Image-based Malware Classification: A Space Filling Curve Approach

被引:10
作者
O'Shaughnessy, Stephen [1 ]
机构
[1] Technol Univ Dublin, Dublin, Ireland
来源
2019 IEEE SYMPOSIUM ON VISUALIZATION FOR CYBER SECURITY (VIZSEC) | 2019年
关键词
Space-filling curves; Morton curve; Z-order; malware classification; visualization; BINARY;
D O I
10.1109/vizsec48167.2019.9161583
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Anti-virus (AV) software is effective at distinguishing between benign and malicious programs yet lack the ability to effectively classify malware into their respective family classes. AV vendors receive considerably large volumes of malicious programs daily and so classification is crucial to quickly identify variants of existing malware that would otherwise have to be manually examined. This paper proposes a novel method of visualizing and classifying malware using Space-Filling Curves (SFC's) in order to improve the limitations of AV tools. The classification models produced were evaluated on previously unseen samples and showed promising results, with precision, recall and accuracy scores of 82%, 80% and 83% respectively. Furthermore, a comparative assessment with previous research and current AV technologies revealed that the method presented here was robust, outperforming most commercial and open-source AV scanner software programs.
引用
收藏
页数:10
相关论文
共 44 条
[1]  
[Anonymous], 2018, PLYMOUTH STUD SCI, V11, P223
[2]  
[Anonymous], 2008, LECT NOTES COMPUTER, V5137
[3]  
[Anonymous], 2005, PRESS, P181
[4]  
[Anonymous], 2009, NCM 09 5 INT JOINT C, P278
[5]  
CARO, 2019, COMP ANT RES ORG
[6]  
Conti G., 2010, VISUAL STUDY BINARY
[7]  
Conti G, 2008, LECT NOTES COMPUT SC, V5210, P1, DOI 10.1007/978-3-540-85933-8_1
[8]  
Cortesi A, 2018, SCURVE SPACE FILLING
[9]  
Cortesi A, 2018, BINVIS BINARY VISUAL
[10]   Classification of Texture Images Based on the Histogram of Oriented Gradients Using Support Vector Machines [J].
Demir, Hasan .
ELECTRICA, 2018, 18 (01) :90-94