Detecting Malware with an Ensemble Method Based on Deep Neural Network. (12th March 2018)
- Record Type:
- Journal Article
- Title:
- Detecting Malware with an Ensemble Method Based on Deep Neural Network. (12th March 2018)
- Main Title:
- Detecting Malware with an Ensemble Method Based on Deep Neural Network
- Authors:
- Yan, Jinpei
Qi, Yong
Rao, Qifan - Other Names:
- Zhang Zonghua Academic Editor.
- Abstract:
- Abstract : Malware detection plays a crucial role in computer security. Recent researches mainly use machine learning based methods heavily relying on domain knowledge for manually extracting malicious features. In this paper, we propose MalNet, a novel malware detection method that learns features automatically from the raw data. Concretely, we first generate a grayscale image from malware file, meanwhile extracting its opcode sequences with the decompilation tool IDA. Then MalNet uses CNN and LSTM networks to learn from grayscale image and opcode sequence, respectively, and takes a stacking ensemble for malware classification. We perform experiments on more than 40, 000 samples including 20, 650 benign files collected from online software providers and 21, 736 malwares provided by Microsoft. The evaluation result shows that MalNet achieves 99.88% validation accuracy for malware detection. In addition, we also take malware family classification experiment on 9 malware families to compare MalNet with other related works, in which MalNet outperforms most of related works with 99.36% detection accuracy and achieves a considerable speed-up on detecting efficiency comparing with two state-of-the-art results on Microsoft malware dataset.
- Is Part Of:
- Security and communication networks. Volume 2018(2018)
- Journal:
- Security and communication networks
- Issue:
- Volume 2018(2018)
- Issue Display:
- Volume 2018, Issue 2018 (2018)
- Year:
- 2018
- Volume:
- 2018
- Issue:
- 2018
- Issue Sort Value:
- 2018-2018-2018-0000
- Page Start:
- Page End:
- Publication Date:
- 2018-03-12
- Subjects:
- Computer networks -- Security measures -- Periodicals
Computer security -- Periodicals
Cryptography -- Periodicals
005.805 - Journal URLs:
- http://onlinelibrary.wiley.com/journal/10.1002/(ISSN)1939-0122 ↗
https://www.hindawi.com/journals/scn/ ↗
http://onlinelibrary.wiley.com/ ↗ - DOI:
- 10.1155/2018/7247095 ↗
- Languages:
- English
- ISSNs:
- 1939-0114
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library HMNTS - ELD Digital store
- Ingest File:
- 10314.xml