论文信息 - EvadePDF: Towards Evading Machine Learning Based PDF Malware Classifiers

EvadePDF: Towards Evading Machine Learning Based PDF Malware Classifiers

There have been significant developments in the application of Machine Learning based classifiers for identifying malware camouflaging as benign files (our study is based on PDF files) in recent times like PDFRate. However, unlike other fields where statistical techniques are used, malware detection lacks the fundamental assumption in ML-based techniques that the training data represents the perspective input. Instead, malware can be designed to specifically break the ML classifiers as an anomaly. We present a thorough study and the results of our improvement over the implementation of one such prominent project EvadeML, which is a Genetic Programming based technique to evade ML-based malware classifiers. EvadeML has shown 100% success rate for two target PDF malware classifiers PDFRate and Hidost. We have modified the EvadeML to have a better evasion efficiency for another PDF malware classifier AnalyzePDF and found significant improvement over the EvadeML. We have also tested our modified approach for the PDFRate malware classifier and found 100% success rate as in the original EvadeML.

Sukumar Nandi | Sukanta Dey | Pranav Kumar Singh | Abhishek Kumar | Mehul Sawarkar

[1] Fabio Roli,et al. Secure Kernel Machines against Evasion Attacks , 2016, AISec@CCS.

[2] Hung Dang,et al. Evading Classifiers by Morphing in the Dark , 2017, CCS.

[3] Yanjun Qi,et al. Automatically Evading Classifiers: A Case Study on PDF Malware Classifiers , 2016, NDSS.

[4] Pavel Laskov,et al. Detection of Malicious PDF Files Based on Hierarchical Document Structure , 2013, NDSS.

[5] Angelos Stavrou,et al. Malicious PDF detection using metadata and structural features , 2012, ACSAC '12.

[6] Jack W. Stokes,et al. Large-scale malware classification using random projections and neural networks , 2013, 2013 IEEE International Conference on Acoustics, Speech and Signal Processing.

[7] Peter Nordin,et al. Genetic programming - An Introduction: On the Automatic Evolution of Computer Programs and Its Applications , 1998 .

[8] Roberto Antonio Vázquez,et al. Malware Classification Using Euclidean Distance and Artificial Neural Networks , 2013, 2013 12th Mexican International Conference on Artificial Intelligence.

[9] Liang Tong,et al. Feature Conservation in Adversarial Classifier Evasion: A Case Study , 2017, ArXiv.

[10] Patrick D. McDaniel,et al. On the (Statistical) Detection of Adversarial Examples , 2017, ArXiv.