Journal
Scientific and Technical Journal of Information Technologies, Mechanics and Optics
UDK004.491
Issue:5 (157)
Download PDF0 Kbyte
Obfuscated malware detection using deep neural network with ANOVA feature selection on CIC-MalMem-2022 dataset
Annotation
Malware analysis is the process of dissecting malicious software to understand its functionality, behavior, and potential risks. Artificial Intelligence (AI) and deep learning are ushering in a new era of automated, intelligent, and adaptive malware analysis. This convergence of AI and deep learning promises to revolutionize the way cybersecurity professionals detect, analyze and respond to malware threats. This paper proposed a Deep Neural Network (DNN) model built from features selected by ANalysis Of Variance (ANOVA) F-test (DNN-ANOVA) to increase accuracy by identifying informative features. ANOVA is a feature selection method used for numerical input data when the target variable is categorical. The top k most relevant features are those whose score values are greater than a certain threshold equal to the ratio between the sum of all features scores and the total number of features. Experiments are conducted on CIC-MalMem-2022 dataset. Malware Analysis is performed using binary classification to detect the presence or absence of malware and multiclass classification to detect not only the malware but also its type. According to the test results, DNN-ANOVA model achieves best values of 100 %, 99.99 %, 99.99 %, and 99.98 % in terms of precision, accuracy, F1-score and recall respectively for binary classification. In addition, DNN-ANOVA outperforms the current works with an overall accuracy rate of 85.83 %, and 73.98 % for family attacks and individual attacks respectively in the case of multiclass classification.
Keywords
Постоянный URL
Articles in current issue
- Automatic sign language translation: a review of neural network methods for recognition and synthesis of spoken and signed language
Overview of routing algorithms for network on chip
- Gain characteristics of In0.60Ga0.40As/In0.53Al0.20Ga0.27As superlattice active regions for vertical-cavity surface-emitting lasers
- Change of optical properties of silver surface due to laser structuring
- Algorithm for navigation on the terrain of unmanned aerial vehicles with machine vision
- Development of a fiber-optic system for monitoring geotechnical structures
- Investigation of the characteristics of a semiconductor laser diode as a transceiver for fiber Bragg gratings interrogation
- Control of nonlinear plants with a guarantee for the controlled signal to stay within a given set under disturbances and high-frequency measurement noises
- Impact of solvent quality on tribological properties of polymer brushes
- Low-complexity multi task learning for joint acoustic scenes classification and sound events detection
- A method for optimizing neural networks based on structural distillation using a genetic algorithm
- ViSL model: The model automatically generates sentences of Vietnamese sign language
- Enhanced anomaly detection in network security: a comprehensive ensemble approach
- Enhancing attribute-based access control with Ethereum and ZK-SNARK technologies
- Comparative analysis of neural network models for felling mapping in summer satellite imagery
- Guaranteed estimates of the gamma percent residual life of data storage equipment
- Classification of multiple sclerosis lesion through Deep Learning analysis of MRI images
- Creation and analysis of multimodal corpus for aggressive behavior recognition
- Single images 3D reconstruction by a binary classifier
- Switched reluctance motor flux linkage characteristic: experimental approach
- Spectral dependence of photoelecrochemical water splitting by silver nanoporous layers