Tu, N.M. and Hung, N.V. and Anh, P.V. and Van Loi, C. and Shone, N. (2020) Detecting Malware Based on Dynamic Analysis Techniques Using Deep Graph Learning. In: 7th International Conference on Future Data and Security Engineering, FDSE 2020, 25 November 2020 through 27 November 2020.
111.Detecting Malware Based on Dynamic Analysis Techniques Using Deep Graph Learning.pdf
Download (905kB) | Preview
Abstract
Detecting malware using dynamic analysis techniques is an efficient method. Those familiar techniques such as signature-based detection perform poorly when attempting to identify zero-day malware, and it is also a challenging and time-consuming task to manually engineer malicious behaviors. Several studies have tried to detect unknown behaviors automatically. One of effective approaches introduced in recent years is to use graphs to represent the behavior of an executable, and learn from these graphs. However, current graph representations have ignored much important information such as parameters, variables changes… In this paper, we present a new method for malware detection by applying a graph attention network on multi-edge directional heterogeneous graphs constructed from Windows API calls collected after a file being executed in cuckoo sandbox… The experiments show that our model achieves better performance than other baseline models at both TPR and FAR scores. © 2020, Springer Nature Switzerland AG.
Item Type: | Conference or Workshop Item (Paper) |
---|---|
Divisions: | Faculties > Faculty of Information Technology |
Identification Number: | 10.1007/978-3-030-63924-2_21 |
Uncontrolled Keywords: | Consumer behavior; Deep learning; Security systems; Dynamic analysis techniques; Effective approaches; Graph representation; Heterogeneous graph; Malicious behavior; Malware detection; Signature based detections; Time-consuming tasks; Malware |
Additional Information: | Conference code: 252059. Language of original document: English. |
URI: | http://eprints.lqdtu.edu.vn/id/eprint/9110 |