The PDF file you selected should load here if your Web browser has a PDF reader plug-in installed (for example, a recent version of Adobe Acrobat Reader).
If you would like more information about how to print, save, and work with PDFs, Highwire Press provides a helpful Frequently Asked Questions about PDFs.
Alternatively, you can download the PDF file directly to your computer, from where it can be opened using a PDF reader. To download the PDF, click the Download link above.
BibTex Citation Data :
@article{JOIV941,
author = {Sangwoo Lee and Jungwon Cho},
title = {Malware Authorship Attribution Model using Runtime Modules based on Automated Analysis},
journal = {JOIV : International Journal on Informatics Visualization},
volume = {6},
number = {1-2},
year = {2022},
keywords = {Malware authorship attribution; automated analysis; runtime modules; machine learning classification.},
abstract = {Malware authorship attribution is a research field that identifies the author of malware by extracting and analyzing features that relate the authors from the source code or binary code of malware. Currently, it is being used as one of the detection techniques based on malware forensics or identifying patterns of continuous attacks such as APT attacks. The analysis methods to identify the author are as follows. One is a source code-based analysis method that extracts features from the source code, and the other is a binary-based analysis method that extracts features from the binary. However, to handle the modularization and the increasing amount of malicious code with these methods, both time and manpower are insufficient to figure out the characteristics of the malware. Therefore, we propose the model for malware authorship attribution by rapidly extracting and analyzing features using automated analysis. Automated analysis uses a tool and can be analyzed through a file of malware and the specific hash values without experts. Furthermore, it is the fastest to figure out among other malware analysis methods. We have experimented by applying various machine learning classification algorithms to six malware author groups, and Runtime Modules and Kernel32.dll API extracted from the automated analysis were selected as features for author identification. The result shows more high accuracy than the previous studies. By using the automated analysis, it extracts features of malware faster than source code and binary-based analysis methods.},
issn = {2549-9904}, pages = {214--220}, doi = {10.30630/joiv.6.1-2.941},
url = {https://joiv.org/index.php/joiv/article/view/941}
}
Refworks Citation Data :
@article{{JOIV}{941}, author = {Lee, S., Cho, J.}, title = {Malware Authorship Attribution Model using Runtime Modules based on Automated Analysis}, journal = {JOIV : International Journal on Informatics Visualization}, volume = {6}, number = {1-2}, year = {2022}, doi = {10.30630/joiv.6.1-2.941}, url = {} }Refbacks
- There are currently no refbacks.
This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.
__________________________________________________________________________
JOIV : International Journal on Informatics Visualization
ISSN 2549-9610 (print) | 2549-9904 (online)
Organized by Department of Information Technology - Politeknik Negeri Padang, and Institute of Visual Informatics - UKM and Soft Computing and Data Mining Centre - UTHM
W : http://joiv.org
E : joiv@pnp.ac.id, hidra@pnp.ac.id, rahmat@pnp.ac.id
View JOIV Stats
is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.