Perfecting a Video Game with Game Metrics
Vol 14, No 3: September 2016

Metamorphic Malware Detection Based on Support Vector Machine Classification of Malware Sub-Signatures

Ban Mohammed Khammas (Universiti Teknologi Malaysia)
Alireza Monemi (Universiti Teknologi Malaysia)
Ismahani Ismail (Universiti Teknologi Malaysia)
Sulaiman Mohd Nor (Universiti Teknologi Malaysia)
M.N. Marsono (Universiti Teknologi Malaysia)

Article Info

Publish Date
01 Sep 2016

Abstract

Achieving accurate and efficient metamorphic malware detection remains a challenge. Metamorphic malware is able to mutate and alter its code structure in each infection, with some vital functionality and codesegment remain unchanged. We exploit these unchanged features for detecting metamorphic malware detection using Support Vector Machine(SVM) classifier. n-gram features are extracted directly from sample malware binaries to avoid disassembly, which are then masked with the extracted Snort signature n-grams. These masked features reduce considerably the number of selected n-gram features. Our method is capable to accurately detect metamorphic malware with ~99 % accuracy and low false positive rate. The proposed method is also superior than commercially available anti-viruses in detecting metamorphicmalware.

Copyrights © 2016




Citation Download
RIS
EndNote, Reference Manager, ProCite
BibTex
Latex, Jabref
Original Source
Download Original
Google Scholar
Check in Google Scholar
Journal Info
Perfecting a Video Game with Game Metrics
Website

Abbrev

TELKOMNIKA

Publisher

Universitas Ahmad Dahlan

Subject

Computer Science & IT

Description

Submitted papers are evaluated by anonymous referees by single blind peer review for contribution, originality, relevance, and presentation. The Editor shall inform you of the results of the review as soon as possible, hopefully in 10 weeks. Please notice that because of the great number of ...