Abstract

Behavior-based detection approaches commonly address the threat of statically obfuscated malware. Such approaches often use graphs to represent process or system behavior and typically employ frequency-based graph mining techniques to extract characteristic patterns from collections of malware graphs. Recent studies in the molecule mining domain suggest that frequency-based graph mining algorithms often perform sub-optimally in finding highly discriminating patterns. We propose a novel malware detection approach that uses so-called compression-based mining on quantitative data flow graphs to derive highly accurate detection models. Our evaluation on a large and diverse malware set shows that our approach outperforms frequency-based detection models in terms of detection effectiveness by more than 600 percent.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
A state-of-the-art survey of malware detection approaches using data mining techniques
Alireza Souri ... Rahil Hosseini
Human-centric Computing and Information Sciences | VOL. 8
Alireza Souri, et. al.Alireza Souri ... Rahil Hosseini
12 Jan 2018
A Comprehensive Review on Malware Detection Approaches
Omer Aslan ... Refik Samet
IEEE Access | VOL. 8
Omer Aslan, et. al.Omer Aslan ... Refik Samet
01 Jan 2020
Android Malware Detection via Graph Representation Learning
Pengbin Feng ... Teng Li
Mobile Information Systems | VOL. 2021
Pengbin Feng, et. al.Pengbin Feng ... Teng Li
04 Jun 2021
An intelligent approach for malware detection in dual stack IPv4/IPV6 networks
Altyeb Altaher
International Journal of Physical Sciences | VOL. 7
Altyeb Altaher Altyeb Altaher
02 Mar 2012
View more papers

More From: IEEE Transactions on Dependable and Secure Computing

Paper Title
Journal
Date
Author
Message-Driven Generative Music Steganography Using MIDI-GAN
Zhaopin Su ... Donghui Hu
IEEE Transactions on Dependable and Secure Computing | VOL. 21
Zhaopin Su, et. al.Zhaopin Su ... Donghui Hu
01 Nov 2024
Analysis of Countermeasures Against Remote and Local Power Side Channel Attacks using Correlation Power Analysis
Aurelien T Mozipo ... John M Acken
IEEE Transactions on Dependable and Secure Computing | VOL. 21
Aurelien T Mozipo, et. al.Aurelien T Mozipo ... John M Acken
01 Nov 2024
Design and Robust Evaluation of Next Generation Node Authentication Approach
Dinh Duc Nha Nguyen ... Keshav Sood
IEEE Transactions on Dependable and Secure Computing | VOL. 21
Dinh Duc Nha Nguyen, et. al.Dinh Duc Nha Nguyen ... Keshav Sood
01 Nov 2024
Malicious-Resistant Non-Interactive Verifiable Aggregation for Federated Learning
Yin Zhu ... Haifeng Qian
IEEE Transactions on Dependable and Secure Computing | VOL. 21
Yin Zhu, et. al.Yin Zhu ... Haifeng Qian
01 Nov 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.