Title :
Fuzzy Neural Network for Malware Detect
Author :
Zhang, Yichi ; Pang, Jianmin ; Yue, Feng ; Cui, Jinxian
Author_Institution :
Nat. Digital Switching Syst. Eng. & Technol. Res. Center, Zhengzhou, China
Abstract :
The current commercial anti-virus software detects a virus only after the virus has appeared and caused damage. Motivated by the inference technique for detecting viruses, and a recent successful classification method, we explore a system (Radux: Reverse Analysis for Detecting Unsafe eXecutables) for automatically detecting malicious code using the collected dataset of the benign and malicious code. Our system rests on fuzzy inference based on behavior hidden in malicious code. Decompile technique is applied to characterize behavioral and structural properties of binary code, which creates more abstract descriptions of malware. The proposed method can acquire the fuzzy subsets and its membership function in an automatic way with the GD-FNN learning algorithm. The experimental data give support to the validity of this method. Moreover, our system is resilient to common obfuscations used by hackers.
Keywords :
fuzzy neural nets; fuzzy set theory; inference mechanisms; invasive software; learning (artificial intelligence); GD-FNN learning algorithm; Radux; antivirus software; decompile technique; fuzzy inference technique; fuzzy neural network; fuzzy subsets; malicious code detection; malware detect; membership function; reverse analysis; unsafe executables detection; Artificial neural networks; Binary codes; Computer architecture; Fuzzy neural networks; Malware; Testing; Training; GD-FNN; fuzzy inference; fuzzy neural network; malware detection; program behavior;
Conference_Titel :
Intelligent System Design and Engineering Application (ISDEA), 2010 International Conference on
Conference_Location :
Changsha
Print_ISBN :
978-1-4244-8333-4
DOI :
10.1109/ISDEA.2010.314
