Path: Top -> Journal -> Jurnal Internasional -> King Saud University -> 2019 -> Volume 31, Issue 2, April

A learning model to detect maliciousness of portable executable using integrated feature set

Journal from gdlhub / 2019-05-29 09:48:53
By : Ajit Kumar, K.S. Kuppusamy, G. Aghila, King Saud University
Created : 2019-05-29, with 1 files

Keyword : Malware, Portable executable, Machine learning, Integrated features
Url : http://www.sciencedirect.com/science/article/pii/S1319157817300149
Document Source : WEB

Malware is one of the top most obstructions for expansion and growth of digital acceptance among the users. Both enterprises and common users are struggling to get protected from the malware in the cyberspace, which emphasizes the importance of developing efficient methods of malware detection. In this work, we propose a machine learning based solution to classify a sample as benign or malware with high accuracy and low computation overhead. An integrated feature set has been amalgamated as a combination of portable executable header fields raw value and derived values. Various machine-learning algorithms such as Decision Tree, Random Forest, kNN, Logistic Regression, Linear Discriminant Analysis and Naive Bayes were adopted in the classification of malware. Using existing raw feature set and the proposed integrated feature set we compared performance of each classifier. The empirical evidence indicates 98.4% classification accuracy in the 10-fold cross validation for the proposed integrated feature set. In the experiments conducted on the novel test data set the accuracy was observed as 89.23% for the integrated feature set which is 15% improvement on accuracy achieved with raw-feature set alone. Classification accuracy with only top N features (N = 5, 10, 15, 20, 25) are also experimented and it was observed that with only top 15 features 98% and 97% accuracy can be achieved on integrated and raw feature respectively.

Give Comment ?#(0) | Bookmark

PropertyValue
Publisher IDgdlhub
OrganizationKing Saud University
Contact NameHerti Yani, S.Kom
AddressJln. Jenderal Sudirman
CityJambi
RegionJambi
CountryIndonesia
Phone0741-35095
Fax0741-35093
Administrator E-mailelibrarystikom@gmail.com
CKO E-mailelibrarystikom@gmail.com

Print ...

Contributor...

  • , Editor: sustriani

Downnload...