An IT2FLS-Based Malware Analysis Mechanism: Malware Analysis Network in Taiwan (MiT)

Malware is one of the problems really existing in the modern post-industrial society. Hackers continuously develop novel techniques to intrude into computer systems for various reasons, so many security researchers should analyze and track new malicious program to protect sensitive information for the computer system. In this paper, we integrate the Interval Type-2 Fuzzy Logic System (IT2FLS) with malware behavioral analysis: Malware Analysis Network in Taiwan (MAN in Taiwan, MiT, and http://MiT.TWMAN.ORG). The core techniques of MiT are as follows: (1) automatically collect the logs the difference operation system to extract unknown behavior information. Also, MiT is able to automatically provide and share samples and reports via the cloud storage mechanism, (2) integrate with IT2FLS to construct the malware analysis domain knowledge for the malware behavior. Simulation results show that the proposed approach can effectively execute the malware behavior analysis, and the constructed system has also been released under GNU General Public License version 3.