Next Article in Journal
An Effective Data Transmission Algorithm Based on Social Relationships in Opportunistic Mobile Social Networks
Previous Article in Journal
Time Series Forecasting Using a Two-Level Multi-Objective Genetic Algorithm: A Case Study of Maintenance Cost Data for Tunnel Fans
Article Menu

Export Article

Open AccessArticle
Algorithms 2018, 11(8), 124; https://doi.org/10.3390/a11080124

A Simhash-Based Integrative Features Extraction Algorithm for Malware Detection

1
Electronic Countermeasures College, National University of Defense Technology, Hefei 230031, China
2
78092 troop of the PLA, Chengdu 610031, China
*
Author to whom correspondence should be addressed.
Received: 9 July 2018 / Revised: 31 July 2018 / Accepted: 3 August 2018 / Published: 14 August 2018
Full-Text   |   PDF [1979 KB, uploaded 14 August 2018]   |  

Abstract

In the malware detection process, obfuscated malicious codes cannot be efficiently and accurately detected solely in the dynamic or static feature space. Aiming at this problem, an integrative feature extraction algorithm based on simhash was proposed, which combines the static information e.g., API (Application Programming Interface) calls and dynamic information (such as file, registry and network behaviors) of malicious samples to form integrative features. The experiment extracts the integrative features of some static information and dynamic information, and then compares the classification, time and obfuscated-detection performance of the static, dynamic and integrated features, respectively, by using several common machine learning algorithms. The results show that the integrative features have better time performance than the static features, and better classification performance than the dynamic features, and almost the same obfuscated-detection performance as the dynamic features. This algorithm can provide some support for feature extraction of malware detection. View Full-Text
Keywords: malware detection; simhash; feature extraction; integrative features; static analysis; dynamic analysis malware detection; simhash; feature extraction; integrative features; static analysis; dynamic analysis
Figures

Figure 1

This is an open access article distributed under the Creative Commons Attribution License which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited (CC BY 4.0).
SciFeed

Share & Cite This Article

MDPI and ACS Style

Li, Y.; Liu, F.; Du, Z.; Zhang, D. A Simhash-Based Integrative Features Extraction Algorithm for Malware Detection. Algorithms 2018, 11, 124.

Show more citation formats Show less citations formats

Note that from the first issue of 2016, MDPI journals use article numbers instead of page numbers. See further details here.

Related Articles

Article Metrics

Article Access Statistics

1

Comments

[Return to top]
Algorithms EISSN 1999-4893 Published by MDPI AG, Basel, Switzerland RSS E-Mail Table of Contents Alert
Back to Top