A Machine Learning Approach to Malware Detection Using Application Programming Interface Calls (MDAPI)
Today, all kinds of institutions and organizations depend on the Internet and information systems. They have been an inseparable part of human life. This brings out not only convenience, but also potentially devastating vulnerabilities. There are countless solutions for such risks and it is true tha...
Gespeichert in:
| Veröffentlicht in: | Traitement du signal 2023-08, Vol.40 (4), p.1511-1520 |
|---|---|
| Hauptverfasser: | , |
| Format: | Artikel |
| Sprache: | eng |
| Schlagworte: | |
| Online-Zugang: | Volltext |
| Tags: |
Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
|
| container_end_page | 1520 |
|---|---|
| container_issue | 4 |
| container_start_page | 1511 |
| container_title | Traitement du signal |
| container_volume | 40 |
| creator | Yuksel, Adnan Kutay Ar, Yilmaz |
| description | Today, all kinds of institutions and organizations depend on the Internet and information systems. They have been an inseparable part of human life. This brings out not only convenience, but also potentially devastating vulnerabilities. There are countless solutions for such risks and it is true that these solutions greatly contribute to security, but no effective solution has yet been found against Zero-Day malware. Zero-day malware is malicious software that has not yet been identified by competent authorities and is not classified as malicious software. A traditional malware detection tool can only detect previously detected software and classify it as malicious. Machine learning methods, which have proven effective in various domains, offer a promising approach to addressing Zero-Day malware. Throughout this study, a stable solution other than traditional methods have been investigated to overcome all kinds of malware. Instead of solutions consisting of complex, time-consuming and heterogeneous features (such as deleting/adding/changing files, monitoring registry records, or running processes) in various studies in the literature, a simple, low-time cost and stable solution with homogeneous features (only API calls) has been obtained. The 98.04% accuracy score shows that the method is quite successful. The importance of the study is having high accuracy using only API calls as features in malware detection. It has been realized that classical antivirus methods are no longer sufficient for combating malicious software. |
| doi_str_mv | 10.18280/ts.400419 |
| format | Article |
| fullrecord | <record><control><sourceid>proquest_cross</sourceid><recordid>TN_cdi_proquest_journals_3097397978</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>3097397978</sourcerecordid><originalsourceid>FETCH-LOGICAL-c254t-a382dbdfc68c9b2b2c4623c64e94844301c53ee732fda742ec292f2164a0d5e63</originalsourceid><addsrcrecordid>eNotkE1LAzEQhoMoWGov_oKAFxW25muzyXFpqxZa7MGeQ5qd1C3b3ZqkiP_ete1cBp55mGFehO4pGVPFFHlJcSwIEVRfoQHVucpySdQ1GpBC5hkhVN-iUYw70henQko-QL7ES-u-6hbwAmxo63aLy8MhdD3EqeuHzY8NgKeQwKW6a_E6XpymdvZEVqHbBrvf__N5myB46wBPbNNE_Liclqv50x268baJMLr0IVq_zj4n79ni420-KReZY7lImeWKVZvKO6mc3rANc0Iy7qQALZQQnFCXc4CCM1_ZQjBwTDPPqBSWVDlIPkQP5739B99HiMnsumNo-5OGE11wXehC9dbz2XKhizGAN4dQ7234NZSYU5QmRXOOkv8BTo5lJQ</addsrcrecordid><sourcetype>Aggregation Database</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype><pqid>3097397978</pqid></control><display><type>article</type><title>A Machine Learning Approach to Malware Detection Using Application Programming Interface Calls (MDAPI)</title><source>EZB-FREE-00999 freely available EZB journals</source><creator>Yuksel, Adnan Kutay ; Ar, Yilmaz</creator><creatorcontrib>Yuksel, Adnan Kutay ; Ar, Yilmaz</creatorcontrib><description>Today, all kinds of institutions and organizations depend on the Internet and information systems. They have been an inseparable part of human life. This brings out not only convenience, but also potentially devastating vulnerabilities. There are countless solutions for such risks and it is true that these solutions greatly contribute to security, but no effective solution has yet been found against Zero-Day malware. Zero-day malware is malicious software that has not yet been identified by competent authorities and is not classified as malicious software. A traditional malware detection tool can only detect previously detected software and classify it as malicious. Machine learning methods, which have proven effective in various domains, offer a promising approach to addressing Zero-Day malware. Throughout this study, a stable solution other than traditional methods have been investigated to overcome all kinds of malware. Instead of solutions consisting of complex, time-consuming and heterogeneous features (such as deleting/adding/changing files, monitoring registry records, or running processes) in various studies in the literature, a simple, low-time cost and stable solution with homogeneous features (only API calls) has been obtained. The 98.04% accuracy score shows that the method is quite successful. The importance of the study is having high accuracy using only API calls as features in malware detection. It has been realized that classical antivirus methods are no longer sufficient for combating malicious software.</description><identifier>ISSN: 0765-0019</identifier><identifier>EISSN: 1958-5608</identifier><identifier>DOI: 10.18280/ts.400419</identifier><language>eng</language><publisher>Edmonton: International Information and Engineering Technology Association (IIETA)</publisher><subject>Accuracy ; Anti-virus software ; Application programming interface ; Automation ; Cybersecurity ; Datasets ; Information systems ; Internet ; Machine learning ; Malware ; Methods</subject><ispartof>Traitement du signal, 2023-08, Vol.40 (4), p.1511-1520</ispartof><rights>2023. This work is published under https://creativecommons.org/licenses/by/4.0/ (the “License”). Notwithstanding the ProQuest Terms and Conditions, you may use this content in accordance with the terms of the License.</rights><lds50>peer_reviewed</lds50><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><link.rule.ids>315,781,785,27929,27930</link.rule.ids></links><search><creatorcontrib>Yuksel, Adnan Kutay</creatorcontrib><creatorcontrib>Ar, Yilmaz</creatorcontrib><title>A Machine Learning Approach to Malware Detection Using Application Programming Interface Calls (MDAPI)</title><title>Traitement du signal</title><description>Today, all kinds of institutions and organizations depend on the Internet and information systems. They have been an inseparable part of human life. This brings out not only convenience, but also potentially devastating vulnerabilities. There are countless solutions for such risks and it is true that these solutions greatly contribute to security, but no effective solution has yet been found against Zero-Day malware. Zero-day malware is malicious software that has not yet been identified by competent authorities and is not classified as malicious software. A traditional malware detection tool can only detect previously detected software and classify it as malicious. Machine learning methods, which have proven effective in various domains, offer a promising approach to addressing Zero-Day malware. Throughout this study, a stable solution other than traditional methods have been investigated to overcome all kinds of malware. Instead of solutions consisting of complex, time-consuming and heterogeneous features (such as deleting/adding/changing files, monitoring registry records, or running processes) in various studies in the literature, a simple, low-time cost and stable solution with homogeneous features (only API calls) has been obtained. The 98.04% accuracy score shows that the method is quite successful. The importance of the study is having high accuracy using only API calls as features in malware detection. It has been realized that classical antivirus methods are no longer sufficient for combating malicious software.</description><subject>Accuracy</subject><subject>Anti-virus software</subject><subject>Application programming interface</subject><subject>Automation</subject><subject>Cybersecurity</subject><subject>Datasets</subject><subject>Information systems</subject><subject>Internet</subject><subject>Machine learning</subject><subject>Malware</subject><subject>Methods</subject><issn>0765-0019</issn><issn>1958-5608</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2023</creationdate><recordtype>article</recordtype><sourceid>AFKRA</sourceid><sourceid>BENPR</sourceid><sourceid>CCPQU</sourceid><sourceid>DWQXO</sourceid><recordid>eNotkE1LAzEQhoMoWGov_oKAFxW25muzyXFpqxZa7MGeQ5qd1C3b3ZqkiP_ete1cBp55mGFehO4pGVPFFHlJcSwIEVRfoQHVucpySdQ1GpBC5hkhVN-iUYw70henQko-QL7ES-u-6hbwAmxo63aLy8MhdD3EqeuHzY8NgKeQwKW6a_E6XpymdvZEVqHbBrvf__N5myB46wBPbNNE_Liclqv50x268baJMLr0IVq_zj4n79ni420-KReZY7lImeWKVZvKO6mc3rANc0Iy7qQALZQQnFCXc4CCM1_ZQjBwTDPPqBSWVDlIPkQP5739B99HiMnsumNo-5OGE11wXehC9dbz2XKhizGAN4dQ7234NZSYU5QmRXOOkv8BTo5lJQ</recordid><startdate>20230801</startdate><enddate>20230801</enddate><creator>Yuksel, Adnan Kutay</creator><creator>Ar, Yilmaz</creator><general>International Information and Engineering Technology Association (IIETA)</general><scope>AAYXX</scope><scope>CITATION</scope><scope>8FE</scope><scope>8FG</scope><scope>ABJCF</scope><scope>AFKRA</scope><scope>BENPR</scope><scope>BGLVJ</scope><scope>CCPQU</scope><scope>DWQXO</scope><scope>HCIFZ</scope><scope>L6V</scope><scope>M7S</scope><scope>PQBIZ</scope><scope>PQEST</scope><scope>PQQKQ</scope><scope>PQUKI</scope><scope>PRINS</scope><scope>PTHSS</scope></search><sort><creationdate>20230801</creationdate><title>A Machine Learning Approach to Malware Detection Using Application Programming Interface Calls (MDAPI)</title><author>Yuksel, Adnan Kutay ; Ar, Yilmaz</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-c254t-a382dbdfc68c9b2b2c4623c64e94844301c53ee732fda742ec292f2164a0d5e63</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2023</creationdate><topic>Accuracy</topic><topic>Anti-virus software</topic><topic>Application programming interface</topic><topic>Automation</topic><topic>Cybersecurity</topic><topic>Datasets</topic><topic>Information systems</topic><topic>Internet</topic><topic>Machine learning</topic><topic>Malware</topic><topic>Methods</topic><toplevel>peer_reviewed</toplevel><toplevel>online_resources</toplevel><creatorcontrib>Yuksel, Adnan Kutay</creatorcontrib><creatorcontrib>Ar, Yilmaz</creatorcontrib><collection>CrossRef</collection><collection>ProQuest SciTech Collection</collection><collection>ProQuest Technology Collection</collection><collection>Materials Science & Engineering Collection</collection><collection>ProQuest Central UK/Ireland</collection><collection>ProQuest Central</collection><collection>Technology Collection</collection><collection>ProQuest One Community College</collection><collection>ProQuest Central Korea</collection><collection>SciTech Premium Collection</collection><collection>ProQuest Engineering Collection</collection><collection>Engineering Database</collection><collection>ProQuest One Business</collection><collection>ProQuest One Academic Eastern Edition (DO NOT USE)</collection><collection>ProQuest One Academic</collection><collection>ProQuest One Academic UKI Edition</collection><collection>ProQuest Central China</collection><collection>Engineering Collection</collection><jtitle>Traitement du signal</jtitle></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext</fulltext></delivery><addata><au>Yuksel, Adnan Kutay</au><au>Ar, Yilmaz</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>A Machine Learning Approach to Malware Detection Using Application Programming Interface Calls (MDAPI)</atitle><jtitle>Traitement du signal</jtitle><date>2023-08-01</date><risdate>2023</risdate><volume>40</volume><issue>4</issue><spage>1511</spage><epage>1520</epage><pages>1511-1520</pages><issn>0765-0019</issn><eissn>1958-5608</eissn><abstract>Today, all kinds of institutions and organizations depend on the Internet and information systems. They have been an inseparable part of human life. This brings out not only convenience, but also potentially devastating vulnerabilities. There are countless solutions for such risks and it is true that these solutions greatly contribute to security, but no effective solution has yet been found against Zero-Day malware. Zero-day malware is malicious software that has not yet been identified by competent authorities and is not classified as malicious software. A traditional malware detection tool can only detect previously detected software and classify it as malicious. Machine learning methods, which have proven effective in various domains, offer a promising approach to addressing Zero-Day malware. Throughout this study, a stable solution other than traditional methods have been investigated to overcome all kinds of malware. Instead of solutions consisting of complex, time-consuming and heterogeneous features (such as deleting/adding/changing files, monitoring registry records, or running processes) in various studies in the literature, a simple, low-time cost and stable solution with homogeneous features (only API calls) has been obtained. The 98.04% accuracy score shows that the method is quite successful. The importance of the study is having high accuracy using only API calls as features in malware detection. It has been realized that classical antivirus methods are no longer sufficient for combating malicious software.</abstract><cop>Edmonton</cop><pub>International Information and Engineering Technology Association (IIETA)</pub><doi>10.18280/ts.400419</doi><tpages>10</tpages><oa>free_for_read</oa></addata></record> |
| fulltext | fulltext |
| identifier | ISSN: 0765-0019 |
| ispartof | Traitement du signal, 2023-08, Vol.40 (4), p.1511-1520 |
| issn | 0765-0019 1958-5608 |
| language | eng |
| recordid | cdi_proquest_journals_3097397978 |
| source | EZB-FREE-00999 freely available EZB journals |
| subjects | Accuracy Anti-virus software Application programming interface Automation Cybersecurity Datasets Information systems Internet Machine learning Malware Methods |
| title | A Machine Learning Approach to Malware Detection Using Application Programming Interface Calls (MDAPI) |
| url | https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2024-12-12T15%3A00%3A45IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-proquest_cross&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=A%20Machine%20Learning%20Approach%20to%20Malware%20Detection%20Using%20Application%20Programming%20Interface%20Calls%20(MDAPI)&rft.jtitle=Traitement%20du%20signal&rft.au=Yuksel,%20Adnan%20Kutay&rft.date=2023-08-01&rft.volume=40&rft.issue=4&rft.spage=1511&rft.epage=1520&rft.pages=1511-1520&rft.issn=0765-0019&rft.eissn=1958-5608&rft_id=info:doi/10.18280/ts.400419&rft_dat=%3Cproquest_cross%3E3097397978%3C/proquest_cross%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_pqid=3097397978&rft_id=info:pmid/&rfr_iscdi=true |