Cargando…
Intelligent malware detection based on graph convolutional network
Malware has seriously threatened the safety of computer systems for a long time. Due to the rapid development of anti-detection technology, traditional detection methods based on static analysis and dynamic analysis have limited effects. With its better predictive performance, AI-based malware detec...
| Autores principales: | , , , |
|---|---|
| Formato: | Online Artículo Texto |
| Lenguaje: | English |
| Publicado: |
Springer US
2021
|
| Materias: | |
| Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC8383728/ https://www.ncbi.nlm.nih.gov/pubmed/34456504 http://dx.doi.org/10.1007/s11227-021-04020-y |
| _version_ | 1783741797691817984 |
|---|---|
| author | Li, Shanxi Zhou, Qingguo Zhou, Rui Lv, Qingquan |
| author_facet | Li, Shanxi Zhou, Qingguo Zhou, Rui Lv, Qingquan |
| author_sort | Li, Shanxi |
| collection | PubMed |
| description | Malware has seriously threatened the safety of computer systems for a long time. Due to the rapid development of anti-detection technology, traditional detection methods based on static analysis and dynamic analysis have limited effects. With its better predictive performance, AI-based malware detection has been increasingly used to deal with malware in recent years. However, due to the diversity of malware, it is difficult to extract feature from malware, which make malware detection not conductive to the application of AI technology. To solve the problem, a malware classifier based on graph convolutional network is designed to adapt to the difference of malware characteristics. The specific method is to firstly extract the API call sequence from the malware code and generate a directed cycle graph, then use the Markov chain and principal component analysis method to extract the feature map of the graph, and design a classifier based on graph convolutional network, and finally analyze and compare the performance of the method. The results show that the method has better performance in most detection, and the highest accuracy is [Formula: see text] , compared with existing methods, our model is superior to other methods in terms of FPR and accuracy. It is also stable to deal with the development and growth of malware. |
| format | Online Article Text |
| id | pubmed-8383728 |
| institution | National Center for Biotechnology Information |
| language | English |
| publishDate | 2021 |
| publisher | Springer US |
| record_format | MEDLINE/PubMed |
| spelling | pubmed-83837282021-08-24 Intelligent malware detection based on graph convolutional network Li, Shanxi Zhou, Qingguo Zhou, Rui Lv, Qingquan J Supercomput Article Malware has seriously threatened the safety of computer systems for a long time. Due to the rapid development of anti-detection technology, traditional detection methods based on static analysis and dynamic analysis have limited effects. With its better predictive performance, AI-based malware detection has been increasingly used to deal with malware in recent years. However, due to the diversity of malware, it is difficult to extract feature from malware, which make malware detection not conductive to the application of AI technology. To solve the problem, a malware classifier based on graph convolutional network is designed to adapt to the difference of malware characteristics. The specific method is to firstly extract the API call sequence from the malware code and generate a directed cycle graph, then use the Markov chain and principal component analysis method to extract the feature map of the graph, and design a classifier based on graph convolutional network, and finally analyze and compare the performance of the method. The results show that the method has better performance in most detection, and the highest accuracy is [Formula: see text] , compared with existing methods, our model is superior to other methods in terms of FPR and accuracy. It is also stable to deal with the development and growth of malware. Springer US 2021-08-24 2022 /pmc/articles/PMC8383728/ /pubmed/34456504 http://dx.doi.org/10.1007/s11227-021-04020-y Text en © The Author(s), under exclusive licence to Springer Science+Business Media, LLC, part of Springer Nature 2021 This article is made available via the PMC Open Access Subset for unrestricted research re-use and secondary analysis in any form or by any means with acknowledgement of the original source. These permissions are granted for the duration of the World Health Organization (WHO) declaration of COVID-19 as a global pandemic. |
| spellingShingle | Article Li, Shanxi Zhou, Qingguo Zhou, Rui Lv, Qingquan Intelligent malware detection based on graph convolutional network |
| title | Intelligent malware detection based on graph convolutional network |
| title_full | Intelligent malware detection based on graph convolutional network |
| title_fullStr | Intelligent malware detection based on graph convolutional network |
| title_full_unstemmed | Intelligent malware detection based on graph convolutional network |
| title_short | Intelligent malware detection based on graph convolutional network |
| title_sort | intelligent malware detection based on graph convolutional network |
| topic | Article |
| url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC8383728/ https://www.ncbi.nlm.nih.gov/pubmed/34456504 http://dx.doi.org/10.1007/s11227-021-04020-y |
| work_keys_str_mv | AT lishanxi intelligentmalwaredetectionbasedongraphconvolutionalnetwork AT zhouqingguo intelligentmalwaredetectionbasedongraphconvolutionalnetwork AT zhourui intelligentmalwaredetectionbasedongraphconvolutionalnetwork AT lvqingquan intelligentmalwaredetectionbasedongraphconvolutionalnetwork |