A hybrid machine learning approach for analysis of stegomalware-Reference-Cited by-同舟云学术

A hybrid machine learning approach for analysis of stegomalware

Published:2023-04-28 Issue:2 Volume:5 Page:104-117
ISSN:2690-6090
Container-title:International Journal of Industrial Engineering and Operations Management
language:en
Short-container-title:IJIEOM

Author:

Kadebu Prudence,Shoniwa Robert T.R.,Zvarevashe Kudakwashe,Mukwazvure Addlight,Mapanga Innocent,Thusabantu Nyasha Fadzai,Gotora Tatenda Trust

Abstract

PurposeGiven how smart today’s malware authors have become through employing highly sophisticated techniques, it is only logical that methods be developed to combat the most potent threats, particularly where the malware is stealthy and makes indicators of compromise (IOC) difficult to detect. After the analysis is completed, the output can be employed to detect and then counteract the attack. The goal of this work is to propose a machine learning approach to improve malware detection by combining the strengths of both supervised and unsupervised machine learning techniques. This study is essential as malware has certainly become ubiquitous as cyber-criminals use it to attack systems in cyberspace. Malware analysis is required to reveal hidden IOC, to comprehend the attacker’s goal and the severity of the damage and to find vulnerabilities within the system.Design/methodology/approachThis research proposes a hybrid approach for dynamic and static malware analysis that combines unsupervised and supervised machine learning algorithms and goes on to show how Malware exploiting steganography can be exposed.FindingsThe tactics used by malware developers to circumvent detection are becoming more advanced with steganography becoming a popular technique applied in obfuscation to evade mechanisms for detection. Malware analysis continues to call for continuous improvement of existing techniques. State-of-the-art approaches applying machine learning have become increasingly popular with highly promising results.Originality/valueCyber security researchers globally are grappling with devising innovative strategies to identify and defend against the threat of extremely sophisticated malware attacks on key infrastructure containing sensitive data. The process of detecting the presence of malware requires expertise in malware analysis. Applying intelligent methods to this process can aid practitioners in identifying malware’s behaviour and features. This is especially expedient where the malware is stealthy, hiding IOC.

Publisher

Emerald

Subject

General Medicine

Reference22 articles.

1. Baker, K. (2020), “Malware analysis”, available at: https://www.crowdstrike.com/epp-101/malware-analysis/

2. Camouflage in malware: from encryption to metamorphism;International Journal Of Computer Science And Network Security (IJCSNS),2012

3. Bhojani, N. (2014), “Malware analysis”. doi: 10.13140/2.1.4750.6889.

4. Chumachenko, K. (2017), “Machine learning methods for malware detection and classification”, available at: https://core.ac.uk/download/pdf/80994982.pdf

Cited by 3 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Text Steganography Methods and their Influence in Malware: A Comprehensive Overview and Evaluation;Proceedings of the 2024 ACM Workshop on Information Hiding and Multimedia Security;2024-06-24

2. A Development Framework for TCP/IP Network Steganography Malware Detection;Proceedings of the 2024 ACM Workshop on Information Hiding and Multimedia Security;2024-06-24

3. Cyber-security in the era of the COVID-19 pandemic: a developing countries' perspective;International Journal of Industrial Engineering and Operations Management;2023-05-31