An Efficient PDF Malware Detection Method Using Highly Compact Features

被引:0
作者
Liu, Ran [1 ]
Matuszek, Cynthia [1 ]
Nicholas, Charles [1 ]
机构
[1] Univ Maryland, Baltimore, MD 21201 USA
来源
PROCEEDINGS OF THE 2024 ACM SYMPOSIUM ON DOCUMENT ENGINEERING, DOCENG 2024 | 2024年
关键词
Malware Detection; Machine Learning; Feature Engineering;
D O I
10.1145/3685650.3685668
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
The growing use of PDFs has made them a prime target for malware attacks. Machine learning-based approaches for detecting PDF malware are increasingly popular due to their high accuracy and efficiency. However, the effectiveness of these systems largely depends on the quality of the dataset and the features used. Additionally, they face challenges from sophisticated evasion attacks. This paper introduces a compact yet highly effective feature set, consisting of just five features, designed to improve training efficiency and enhance the robustness of PDF malware detection models. Through experiments, including tests on the real-world detection system PDFRATE, we demonstrate that our proposed feature set not only trains highly accurate models but also increases the system's robustness against a specific evasive attack known as the Benign Random Noise (BRN) attack.
引用
收藏
页数:4
相关论文
共 50 条
  • [31] Volatile memory analysis using the MinHash method for efficient and secured detection of malware in private cloud
    Nissim, Nir
    Lahav, Omri
    Cohen, Aviad
    Elovici, Yuval
    Rokach, Lior
    COMPUTERS & SECURITY, 2019, 87
  • [32] Hybrid Input Model Using Multiple Features From Surface Analysis for Malware Detection
    Mimura, Mamoru
    Kanno, Satoki
    IEEE ACCESS, 2024, 12 : 121198 - 121207
  • [33] Identifying Useful Features for Malware Detection in the Ember Dataset
    Oyama, Yoshihiro
    Miyashita, Takumi
    Kokubo, Hirotaka
    2019 SEVENTH INTERNATIONAL SYMPOSIUM ON COMPUTING AND NETWORKING WORKSHOPS (CANDARW 2019), 2019, : 360 - 366
  • [34] Using side channel TCP features for real-time detection of malware connections
    Stergiopoulos, George
    Chronopoulou, Georgia
    Bitsikas, Evangelos
    Tsalis, Nikolaos
    Gritzalis, Dimitris
    JOURNAL OF COMPUTER SECURITY, 2019, 27 (05) : 507 - 520
  • [35] Experimental Comparison of Features and Classifiers for Android Malware Detection
    Shar, Lwin Khin
    Demissie, Biniam Fisseha
    Ceccato, Mariano
    Minn, Wei
    2020 IEEE/ACM 7TH INTERNATIONAL CONFERENCE ON MOBILE SOFTWARE ENGINEERING AND SYSTEMS, MOBILESOFT, 2020, : 50 - 60
  • [36] Machine learning based mobile malware detection using highly imbalanced network traffic
    Chen, Zhenxiang
    Yan, Qiben
    Han, Hongbo
    Wang, Shanshan
    Peng, Lizhi
    Wang, Lin
    Yang, Bo
    INFORMATION SCIENCES, 2018, 433 : 346 - 364
  • [37] Machine learning-based malware detection on Android devices using behavioral features
    Urmila, T. S.
    MATERIALS TODAY-PROCEEDINGS, 2022, 62 : 4659 - 4664
  • [38] LAB to SOC: Robust Features for Dynamic Malware Detection
    Rhode, Matilda
    Tuson, Lewis
    Burnap, Pete
    Jones, Kevin
    49TH ANNUAL IEEE/IFIP INTERNATIONAL CONFERENCE ON DEPENDABLE SYSTEMS AND NETWORKS (DSN 2019): INDUSTRY TRACK, 2019, : 13 - 16
  • [39] Discovering optimal features using static analysis and a genetic search based method for Android malware detection
    Ahmad Firdaus
    Nor Badrul Anuar
    Ahmad Karim
    Mohd Faizal Ab Razak
    Frontiers of Information Technology & Electronic Engineering, 2018, 19 : 712 - 736
  • [40] Discovering optimal features using static analysis and a genetic search based method for Android malware detection
    Firdaus, Ahmad
    Anuar, Nor Badrul
    Karim, Ahmad
    Ab Razak, Mohd Faizal
    FRONTIERS OF INFORMATION TECHNOLOGY & ELECTRONIC ENGINEERING, 2018, 19 (06) : 712 - 736
12345