• DocumentCode
    3658437
  • Title

    Malware Detection Systems Based on API Log Data Mining

  • Author

    Chun-I Fan;Han-Wei Hsiao;Chun-Han Chou;Yi-Fan Tseng

  • Author_Institution
    Dept. of Comput. Sci. &
  • Volume
    3
  • fYear
    2015
  • fDate
    7/1/2015 12:00:00 AM
  • Firstpage
    255
  • Lastpage
    260
  • Abstract
    As information technology improves, the Internet is involved in every area in our daily life. When the mobile devices and cloud computing technology start to play important parts of our life, they have become more susceptible to attacks. In recent years, phishing and malicious websites have increasingly become serious problems in the field of network security. Attackers use many approaches to implant malware into target hosts in order to steal significant data and cause substantial damage. The growth of malware has been very rapid, and the purpose has changed from destruction to penetration. The signatures of malware have become more difficult to detect. In addition to static signatures, malware also tries to conceal dynamic signatures from anti-virus inspection. In this research, we use hooking techniques to trace the dynamic signatures that malware tries to hide. We then compare the behavioural differences between malware and benign programs by using data mining techniques in order to identify the malware. The experimental results show that our detection rate reaches 95% with only 80 attributes. This means that our method can achieve a high detection rate with low complexity.
  • Keywords
    "Malware","Monitoring","Feature extraction","Accuracy","Data mining","Training","Bayes methods"
  • Publisher
    ieee
  • Conference_Titel
    Computer Software and Applications Conference (COMPSAC), 2015 IEEE 39th Annual
  • Electronic_ISBN
    0730-3157
  • Type

    conf

  • DOI
    10.1109/COMPSAC.2015.241
  • Filename
    7273364