|
|
|
|
Hierarchical density-based clustering of malware behaviour
|
|
|
|
|
|
|
|
نویسنده
|
chanderan n. ,abdullah j.
|
|
منبع
|
journal of telecommunication, electronic and computer engineering - 2017 - دوره : 9 - شماره : 2-10 - صفحه:159 -164
|
|
چکیده
|
The numbers and diversity of malware variants grows exponentially over the years,and there is a need to improve the efficiency of analysing large number of malware samples efficiently. to address this problem,we propose a framework for the automatic analysis of a given malware’s dynamic properties using clustering technique. the framework also provides outlier discovery,abnormal behaviour analysis and discrimination of malware variants. we also created a module for normalisation of malware labelling based on the labels we get from virustotal,which provides consistency of malware labels for accurate analysis of malware family and types. an evaluation model for the proposed framework is also discussed. ultimately,the proposed framework will ensure rapid analysis of malware samples and lead to better protection for various parties against malicious malware.
|
|
کلیدواژه
|
Anomaly Detection; Automated Dynamic Malware Analysis; Clustering; Malware Behaviour
|
|
آدرس
|
faculty of computer science and information technology,universiti malaysia sarawak,kota samarahan,sarawak, Malaysia, faculty of computer science and information technology,universiti malaysia sarawak,kota samarahan,sarawak, Malaysia
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Authors
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|