Martin, A; Menéndez, HD; Camacho, D; (2016) Genetic boosting classification for malware detection. In: Proceedings of the Congress on Evolutionary Computation (CEC) 2016. (pp. pp. 1030-1037). IEEE: Danvers (MA), USA.

Preview

Text Menendez Benito_Genetic Boosting Classification for Malware Detection_AAM.pdf - Accepted Version Download (239kB) | Preview

Abstract

In the last few years virus writers have made use of new obfuscation techniques with the aim of hindering malware in order to difficult their detection by Anti-Virus engines. Strategies to reverse this trend involve executing potentially malicious programs and monitor the actions they perform in runtime, what is known as dynamic analysis. In this paper we present a method able to reach a high accuracy rate without using this kind of analysis. Instead we use a static analysis approach, which discards those samples that cannot be classified with enough certainty and need, certainly, a dynamic analysis. The K-means clustering algorithm has been used to group samples into regions according to their features. Then a boosting process, guided by a genetic algorithm, is executed in each region that are evaluated using a test dataset discarding those regions which do not reach a minimum accuracy threshold.

Download activity - last month

Export as CSVXMLJSON

Download activity - last 12 months

Export as CSVJSONXML

Downloads by country - last 12 months

Export as XMLJSONCSV

Archive Staff Only

View Item