Affiliation:
1. Shahid Beheshti University, Iran
2. Aryanpour Schoul of Culture and Education, Iran
Abstract
High-speed and accurate malware detection for metamorphic malware are two goals in antiviruses. To reach beyond this issue, this chapter presents a new malware detection method that can be summarized as follows: (1) Input file is disassembled and classified to obtain the minimal opcode pattern as feature vectors; (2) a forward feature selection method (i.e., maximum relevancy and minimum redundancy) is applied to remove the redundant as well as irrelevant features; and (3) the process ends by classification through using decision tree. The results indicate the proposed method can effectively detect metamorphic malware in terms of speed, efficiency, and accuracy.
Reference42 articles.
1. N-Gram-Based Detection of New Malicious Code.;T.Abou-Assaleh;Proceedings of the 28th Annual International Computer Software and Applications Conference,2004
2. Graph-Based Malware Detection Using Dynamic Analysis.;B.Anderson;Journal in Computer Virology,2011
3. Dynamic Analysis of Malicious Code
4. Opcodes as predictor for malware