Obfuscated Ransomware Family Classification Using Machine Learning

被引:0
作者
Cassel, William [1 ]
Majd, Nahid Ebrahimi [1 ]
机构
[1] Calif State Univ San Marcos, Dept Comp Sci & Informat Syst, San Marcos, CA 92096 USA
来源
2023 INTERNATIONAL CONFERENCE ON COMPUTATIONAL SCIENCE AND COMPUTATIONAL INTELLIGENCE, CSCI 2023 | 2023年
关键词
Obfuscated Ransomware Classification; Network security; Feature Selection; Machine Learning;
D O I
10.1109/CSCI62032.2023.00134
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
The recent rise of ransomware attacks, average ransom demands, average ransom payments, and average ransomware recovery time has made ransomware a serious threat for businesses and individuals. Obfuscated ransomware is a more threatening variation that is more complicated to detect. Designing accurate ransomware detection systems is essential to protect networks from harmful consequences of a ransomware attack. In this research, we propose a machine learning based ransomware classification framework and study five machine learning algorithms and four feature selection techniques to detect the class of an obfuscated ransomware vs. benign. We studied different feature selection techniques that remove noise and highly correlated features to get the most efficient model. We also studied the impacts of different techniques to combat data imbalance. Our results indicate that Random Forest with LightGBM feature selection technique outperforms other models with 89.4% accuracy.
引用
收藏
页码:788 / 792
页数:5
相关论文
共 50 条
[21]   Detecting Ransomware Automated Based on Network Behavior by Using Machine Learning [J].
Teymourlouei, Haydar ;
Harris, Vareva E. .
2021 INTERNATIONAL CONFERENCE ON COMPUTATIONAL SCIENCE AND COMPUTATIONAL INTELLIGENCE (CSCI 2021), 2021, :728-734
[22]   A Digital DNA Sequencing Engine for Ransomware Detection Using Machine Learning [J].
Khan, Firoz ;
Ncube, Cornelius ;
Ramasamy, Lakshmana Kumar ;
Kadry, Seifedine ;
Nam, Yunyoung .
IEEE ACCESS, 2020, 8 :119710-119719
[23]   Ransomware Detection Service: Execution and Analysis Using Machine Learning Techniques [J].
Suriya Badrinath ;
Roshni Dodhi ;
Raja Muthalagu .
Wireless Personal Communications, 2023, 133 :995-1009
[24]   Ransomware Detection Service: Execution and Analysis Using Machine Learning Techniques [J].
Badrinath, Suriya ;
Dodhi, Roshni ;
Muthalagu, Raja .
WIRELESS PERSONAL COMMUNICATIONS, 2023, 133 (02) :995-1009
[25]   Ransomware Attack Detection on the Internet of Things Using Machine Learning Algorithm [J].
Zewdie, Temechu Girma ;
Girma, Anteneh ;
Cotae, Paul .
HCI INTERNATIONAL 2022 - LATE BREAKING PAPERS: INTERACTING WITH EXTENDED REALITY AND ARTIFICIAL INTELLIGENCE, 2022, 13518 :598-613
[26]   Analysis of Ransomware Impact on Android Systems using Machine Learning Techniques [J].
Al-Ruwili, Anfal Sayer M. ;
Mostafa, Ayman Mohamed .
INTERNATIONAL JOURNAL OF ADVANCED COMPUTER SCIENCE AND APPLICATIONS, 2023, 14 (11) :775-785
[27]   Ransomware Detection: Ensemble Machine Learning Models using Disjoint Data [J].
da Silva, Charles M. R. ;
de Castro, Paulo Andre L. ;
Cesar, Cecilia de A. C. .
2024 IEEE INTERNATIONAL CONFERENCE ON CYBER SECURITY AND RESILIENCE, CSR, 2024, :166-179
[28]   Evaluation metric for crypto-ransomware detection using machine learning [J].
Kok, S. H. ;
Azween, A. ;
Jhanjhi, N. Z. .
JOURNAL OF INFORMATION SECURITY AND APPLICATIONS, 2020, 55
[29]   Dynamic Feature Dataset for Ransomware Detection Using Machine Learning Algorithms [J].
Herrera-Silva, Juan A. ;
Hernandez-alvarez, Myriam .
SENSORS, 2023, 23 (03)
[30]   Detecting and Classifying Ransomware Using Network Packet Analysis and Machine Learning* [J].
Lai, Tai-hung ;
Tsai, Wen-tsung ;
Lin, Shao-ru ;
Liu, Te-min ;
Chou, Chao-lung .
JOURNAL OF INFORMATION SCIENCE AND ENGINEERING, 2024, 40 (06) :1161-1172
12345