TY - GEN
T1 - Visualization Approach for Malware Classification with ResNeXt
AU - Go, Jin Ho
AU - Jan, Tony
AU - Mohanty, Manoranjan
AU - Patel, Om Prakash
AU - Puthal, Deepak
AU - Prasad, Mukesh
N1 - Publisher Copyright:
© 2020 IEEE.
PY - 2020/7
Y1 - 2020/7
N2 - The Internet has resulted in cyber-threats and cyber-crimes, which can occur anywhere at any time. Among various cyber threats, modern malware with applied metamorphosis and polymorphic technology is a concern as it can proliferate to advanced variants from its original shape. The typical malware analysis methods, including signature-based approach, remain vulnerable to such advanced variants. This paper proposes a visualization-based approach for malware analysis using the state-of-the-art Convolution Neural Network (CNN) model such as ResNeXt, which had achieved outstanding performance in image classifications with competitive computational complexity. The proposed method transforms the attributes of raw malware binary executable files to greyscale images for further analysis by well-established deep learning models. The greyscale images, which result of data transformation for visualization, are classified using ResNeXt. The experiment results show that the proposed solution achieves 98.32% and 98.86% of accuracy in malware classification on Malimg dataset and modified Malimg dataset, respectively. The proposed method outperforms other comparable methods in terms of classification accuracy and requires similar level of computational power.
AB - The Internet has resulted in cyber-threats and cyber-crimes, which can occur anywhere at any time. Among various cyber threats, modern malware with applied metamorphosis and polymorphic technology is a concern as it can proliferate to advanced variants from its original shape. The typical malware analysis methods, including signature-based approach, remain vulnerable to such advanced variants. This paper proposes a visualization-based approach for malware analysis using the state-of-the-art Convolution Neural Network (CNN) model such as ResNeXt, which had achieved outstanding performance in image classifications with competitive computational complexity. The proposed method transforms the attributes of raw malware binary executable files to greyscale images for further analysis by well-established deep learning models. The greyscale images, which result of data transformation for visualization, are classified using ResNeXt. The experiment results show that the proposed solution achieves 98.32% and 98.86% of accuracy in malware classification on Malimg dataset and modified Malimg dataset, respectively. The proposed method outperforms other comparable methods in terms of classification accuracy and requires similar level of computational power.
KW - convolutional neural network
KW - cyber threat
KW - cybercrime
KW - cybersecurity
KW - intrusion detection system
KW - Malware
KW - visualization
UR - http://www.scopus.com/inward/record.url?scp=85092064212&partnerID=8YFLogxK
U2 - 10.1109/CEC48606.2020.9185490
DO - 10.1109/CEC48606.2020.9185490
M3 - Conference contribution
AN - SCOPUS:85092064212
T3 - 2020 IEEE Congress on Evolutionary Computation, CEC 2020 - Conference Proceedings
BT - 2020 IEEE Congress on Evolutionary Computation, CEC 2020 - Conference Proceedings
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 2020 IEEE Congress on Evolutionary Computation, CEC 2020
Y2 - 19 July 2020 through 24 July 2020
ER -