Obfuscated Ransomware Family Classification Using Machine Learning

被引:0
作者
Cassel, William [1 ]
Majd, Nahid Ebrahimi [1 ]
机构
[1] Calif State Univ San Marcos, Dept Comp Sci & Informat Syst, San Marcos, CA 92096 USA
来源
2023 INTERNATIONAL CONFERENCE ON COMPUTATIONAL SCIENCE AND COMPUTATIONAL INTELLIGENCE, CSCI 2023 | 2023年
关键词
Obfuscated Ransomware Classification; Network security; Feature Selection; Machine Learning;
D O I
10.1109/CSCI62032.2023.00134
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
The recent rise of ransomware attacks, average ransom demands, average ransom payments, and average ransomware recovery time has made ransomware a serious threat for businesses and individuals. Obfuscated ransomware is a more threatening variation that is more complicated to detect. Designing accurate ransomware detection systems is essential to protect networks from harmful consequences of a ransomware attack. In this research, we propose a machine learning based ransomware classification framework and study five machine learning algorithms and four feature selection techniques to detect the class of an obfuscated ransomware vs. benign. We studied different feature selection techniques that remove noise and highly correlated features to get the most efficient model. We also studied the impacts of different techniques to combat data imbalance. Our results indicate that Random Forest with LightGBM feature selection technique outperforms other models with 89.4% accuracy.
引用
收藏
页码:788 / 792
页数:5
相关论文
共 50 条
[31]   Authentic Learning of Machine Learning to Ransomware Detection and Prevention [J].
Faruk, Md Jobair Hossain ;
Masum, Mohammad ;
Shahriar, Hossain ;
Qian, Kai ;
Lo, Dan .
2022 IEEE 46TH ANNUAL COMPUTERS, SOFTWARE, AND APPLICATIONS CONFERENCE (COMPSAC 2022), 2022, :442-443
[32]   Obfuscated Malicious Java']JavaScript Detection by Machine Learning [J].
Pan, Jinkun ;
Mao, Xiaoguang .
PROCEEDINGS OF THE 2ND INTERNATIONAL CONFERENCE ON ADVANCES IN MECHANICAL ENGINEERING AND INDUSTRIAL INFORMATICS (AMEII 2016), 2016, 73 :805-810
[33]   RTrap: Trapping and Containing Ransomware With Machine Learning [J].
Ganfure, Gaddisa Olani ;
Wu, Chun-Feng ;
Chang, Yuan-Hao ;
Shih, Wei-Kuan .
IEEE TRANSACTIONS ON INFORMATION FORENSICS AND SECURITY, 2023, 18 :1433-1448
[34]   Enhancing Obfuscated Malware Detection with Machine Learning Techniques [J].
Dang, Quang-Vinh .
FUTURE DATA AND SECURITY ENGINEERING. BIG DATA, SECURITY AND PRIVACY, SMART CITY AND INDUSTRY 4.0 APPLICATIONS, FDSE 2022, 2022, 1688 :731-738
[35]   FeSAD ransomware detection framework with machine learning using adaption to concept drift [J].
Fernando, Damien Warren ;
Komninos, Nikos .
COMPUTERS & SECURITY, 2024, 137
[36]   Ransomware Detection Using the Dynamic Analysis and Machine Learning: A Survey and Research Directions [J].
Urooj, Umara ;
Al-rimy, Bander Ali Saleh ;
Zainal, Anazida ;
Ghaleb, Fuad A. ;
Rassam, Murad A. .
APPLIED SCIENCES-BASEL, 2022, 12 (01)
[37]   Classification of SSH Attacks using Machine Learning Algorithms [J].
Sadasivam, Gokul Kannan ;
Hota, Chittaranjan ;
Anand, Bhojan .
2016 6TH INTERNATIONAL CONFERENCE ON IT CONVERGENCE AND SECURITY (ICITCS 2016), 2016, :260-265
[38]   Ransomware Detection Using Machine Learning: A Review, Research Limitations and Future Directions [J].
Ispahany, Jamil ;
Islam, Md. Rafiqul ;
Islam, Md. Zahidul ;
Khan, M. Arif .
IEEE ACCESS, 2024, 12 :68785-68813
[39]   Darknet Traffic Classification using Machine Learning Techniques [J].
Iliadis, Lazaros Alexios ;
Kaifas, Theodoros .
2021 10TH INTERNATIONAL CONFERENCE ON MODERN CIRCUITS AND SYSTEMS TECHNOLOGIES (MOCAST), 2021,
[40]   Heart Sound Classification using Weka for Machine Learning [J].
Mergist, Tanner ;
Yenumula, T. Maheswara Reddy ;
Muhammad, Rafeeq ;
James, Tytiana ;
Harimi, Ali ;
Khalil, Kasem ;
Kumar, Ashok .
SOUTHEASTCON 2025, 2025, :248-254
12345