We found a match
Your institution may have rights to this item. Sign in to continue.
- Title
A novel malware detection method based on API embedding and API parameters.
- Authors
Zhou, Bo; Huang, Hai; Xia, Jun; Tian, Donghai
- Abstract
Malware is becoming increasingly prevalent in recent years with the widespread deployment of the information system. Many malicious programs pose a great threat to information systems. In the past decade, various malware detection methods are proposed. Particularly, many studies rely on API features for identifying malware. However, the existing methods do not fully make use of the API features. To address these issues, we propose APInspector, a novel dynamic malware detection solution by carefully inspecting API invocations. This method first leverages a dynamic instrumentation tool to hook the target program for collecting the API sequence and argument features. Then, it exploits a HAN (Hierarchical Attention Network) model to analyze the API sequence features. For analyzing the API argument features, we apply an MLP (Multi-Layer Perceptron) model. To fully leverage the API sequence and argument features, we propose a hybrid model, which combines the HAN and MLP models. The evaluation shows that our approach can detect and classify malware effectively and it outperforms the single models.
- Subjects
MALWARE; INFORMATION storage &; retrieval systems
- Publication
Journal of Supercomputing, 2024, Vol 80, Issue 2, p2748
- ISSN
0920-8542
- Publication type
Article
- DOI
10.1007/s11227-023-05556-x