Mal-Netminer: Malware Classification Approach Based on Social Network Analysis of System Call Graph
المؤلفون المشاركون
Jang, Jae-wook
Woo, Jiyoung
Mohaisen, Aziz
Yun, Jaesung
Kim, Huy Kang
المصدر
Mathematical Problems in Engineering
العدد
المجلد 2015، العدد 2015 (31 ديسمبر/كانون الأول 2015)، ص ص. 1-20، 20ص.
الناشر
Hindawi Publishing Corporation
تاريخ النشر
2015-10-01
دولة النشر
مصر
عدد الصفحات
20
التخصصات الرئيسية
الملخص EN
As the security landscape evolves over time, where thousands of species of malicious codes are seen every day, antivirus vendors strive to detect and classify malware families for efficient and effective responses against malware campaigns.
To enrich this effort and by capitalizing on ideas from the social network analysis domain, we build a tool that can help classify malware families using features driven from the graph structure of their system calls.
To achieve that, we first construct a system call graph that consists of system calls found in the execution of the individual malware families.
To explore distinguishing features of various malware species, we study social network properties as applied to the call graph, including the degree distribution, degree centrality, average distance, clustering coefficient, network density, and component ratio.
We utilize features driven from those properties to build a classifier for malware families.
Our experimental results show that “influence-based” graph metrics such as the degree centrality are effective for classifying malware, whereas the general structural metrics of malware are less effective for classifying malware.
Our experiments demonstrate that the proposed system performs well in detecting and classifying malware families within each malware class with accuracy greater than 96%.
نمط استشهاد جمعية علماء النفس الأمريكية (APA)
Jang, Jae-wook& Woo, Jiyoung& Mohaisen, Aziz& Yun, Jaesung& Kim, Huy Kang. 2015. Mal-Netminer: Malware Classification Approach Based on Social Network Analysis of System Call Graph. Mathematical Problems in Engineering،Vol. 2015, no. 2015, pp.1-20.
https://search.emarefa.net/detail/BIM-1074681
نمط استشهاد الجمعية الأمريكية للغات الحديثة (MLA)
Jang, Jae-wook…[et al.]. Mal-Netminer: Malware Classification Approach Based on Social Network Analysis of System Call Graph. Mathematical Problems in Engineering No. 2015 (2015), pp.1-20.
https://search.emarefa.net/detail/BIM-1074681
نمط استشهاد الجمعية الطبية الأمريكية (AMA)
Jang, Jae-wook& Woo, Jiyoung& Mohaisen, Aziz& Yun, Jaesung& Kim, Huy Kang. Mal-Netminer: Malware Classification Approach Based on Social Network Analysis of System Call Graph. Mathematical Problems in Engineering. 2015. Vol. 2015, no. 2015, pp.1-20.
https://search.emarefa.net/detail/BIM-1074681
نوع البيانات
مقالات
لغة النص
الإنجليزية
الملاحظات
Includes bibliographical references
رقم السجل
BIM-1074681
قاعدة معامل التأثير والاستشهادات المرجعية العربي "ارسيف Arcif"
أضخم قاعدة بيانات عربية للاستشهادات المرجعية للمجلات العلمية المحكمة الصادرة في العالم العربي
تقوم هذه الخدمة بالتحقق من التشابه أو الانتحال في الأبحاث والمقالات العلمية والأطروحات الجامعية والكتب والأبحاث باللغة العربية، وتحديد درجة التشابه أو أصالة الأعمال البحثية وحماية ملكيتها الفكرية. تعرف اكثر