REMSF: A Robust Ensemble Model of Malware Detection Based on Semantic Feature Fusion

REMSF: A Robust Ensemble Model of Malware Detection Based on Semantic Feature Fusion

With the rapid development of Internet of things, the amount and distribution of malware has greatly increased. Internet of things platform needs new defense technologies to protect users from new the increasing number and complexity of malware. This paper extracts import Dlls and import APIs from o...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:IEEE internet of things journal 2023-09, Vol.10 (18), p.1-1
Hauptverfasser: Yu, Zhuocheng, Li, Shudong, Bai, Youming, Han, Weihong, Wu, Xiaobo, Tian, Zhihong
Format: Artikel
Sprache:eng
Schlagworte:
Codes
Ensemble learning
Feature extraction
Feature fusion
Heterogeneous graph
Imports
Internet of Things
Malware
Malware detection
Operating systems
Robustness
Semantics
Training
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:With the rapid development of Internet of things, the amount and distribution of malware has greatly increased. Internet of things platform needs new defense technologies to protect users from new the increasing number and complexity of malware. This paper extracts import Dlls and import APIs from original PE file, and uses heterogeneous graph to describe higher-level semantic relationship between two PE files. Besides this we construct four static features to comprehensively describe PE file. Based on ensemble learning we develop a model called REMSF which fuses five features mentioned above. To evaluate REMSF, we collect 5370 executable PE files from real world for series of experiments, in which REMSFs detection accuracy can reach 99.07%.
ISSN:2327-4662
2327-4662
DOI:10.1109/JIOT.2023.3267337