Abstract
Malware complexity is rapidly increasing, causing catastrophic impacts on computer systems. Memory dump malware is gaining increased attention due to its ability to expose plaintext passwords or key encryption files. This paper presents an enhanced classification model based on One class SVM (OCSVM) classifier that can identify any deviation from the normal memory dump file patterns and detect it as malware. The proposed model integrates OCSVM and Principal Component Analysis (PCA) for increased model sensitivity and efficiency. An up-to-date dataset known as “MALMEMANALYSIS-2022” was utilized during the evaluation phase of this study. The accuracy achieved by the traditional one-class classification (TOCC) model was 55%, compared to 99.4% in the one-class classification with the PCA (OCC-PCA) model. Such results have confirmed the improved performance achieved by the proposed model.
Subject
Control and Optimization,Computer Networks and Communications,Instrumentation
Reference33 articles.
1. The rise of machine learning for detecting and classifying malware: Research payments, trends, and challenges;Gibert;J. Netw. Comput. Appl.,2020
2. Abu Al-Haija, Q., and Al-Dala’ien, M. (2022). ELBA-IoT: An Ensemble Learning Model for Botnet Attack Detection in IoT Networks. J. Sens. Actuator Netw., 11.
3. Attacking malicious code: A report to the Infosec Research Council;McGraw;IEEE Software,2000
4. (2022, August 22). The Independent IT-Security Institute. Available online: https://portal.av-atlas.org/.
5. Joby, P.P., Balas, V.E., and Palanisamy, R. (2023). IoT Based Control Networks and Intelligent Systems, Springer. Lecture Notes in Networks and Systems.
Cited by
12 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献