Metamorphic malware detection technology based on aggregating emerging patterns

Authors:
Jingfeng Xue;Changzhen Hu;Kunsheng Wang;Rui Ma;Jiaxin Zou
Affiliations:
School of Software, Beijing Institute of Technology, Beijing, China;School of Software, Beijing Institute of Technology, Beijing, China;China Aerospace Engineering Consultation Center, Beijing, China;School of Software, Beijing Institute of Technology, Beijing, China;School of Software, Beijing Institute of Technology, Beijing, China
Venue:
Proceedings of the 2nd International Conference on Interaction Sciences: Information Technology, Culture and Human
Year:
2009

Citing 2
Cited 0

Efficient mining of emerging patterns: discovering trends and differences

KDD '99 Proceedings of the fifth ACM SIGKDD international conference on Knowledge discovery and data mining
Semantics-Aware Malware Detection

SP '05 Proceedings of the 2005 IEEE Symposium on Security and Privacy

Quantified Score

Hi-index	0.00

Visualization

Abstract

Obfuscating technology is used widely in metamorphic malware and most of current detection methods fail to completely identify such ever-increasingly covert metamorphic malware. In this paper, system call sequences in the process of software execution are researched and metamorphic malware detection method based on aggregating emerging patterns is proposed. Experimental results show most metamorphic malware can be detected effectively by this method and it has higher detection rate and lower false alarm rate when the minimum support and growth rate thresholds are set reasonably.