Visible to the public Complexity-Based Convolutional Neural Network for Malware Classification

TitleComplexity-Based Convolutional Neural Network for Malware Classification
Publication TypeConference Paper
Year of Publication2020
AuthorsBrezinski, Kenneth, Ferens, Ken
Conference Name2020 International Conference on Computational Science and Computational Intelligence (CSCI)
KeywordsComplexity, Computer architecture, convolutional neural network, feature extraction, Fractals, Human Behavior, image processing, machine learning, Malware, malware classication, malware classification, Metrics, privacy, pubcrawl, resilience, Resiliency, Robustness, Scientific computing, static analysis
AbstractMalware classification remains at the forefront of ongoing research as the prevalence of metamorphic malware introduces new challenges to anti-virus vendors and firms alike. One approach to malware classification is Static Analysis - a form of analysis which does not require malware to be executed before classification can be performed. For this reason, a lightweight classifier based on the features of a malware binary is preferred, with relatively low computational overhead. In this work a modified convolutional neural network (CNN) architecture was deployed which integrated a complexity-based evaluation based on box-counting. This was implemented by setting up max-pooling layers in parallel, and then extracting the fractal dimension using a polyscalar relationship based on the resolution of the measurement scale and the number of elements of a malware image covered in the measurement under consideration. To test the robustness and efficacy of our approach we trained and tested on over 9300 malware binaries from 25 unique malware families. This work was compared to other award-winning image recognition models, and results showed categorical accuracy in excess of 96.54%.
DOI10.1109/CSCI51800.2020.00008
Citation Keybrezinski_complexity-based_2020