Malware classification for identifying author groups: A graph-based approach
- Authors
- Hong, Jiwon; Park, Sung-Jun; Kim, Taeri; Noh, Yung-Kyun; Kim, Sang-Wook; Kim, Dongphil; Kim, Wonho
- Issue Date
- Sep-2019
- Publisher
- Association for Computing Machinery, Inc
- Keywords
- Author group identification; Graph-based classification; Malware classification
- Citation
- Proceedings of the 2019 Research in Adaptive and Convergent Systems, RACS 2019, pp.169 - 174
- Indexed
- SCOPUS
- Journal Title
- Proceedings of the 2019 Research in Adaptive and Convergent Systems, RACS 2019
- Start Page
- 169
- End Page
- 174
- URI
- https://scholarworks.bwise.kr/hanyang/handle/2021.sw.hanyang/147169
- DOI
- 10.1145/3338840.3355684
- ISSN
- 0000-0000
- Abstract
- As our lives become increasingly dependent on computer software, the threat of malware attacks is getting greater. By slightly modifying the previous version to avoid malware detection, the attackers can continuously release new malwares with ease. However, malwares released by a group of authors might contain some evidence among them that they are developed by the same group of authors. Such information can be used for digital forensics, law enforcement, and deeper analysis of malwares. In this paper, we propose a graph-based approach to classify author groups of given malware samples. In addition, we propose graph refinement strategies to improve classification accuracies. Via extensive experiments on a real-world dataset, we verify our graph-based classification could benefit author group classification of malwares than traditional feature-based SVM. We also verify the proposed graph refinement strategies increase the accuracy of the classification. © 2019 Copyright held by the owner/author(s). Publication rights licensed to ACM.
- Files in This Item
-
Go to Link
- Appears in
Collections - 서울 공과대학 > 서울 컴퓨터소프트웨어학부 > 1. Journal Articles

Items in ScholarWorks are protected by copyright, with all rights reserved, unless otherwise indicated.