Advancement of Computer Technology and its Applications (e-ISSN:2584-1262)

Research is being conducted on malware analysis and classification using various models and techniques. The increasing presence of malware code files has made manual analysis time-consuming, so efficient tools are needed to quickly detect malware. One popular technique is using machine learning models to classify malware code as images, which simplifies the detection process. The objective is to train a model that can classify new malware files on its own, using techniques such as CNNs for image processing and subsequent classification. This paper proposes the usage of a CNN + SVM model for classification which is shown to outperform popular classification methodologies.

N. Idika and A. P. Mathur, “A survey of malware detection techniques,” Purdue University, vol. 48, 2007.

K. Rieck, T. Holz, C. Willems, P. Dussel, and P. Laskov, “Learning and classification of malware behavior,” in International Conference on Detection of Intrusions and Malware, and Vulnerability Assessment. Springer, 2008, pp. 108–125.

M. Siddiqui, M. C. Wang, and J. Lee, “A survey of data mining techniques for malware detection using file features,” in Proceedings of the 46th Annual Southeast Regional Conference on XX. ACM, 2008, pp. 509–510

W. Hardy, L. Chen, S. Hou, Y. Ye, and X. Li, “Dlmd: A deep learning framework for intelligent malware detection,” in Proceedings of the International Conference on Data Mining (DMIN), 2016

M. G. Schultz, E. Eskin, F. Zadok, and S. J. Stolfo, “Data mining meth- ods for detection of new malicious executables,” in IEEE Symposium on Security and Privacy. IEEE, 2001, pp. 38–49.

J. Z. Kolter and M. A. Maloof, “Learning to detect malicious executables in the wild,” in Proceedings of the tenth ACM SIGKDD international conference on Knowledge discovery and data mining. ACM, 2004, pp. 470–478.

D. Gibert Llaurado, “Convolutional neural networks for malware clas- sification,” Master’s thesis, Universitat Politecnica de Catalunya, 2016.