Malware detection based on deep learning algorithm

被引：0

作者：

Ding Yuxin

Zhu Siyi

机构：

[1] Shenzhen University Town,Harbin Institute of Technology Shenzhen Graduate School

来源：

Neural Computing and Applications | 2019年 / 31卷

关键词：

Malware detection; Opcode; Deep learning; Neural network; Security;

D O I：

暂无

中图分类号：

学科分类号：

摘要：

In this study we represent malware as opcode sequences and detect it using a deep belief network (DBN). Compared with traditional shallow neural networks, DBNs can use unlabeled data to pretrain a multi-layer generative model, which can better represent the characteristics of data samples. We compare the performance of DBNs with that of three baseline malware detection models, which use support vector machines, decision trees, and the k-nearest neighbor algorithm as classifiers. The experiments demonstrate that the DBN model provides more accurate detection than the baseline models. When additional unlabeled data are used for DBN pretraining, the DBNs perform better than the other detection models. We also use the DBNs as an autoencoder to extract the feature vectors of executables. The experiments indicate that the autoencoder can effectively model the underlying structure of input data and significantly reduce the dimensions of feature vectors.

引用

页码：461 / 472

页数：11

共 47 条

[1] Dahl GE(2012)Context-dependent pretrained deep neural networks for large-vocabulary speech recognition IEEE Trans Audio Speech Lang Process 20 30-41
[2] Yu D(2014)Control flow-based opcode behavior analysis for malware detection Comput Secur 44 64-82
[3] Deng L(2014)Enhancing the detection of metamorphic malware using call graphs Comput Secur 46 62-78
[4] Acero A(2010)Why does unsupervised pre-training help deep learning? J Mach Learn Res 11 625-660
[5] Ding Y(2012)A graph mining approach for detecting unknown malwares J Visu Lang Comput 23 154-162
[6] Dai W(2012)Deep neural networks for acoustic modeling in speech recognition: the shared views of four research groups IEEE Signal Process Mag 29 82-97
[7] Yan S(2006)A fast learning algorithm for deep belief nets Neural Comput 18 1527-1554
[8] Elhadi AAE(2013)Classification of malware based on integrated static and dynamic features J Netw Comput Appl 36 646-656
[9] Maarof MA(2012)A survey on automated dynamic malware-analysis techniques and tools ACM Comput Surv 44 1-42
[10] Barry BIA(2012)An efficient learning procedure for deep Boltzmann machines Neural Comput 24 1967-2006

← 1 2 3 4 5 →