Malware Analysis of Imaged Binary Samples by Convolutional Neural Network with Attention Mechanism
| Title | Malware Analysis of Imaged Binary Samples by Convolutional Neural Network with Attention Mechanism |
| Publication Type | Conference Paper |
| Year of Publication | 2017 |
| Authors | Yakura, Hiromu, Shinozaki, Shinnosuke, Nishimura, Reon, Oyama, Yoshihiro, Sakuma, Jun |
| Conference Name | Proceedings of the 10th ACM Workshop on Artificial Intelligence and Security |
| Publisher | ACM |
| Conference Location | New York, NY, USA |
| ISBN Number | 978-1-4503-5202-4 |
| Keywords | attention mechanism, Collaboration, convolutional neural network, cyber physical systems, malware analysis, malware classification, Metrics, neural networks security, policy, policy-based governance, Policy-Governed Secure Collaboration, pubcrawl, resilience, Resiliency |
| Abstract | This paper presents a method to extract important byte sequences in malware samples by application of convolutional neural network (CNN) to images converted from binary data. This method, by combining a technique called the attention mechanism into CNN, enables calculation of an "attention map," which shows regions having higher importance for classification in the image. The extracted region with higher importance can provide useful information for human analysts who investigate the functionalities of unknown malware samples. Results of our evaluation experiment using malware dataset show that the proposed method provides higher classification accuracy than a conventional method. Furthermore, analysis of malware samples based on the calculated attention map confirmed that the extracted sequences provide useful information for manual analysis. |
| URL | http://doi.acm.org/10.1145/3128572.3140457 |
| DOI | 10.1145/3128572.3140457 |
| Citation Key | yakura_malware_2017 |