MalMKNet: A Multi-Scale Convolutional Neural Network Used for Malware Classification

被引:0
作者
Zhang D.-D. [1 ]
Song Y.-F. [1 ]
Liu S. [1 ]
机构
[1] Institute of Air Defense and Anti-missile, Air Force Engineering University, Shaanxi, Xi'an
来源
Tien Tzu Hsueh Pao/Acta Electronica Sinica | 2023年 / 51卷 / 05期
基金
中国国家自然科学基金;
关键词
convolutional neural network; deep learning; image processing; large kernels; lightweight model; malware detection;
D O I
10.12263/DZXB.20221069
中图分类号
学科分类号
摘要
Rapid and accurate identification of unknown malware and its variants is the premise and basis for the effective prevention of malicious attacks. However, with the rapid increase of malware variants, the efficiency of manual updating of the sample database is getting worse and worse. It is difficult for the traditional identification method to effectively capture the sample feature information operated by the confusion method only based on the delayed database information. To address the above problems, this paper proposes a deep learning model based on grayscale image processing, MalMKNet (Multi-scale Kernel Network for Malware), a convolutional neural network (CNN) architecture using multi-scale convolution kernel mixing action to improve malware detection capabilities. The mixed kernels (MK) module combining deep large kernel convolution and standard small kernel convolution with shortcut structure is proposed to improve the model accuracy, and then we proposed multi-scale kernel fusion (MKF) to reduce the number of parameters. The feature shuffle (FS) is proposed to improve the classification accuracy without increasing the number of parameters. Experimental results show that MalMKNet outperforms the state-of-the-art methods in terms of malware family classification accuracy which achieves 99.35%. © 2023 Chinese Institute of Electronics. All rights reserved.
引用
收藏
页码:1359 / 1369
页数:10
相关论文
共 31 条
[1]  
SU J W, VASCONCELLOS D V, PRASAD S, Et al., Lightweight classification of IoT malware based on image recognition, 2018 IEEE 42nd Annual Computer Software and Applications Conference(COMPSAC), pp. 664-669, (2018)
[2]  
YADAV B, TOKEKAR S., Recent innovations and comparison of deep learning techniques in malware classification: A review, International Journal of Information Security Science, 9, 4, pp. 230-247, (2021)
[3]  
GREENGARD S., Cybersecurity gets smart, Communications of the ACM, 59, 5, pp. 29-31, (2016)
[4]  
VENKATRAMAN S, ALAZAB M., Use of data visualisation for zero-day malware detection, Security and Communication Networks, 2018, pp. 1-13, (2018)
[5]  
NATARAJ L, KARTHIKEYAN S, JACOB G, Et al., Malware images: Visualization and automatic classification, Proceedings of the 8th International Symposium on Visualization for Cyber Security, pp. 1-7, (2011)
[6]  
MAKANDAR A, PATROT A., Malware class recognition using image processing techniques, 2017 International Conference on Data Management, Analytics and Innovation (ICDMAI), pp. 76-80, (2017)
[7]  
XIANG Q, WANG X D, SONG Y F, Et al., One-dimensional convolutional neural networks for high-resolution range profile recognition via adaptively feature recalibrating and automatically channel pruning, International Journal of Intelligent Systems, 36, 1, pp. 332-361, (2021)
[8]  
XIANG Q, WANG X D, LAI J, Et al., Multi-scale group-fusion convolutional neural network for high-resolution range profile target recognition, IET Radar, Sonar & Navigation, 16, 12, pp. 1997-2016, (2022)
[9]  
CUI Z H, XUE F, CAI X J, Et al., Detection of malicious code variants based on deep learning, IEEE Transactions on Industrial Informatics, 14, 7, pp. 3187-3196, (2018)
[10]  
HAMAD N, CHENG X C, FARHAN U, Et al., A deep convolutional neural network stacked ensemble for malware threat classification in Internet of Things, Journal of Circuits, Systems and Computers, 31, 17, pp. 1-13, (2022)
1234