How to detect unknown malicious code efficiently?

Abstract

Recently, rapid developments of IT technology lead to development of various platforms. With the development of the new platforms, diverse malicious codes are created to target the new platforms. These new malicious code means critical and new threat to national infrastructure, especially the important ones that can lead to social chaos. In Korea, Korea hydro and nuclear power was hacked and blueprint was stolen, which was later posted on-line. This created great problem as the place was hacked was critical infrastructure. Thus, the vaccine related are searched out as effective method to analyze the malicious codes that are created every day uncontrollably. However, Personals that manage malicious codes are limited compared to newly create malicious codes. How to detect unknown malicious code efficiently that remain to be unanswered? However, to answer this question, malicious code analysis method has to be concerned, especially the critical ones first. In order to analyze the Unknown malicious codes effectively, Unknown malicious code detection model was introduced in the previous paper. However, this model sometimes treated normal file as malicious code. This eventually decreased its effectiveness in finding and analyzing the malicious codes. . Thus it became necessary to decrease the misdetection rate in order to increase the effectiveness of the model. As a result in this research, we created specific conditions that lead to decrease the miss detection rate significantly. Hence in this paper, we presented a method that detects the Unknown malicious codes more efficiently.