Security

Towards Automating Malware Classification and Characterization

Download Now Free registration required

Executive Summary

Spam has become a problem of global impact. Most spam messages are currently sent out by captured machines organized in bot networks, which are infected with malicious software and are therefore under direct control of spammers. The connected explosion of automatically generated new malware variants has manual analysis at a great disadvantage, while classical automated analysis systems have problems keeping up with the diversity of new variants. Here, the paper proposes using machine learning approaches to learn global (i.e. malware intent) and local (i.e. specific functionality) malware properties based on behavioral traces of malware recorded in virtual environments, and tests them on a small corpus. Initial results are somewhat promising, so they also discuss areas for improvement as well as current and future challenges.

  • Format: PDF
  • Size: 96.1 KB