Malware Multi-Class Classification based on Malware Visualization using a Convolutional Neural Network Model

Malware classification has already been a prominent concern for decades, and malware attacks have proliferated at an astounding rate, constituting a significant threat to cyberspace. Deep learning (DL) and malware image approaches are becoming more prevalent in the field of malware analysis, with sp...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:International journal of information engineering and electronic business 2023-04, Vol.15 (2), p.20-29
Hauptverfasser: Yadav, Balram, Tokekar, Sanjiv
Format: Artikel
Sprache:eng
Schlagworte:
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Malware classification has already been a prominent concern for decades, and malware attacks have proliferated at an astounding rate, constituting a significant threat to cyberspace. Deep learning (DL) and malware image approaches are becoming more prevalent in the field of malware analysis, with spectacular results. This work focuses on the challenge of classifying malware variants that are represented as images. This study employs visualization and proposes a convolutional neural network (CNN) based DL model to effectively and accurately classify malware. The proposed model is trained and tested on a very challenging and heterogeneous dataset, and it achieves accuracy of 98.179%, precision of 97.39%, a F1-score of 97.70%, and a fast classification speed (3 seconds needed to test 934 unseen malware). This demonstrates the proposed model's incredibly quick, effective and accurate performance. The proposed model outperformed existing traditional DL models in terms of various performance measures and demonstrated its usefulness in classifying malware families through visualization. This study and experimental results reveal that small-scale malware images and a simple CNN architecture alone are capable of accurately classifying malware families with high classification accuracy.
ISSN:2074-9023
2074-9031
DOI:10.5815/ijieeb.2023.02.03