similarity between malware samples of the same family, a file agnostic deep learning approach is proposed to efficiently group malicious software into families based on a set of discriminant patterns extracted from their visualization as images.
Naive Bayes: applications, variations and vulnerabilities: a review of literature with code snippets for implementation
R. Indika P. Wickramasinghe,Harsha Kumara Kalutarage +1 more
- 01 Feb 2021
TL;DR: This manuscript surveys the latest applications of NB and discusses its variations in different settings, and recommendations are made regarding the applicability of NB while exploring the robustness of the algorithm.
A dynamic Windows malware detection and prediction method based on contextual understanding of API call sequence
TL;DR: The use of word embedding is introduced to understand the contextual relationship that exists between API functions in malware call sequences and a prediction methodology that predicts whether an API call sequence is malicious or not from the initial API calling functions is proposed.
170
Ransomware detection using machine learning algorithms
TL;DR: A ransomware detection method that can distinguish between ransomware and benign files as well as between malware and malware is proposed and the experimental results show that the proposed method can detect ransomware among malware and benign Files.
124
References
•Book
Data Mining: Concepts and Techniques
Jiawei Han,Micheline Kamber,Jian Pei +2 more
- 08 Sep 2000
TL;DR: This book presents dozens of algorithms and implementation examples, all in pseudo-code and suitable for use in real-world, large-scale data mining projects, and provides a comprehensive, practical look at the concepts and techniques you need to get the most out of real business data.
Data Mining: Concepts and Techniques
G. Thamaraiselvi,A. Kaliammal +1 more
TL;DR: This article explains What is data mining?
4.4K
A Survey of Malware Detection Techniques
Nwokedi C. Idika,Aditya P. Mathur +1 more
- 01 Jan 2007
TL;DR: This paper presents a meta-modelling system that automates and automates the very labor-intensive and therefore time-heavy and expensive and expensive process of manually cataloging and annotating Malware.
501
IMDS: intelligent malware detection system
Yanfang Ye,Dingding Wang,Tao Li,Dongyi Ye +3 more
- 12 Aug 2007
TL;DR: Promising experimental results demonstrate that the accuracy and efficiency of the IMDS system out perform popular anti-virus software such as Norton AntiVirus and McAfee VirusScan, as well as previous data mining based detection systems which employed Naive Bayes, Support Vector Machine and Decision Tree techniques.
241