Mal-ID: Automatic Malware Detection Using Common Segment Analysis and Meta-Features

Download Now
Provided by: Ben-Gurion University of the Negev
Topic: Security
Format: PDF
In this paper, the authors propose several novel methods, based on machine learning, to detect malware in executable files without any need for preprocessing, such as unpacking or disassembling. The basic method (Mal-ID) is a new static (form-based) analysis methodology that uses common segment analysis in order to detect malware files. By using common segment analysis, Mal-ID is able to discard malware parts that originate from benign code. In addition, Mal-ID uses a new kind of feature, termed meta-feature, to better capture the properties of the analyzed segments.
Download Now

Find By Topic