Online analytical model of massive malware based on feature clusting

Online analytical model of massive malware based on feature clusting

In order to improve the effectiveness and efficiency of mass malicious code analysis,an online analytical model was proposed including feature space construction,automatic feature extraction and fast clustering.Our research focused on the law of malware behavior and code string distribution by dynam...

Full description

Saved in:
Bibliographic Details
Main Authors: Xiao-lin XU, Xiao-chun YUN, Yong-lin ZHOU, Xue-bin KANG
Format: Article
Language:zho
Published: Editorial Department of Journal on Communications 2013-08-01
Series:Tongxin xuebao
Subjects:
malware
on-line analytical
fast clustering
feature extraction
Online Access:http://www.joconline.com.cn/zh/article/doi/10.3969/j.issn.1000-436x.2013.08.019/
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:In order to improve the effectiveness and efficiency of mass malicious code analysis,an online analytical model was proposed including feature space construction,automatic feature extraction and fast clustering.Our research focused on the law of malware behavior and code string distribution by dynamic and static techniques.In this model,a sample was described with its API and key code fragment.This model proposed a fast clustering approach to identify group samples that exhibit similar feature when applied this model to real-world malware collections.The result demonstrates that the proposed model is able to extract feature automatically,support streaming data clustering on large-scale,and achieve better precision.
ISSN:1000-436X

Similar Items