Malware Detection for Portable Executables Using a Multi-input Transformer-based Approach

被引:0
作者
Huoh, Ting-Li [1 ]
Miskell, Timothy [2 ]
Barut, Onur [2 ]
Luo, Yan [1 ]
Li, Peilong [3 ]
Zhang, Tong [2 ]
机构
[1] Univ Massachusetts Lowell, Dept Elect & Comp Engn, Lowell, MA 01854 USA
[2] Intel Corp, Santa Clara, CA USA
[3] Elizabethtown Coll, Dept Comp Sci, Elizabethtown, PA USA
来源
2024 INTERNATIONAL CONFERENCE ON COMPUTING, NETWORKING AND COMMUNICATIONS, ICNC | 2024年
关键词
malware detection; deep learning; Portable Executable (PE) files; Transformer; multi-input deep learning;
D O I
10.1109/CNC59896.2024.10556067
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Malware is one of the leading cybersecurity challenges, as it disrupts the normal use of devices, causes financial losses, and steals user information. Deep learning-based methods have been increasingly used in the malware analysis field recently. In this work, we propose a novel multi-input Transformer-based approach for detecting malicious Portable Executable (PE) files. The PE raw bytes were partitioned into different byte sequences as multiple inputs in our proposed multi-input framework. This framework is comprised of convolutional neural networks (CNNs) and Transformer networks and is capable of independent learning of each input, thereby enabling a more expressive representation of the data. As a result, it is possible to capture both local spatial and time-series features, resulting in greater data comprehension. Our proposed approach outperforms the two reference methods, a LightGBM and a CNN-based model, as indicated by four metrics: accuracy, recall, precision, and F1 score.
引用
收藏
页码:778 / 782
页数:5
相关论文
共 14 条
  • [1] Alam M. M., 2023, P 40 INT C MACH LEAR
  • [2] [Anonymous], 2018, WORKSH 32 AAAI C ART
  • [3] A Comprehensive Study on Efficient and Accurate Machine Learning-Based Malicious PE Detection
    Barut, Onur
    Zhang, Tong
    Luo, Yan
    Li, Peilong
    [J]. 2023 IEEE 20TH CONSUMER COMMUNICATIONS & NETWORKING CONFERENCE, CCNC, 2023,
  • [4] A multi-view feature fusion approach for effective malware classification using Deep Learning
    Chaganti, Rajasekhar
    Ravi, Vinayakumar
    Pham, Tuan D.
    [J]. JOURNAL OF INFORMATION SECURITY AND APPLICATIONS, 2023, 72
  • [5] DeepDetectNet vs RLAttackNet: An adversarial method to improve deep learning-based static malware detection model
    Fang, Yong
    Zeng, Yuetian
    Li, Beibei
    Liu, Liang
    Zhang, Lei
    [J]. PLOS ONE, 2020, 15 (04):
  • [6] Kolter J.Z., 2004, Proceedings of Knowledge Discovery and Data mining, P470
  • [7] Raff E., 2017, P 10 ACM WORKSHOP AR, P121, DOI [10.1145/3128572.3140442, DOI 10.1145/3128572.3140442]
  • [8] An investigation of byte n-gram features for malware classification
    Raff, Edward
    Zak, Richard
    Cox, Russell
    Sylvester, Jared
    Yacci, Paul
    Ward, Rebecca
    Tracy, Anna
    McLean, Mark
    Nicholas, Charles
    [J]. JOURNAL OF COMPUTER VIROLOGY AND HACKING TECHNIQUES, 2018, 14 (01): : 1 - 20
  • [9] Static and Dynamic Malware Analysis Using Machine Learning
    Raghuraman, Chandni
    Suresh, Sandhya
    Shivshankar, Suraj
    Chapaneri, Radhika
    [J]. FIRST INTERNATIONAL CONFERENCE ON SUSTAINABLE TECHNOLOGIES FOR COMPUTATIONAL INTELLIGENCE, 2020, 1045 : 793 - 806
  • [10] Rudd Ethan M., 2022, WoRMA '22: Proceedings of the 1st on Workshop on Robust Malware Analysis, P21, DOI 10.1145/3494110.3528242
12