English

Malware Task Identification: A Data Driven Approach

Cryptography and Security 2015-07-08 v1
Authors: Eric Nunes , Casey Buto , Paulo Shakarian , Christian Lebiere , Stefano Bennati , Robert Thomson , Holger Jaenisch
View on arXiv PDF

Abstract

Identifying the tasks a given piece of malware was designed to perform (e.g. logging keystrokes, recording video, establishing remote access, etc.) is a difficult and time-consuming operation that is largely human-driven in practice. In this paper, we present an automated method to identify malware tasks. Using two different malware collections, we explore various circumstances for each - including cases where the training data differs significantly from test; where the malware being evaluated employs packing to thwart analytical techniques; and conditions with sparse training data. We find that this approach consistently out-performs the current state-of-the art software for malware task identification as well as standard machine learning approaches - often achieving an unbiased F1 score of over 0.9. In the near future, we look to deploy our approach for use by analysts in an operational cyber-security environment.

Keywords

malware detection vulnerability detection process mining

Cite

@article{arxiv.1507.01930,
  title  = {Malware Task Identification: A Data Driven Approach},
  author = {Eric Nunes and Casey Buto and Paulo Shakarian and Christian Lebiere and Stefano Bennati and Robert Thomson and Holger Jaenisch},
  journal= {arXiv preprint arXiv:1507.01930},
  year   = {2015}
}

Comments

8 pages full paper, accepted FOSINT-SI (2015)

Related papers

View all related →
Cryptography and Security · Computer Science
A Survey of Machine Learning Methods and Challenges for Windows Malware Classification
Edward Raff, Charles Nicholas
2020-11-17
Cryptography and Security · Computer Science
Dynamic Analysis of Executables to Detect and Characterize Malware
Michael R. Smith, Joe B. Ingram, Christopher C. Lamb, Timothy J. Draelos +3
2018-10-01
Cryptography and Security · Computer Science
A Comparison of Selected Image Transformation Techniques for Malware Classification
Rishit Agrawal, Kunal Bhatnagar, Andrew Do, Ronnit Rana +1
2025-09-16
Cryptography and Security · Computer Science
Symbolic analysis meets federated learning to enhance malware identifier
Khanh Huu The Dam, Charles-Henry Bertrand Van Ouytsel, Axel Legay
2022-05-02
Applications · Statistics
Stochastic identification of malware with dynamic traces
Curtis Storlie, Blake Anderson, Scott Vander Wiel, Daniel Quist +2
2014-04-10
Cryptography and Security · Computer Science
A Novel Malware Detection Mechanism based on Features Extracted from Converted Malware Binary Images
Abhijitt Dhavlle, Sanket Shukla
2021-04-15
Cryptography and Security · Computer Science
Malware Analysis on AI Technique
Amjani Gupta, Karan Singh
2024-09-01
Cryptography and Security · Computer Science
A Survey of Malware Detection Using Deep Learning
Ahmed Bensaoud, Jugal Kalita, Mahmoud Bensaoud
2024-07-30
Cryptography and Security · Computer Science
Tools and Techniques for Malware Detection and Analysis
Sajedul Talukder
2020-07-01
Cryptography and Security · Computer Science
Advances In Malware Detection- An Overview
Heena
2021-05-11
Cryptography and Security · Computer Science
A comparison, analysis, and provision of methods in identifying types of malware and means of malware detection and protection against them
Sebastian Grochola, Andrew Milliner
2022-12-26
Cryptography and Security · Computer Science
Early Detection of In-Memory Malicious Activity based on Run-time Environmental Features
Dorel Yaffe, Danny Hendler
2021-08-17
Cryptography and Security · Computer Science
Malware Detection and Prevention using Artificial Intelligence Techniques
Md Jobair Hossain Faruk, Hossain Shahriar, Maria Valero, Farhat Lamia Barsha +7
2022-06-28
Cryptography and Security · Computer Science
Survey of Machine Learning Techniques for Malware Analysis
Daniele Ucci, Leonardo Aniello, Roberto Baldoni
2018-11-27
Machine Learning · Computer Science
Automatic Malware Description via Attribute Tagging and Similarity Embedding
Felipe N. Ducau, Ethan M. Rudd, Tad M. Heppner, Alex Long +1
2020-01-24
Cryptography and Security · Computer Science
Deep learning at the shallow end: Malware classification for non-domain experts
Quan Le, Oisín Boydell, Brian Mac Namee, Mark Scanlon
2018-07-24
Cryptography and Security · Computer Science
Improving the detection accuracy of unknown malware by partitioning the executables in groups
Ashu Sharma, Sanjay K. Sahay, Abhishek Kumar
2018-09-18
Cryptography and Security · Computer Science
Dissecting Malware in the Wild
Hamish Spencer, Wei Wang, Ruoxi Sun, Minhui Xue
2021-12-07
Cryptography and Security · Computer Science
SPAM: Signal Processing to Analyze Malware
Lakshmanan Nataraj, B. S. Manjunath
2016-05-18
Cryptography and Security · Computer Science
Machine Learning Aided Static Malware Analysis: A Survey and Tutorial
Andrii Shalaginov, Sergii Banin, Ali Dehghantanha, Katrin Franke
2018-08-06
Cryptography and Security · Computer Science
Enhancing Enterprise Network Security: Comparing Machine-Level and Process-Level Analysis for Dynamic Malware Detection
Baskoro Adi Pratomo, Toby Jackson, Pete Burnap, Andrew Hood +1
2023-10-30
Cryptography and Security · Computer Science
Vulnerability Detection Approaches on Application Behaviors in Mobile Environment
Abdellah Ouaguid, Mohamed Ouzzif, Noreddine Abghour
2023-08-01
Software Engineering · Computer Science
Towards Online Malware Detection using Process Resource Utilization Metrics
Themistoklis Diamantopoulos, Dimosthenis Natsos, Andreas L. Symeonidis
2026-01-16
Cryptography and Security · Computer Science
PageRank in Malware Categorization
BooJoong Kang, Suleiman Y. Yerima, Kieran McLaughlin, Sakir Sezer
2016-08-03
Cryptography and Security · Computer Science
Analysis of Machine Learning Approaches to Packing Detection
Charles-Henry Bertrand Van Ouytsel, Thomas Given-Wilson, Jeremy Minet, Julian Roussieau +1
2021-05-04
R2 v1 2026-06-22T10:07:32.896Z