File Relation Graph Based Malware Detection Using Label Propagation
作者: Ming Ni , Qianmu Li , Hong Zhang , Tao Li , Jun Hou
DOI: 10.1007/978-3-319-26187-4_12
关键词:
摘要: The rapid development of malicious software programs has posed severe threats to Computer and Internet security. Therefore, it motivates anti-malware industry develop novel methods which are capable protecting users against new threats. Existing malware detectors mostly treat the file samples separately using supervised learning algorithms. However, ignoring relationship among limits capability detectors. In this paper, we present a detection method based on relation graph detect newly developed samples. When constructing graph, k-nearest neighbors chosen as adjacent nodes for each node. Files connected with edges represent similarity between corresponding nodes. Label propagation algorithm, propagates label information from labeled unlabeled files, is used learn probability that one unknown classified or benign. We evaluate effectiveness our proposed real large dataset. Experimental results demonstrate accuracy outperforms other existing approaches in classifying
springer.com
sci-hub.st 参考文章(22)
Andrei Venzhega, Polina Zhinalieva, Nikolay Suboch, Graph-based malware distributors detection the web conference. pp. 1141- 1144 ,(2013) , 10.1145/2487788.2488136
Xiaojin ZhuЃ, Zoubin GhahramaniЃн, None, Learning from labeled and unlabeled data with label propagation Center for Automated Learning and Discovery, CMU: Carnegie Mellon University, USA.. ,(2002)
Yanfang Ye, Tao Li, Shenghuo Zhu, Weiwei Zhuang, Egemen Tas, Umesh Gupta, Melih Abdulhayoglu, Combining file content and file relations for cloud based malware detection Proceedings of the 17th ACM SIGKDD international conference on Knowledge discovery and data mining - KDD '11. pp. 222- 230 ,(2011) , 10.1145/2020408.2020448
Eric Filiol, Malware Pattern Scanning Schemes Secure Against Black-box Analysis Journal in Computer Virology. ,vol. 2, pp. 35- 50 ,(2006) , 10.1007/S11416-006-0009-X
Yanfang Ye, Tao Li, Qingshan Jiang, Zhixue Han, Li Wan, Intelligent file scoring system for malware detection from the gray list Proceedings of the 15th ACM SIGKDD international conference on Knowledge discovery and data mining - KDD '09. pp. 1385- 1394 ,(2009) , 10.1145/1557019.1557167
Lingwei Chen, Tao Li, Melih Abdulhayoglu, Yanfang Ye, Intelligent malware detection based on file relation graphs ieee international conference semantic computing. pp. 85- 92 ,(2015) , 10.1109/ICOSC.2015.7050784
Manuel Egele, Theodoor Scholte, Engin Kirda, Christopher Kruegel, A survey on automated dynamic malware-analysis techniques and tools ACM Computing Surveys. ,vol. 44, pp. 6- ,(2008) , 10.1145/2089125.2089126
Jeremy Z. Kolter, Marcus A. Maloof, Learning to detect malicious executables in the wild knowledge discovery and data mining. pp. 470- 478 ,(2004) , 10.1145/1014052.1014105
Mohammad M Masud, Tahseen M Al-Khateeb, Kevin W Hamlen, Jing Gao, Latifur Khan, Jiawei Han, Bhavani Thuraisingham, None, Cloud-based malware detection for evolving data streams ACM Transactions on Management Information Systems. ,vol. 2, pp. 1- 27 ,(2011) , 10.1145/2019618.2019622
Eric Filiol, Grégoire Jacob, Mickaël Le Liard, Evaluation methodology and theoretical model for antiviral behavioural detection strategies Journal in Computer Virology. ,vol. 3, pp. 23- 37 ,(2007) , 10.1007/S11416-006-0026-9