Monotonic models for real-time dynamic malware detection

04/10/2018
by   Alexander Chistyakov, et al.
0

In dynamic malware analysis, programs are classified as malware or benign based on their execution logs. We propose a concept of applying monotonic classification models to the analysis process, to make the trained model's predictions consistent over execution time and provably stable to the injection of any noise or `benign-looking' activity into the program's behavior. The predictions of such models change monotonically through the log in the sense that the addition of new lines into the log may only increase the probability of the file being found malicious, which make them suitable for real-time classification on a user's machine. We evaluate monotonic neural network models based on the work by Chistyakovet al. (2017) and demonstrate that they provide stable and interpretable results.

READ FULL TEXT

page 1

page 2

page 3

page 4

research
09/06/2022

Avast-CTU Public CAPE Dataset

There is a limited amount of publicly available data to support research...
research
08/12/2022

On deceiving malware classification with section injection

We investigate how to modify executable files to deceive malware classif...
research
06/23/2021

MG-DVD: A Real-time Framework for Malware Variant Detection Based on Dynamic Heterogeneous Graph Learning

Detecting the newly emerging malware variants in real time is crucial fo...
research
10/10/2019

Would a File by Any Other Name Seem as Malicious?

Successful malware attacks on information technology systems can cause m...
research
09/26/2022

Evaluating Malware Forensics Tools

We present an example implementation of the previously published Malware...
research
10/21/2018

Label Noise Filtering Techniques to Improve Monotonic Classification

The monotonic ordinal classification has increased the interest of resea...
research
09/27/2021

Casting exploit analysis as a Weird Machine reconstruction problem

Exploits constitute malware in the form of application inputs. They take...

Please sign up or login with your details

Forgot password? Click here to reset