Dr Kehinde Babaagba K.Babaagba@napier.ac.uk
Lecturer
Improving Classification of Metamorphic Malware by Augmenting Training Data with a Diverse Set of Evolved Mutant Samples
Babaagba, Kehinde; Tan, Zhiyuan; Hart, Emma
Authors
Dr Thomas Tan Z.Tan@napier.ac.uk
Associate Professor
Prof Emma Hart E.Hart@napier.ac.uk
Professor
Abstract
Detecting metamorphic malware provides a challenge to machine-learning models as trained models might not generalise to future mutant variants of the malware. To address this, we explore whether machine-learning models can be improved by augmenting training data-sets with samples of potential variants. These variants are generated using an evolutionary algorithm that evolves a behaviourally diverse set of mutants, optimised to avoid detection by a large set of existing detection-engines. Using features calculated from the behavioural trace of a sample as input, we evaluate the ability of five machine-learning methods to detect the new variants, show that the detection rate is considerably improved by including the new samples as training data, and that the classifiers still generalise over a range of malware. We then repeat this experiment using a sequence-based deep-learning method as the classifier, which is shown to out-perform the feature-based classifiers.
Citation
Babaagba, K., Tan, Z., & Hart, E. (2020, July). Improving Classification of Metamorphic Malware by Augmenting Training Data with a Diverse Set of Evolved Mutant Samples. Presented at The 2020 IEEE Congress on Evolutionary Computation (IEEE CEC 2020), Glasgow, UK
Presentation Conference Type | Conference Paper (published) |
---|---|
Conference Name | The 2020 IEEE Congress on Evolutionary Computation (IEEE CEC 2020) |
Start Date | Jul 19, 2020 |
End Date | Jul 24, 2020 |
Acceptance Date | Mar 20, 2020 |
Online Publication Date | Sep 3, 2020 |
Publication Date | Sep 3, 2020 |
Deposit Date | Apr 28, 2020 |
Publicly Available Date | Sep 3, 2020 |
Publisher | Institute of Electrical and Electronics Engineers (IEEE) |
DOI | https://doi.org/10.1109/CEC48606.2020.9185668 |
Keywords | Machine-learning; Evolutionary computing; Malware and Computer security |
Public URL | http://researchrepository.napier.ac.uk/Output/2656040 |
Files
Improving Classification Of Metamorphic Malware By Augmenting Training Data With A Diverse Set Of Evolved Mutant Samples
(181 Kb)
PDF
Related Outputs
Nowhere Metamorphic Malware Can Hide - A Biological Evolution Inspired Detection Scheme
(2019)
Presentation / Conference Contribution
Automatic Generation of Adversarial Metamorphic Malware Using MAP-Elites
(2020)
Presentation / Conference Contribution
You might also like
Advances in artificial immune systems
(2011)
Journal Article
On Clonal Selection.
(2011)
Journal Article
Structure versus function: a topological perspective on immune networks
(2009)
Journal Article
How affinity influences tolerance in an idiotypic network.
(2007)
Journal Article
Downloadable Citations
About Edinburgh Napier Research Repository
Administrator e-mail: repository@napier.ac.uk
This application uses the following open-source libraries:
SheetJS Community Edition
Apache License Version 2.0 (http://www.apache.org/licenses/)
PDF.js
Apache License Version 2.0 (http://www.apache.org/licenses/)
Font Awesome
SIL OFL 1.1 (http://scripts.sil.org/OFL)
MIT License (http://opensource.org/licenses/mit-license.html)
CC BY 3.0 ( http://creativecommons.org/licenses/by/3.0/)
Powered by Worktribe © 2024
Advanced Search