How to Make Attention Mechanisms More Practical in Malware Classification

Malware and its variants continue to pose a threat to network security. Machine learning has been widely used in the field of malware classification, but some emerging studies, such as attention mechanisms, are rarely applied in this field. In this paper, we analyze the correspondence between bytecode and disassembly of malware, and propose a new feature extraction method based on multi-dimensional sequence. Also, we construct a new classification framework based on attention mechanism and Convolutional Neural Networks mechanism. Furthermore, we also compare the different architectures based on the attention mechanisms. Experiments on open datasets show that our feature extraction method and our framework have a good classification effect, and the accuracy rate is 0.9609.

[1]  Kevin Barraclough,et al.  I and i , 2001, BMJ : British Medical Journal.

[2]  Daniel Gibert Llauradó Convolutional neural networks for malware classification , 2016 .

[3]  P ? ? ? ? ? ? ? % ? ? ? ? , 1991 .

[4]  Witawas Srisa-an,et al.  Significant Permission Identification for Machine-Learning-Based Android Malware Detection , 2018, IEEE Transactions on Industrial Informatics.

[5]  Mingdong Tang,et al.  Dynamic API call sequence visualisation for malware classification , 2019, IET Inf. Secur..

[6]  Bo Yu,et al.  Automatic malware classification and new malware detection using machine learning , 2017, Frontiers of Information Technology & Electronic Engineering.

[7]  Hai Zhao,et al.  Attention Is All You Need for Chinese Word Segmentation , 2019, EMNLP.

[8]  B. S. Manjunath,et al.  Malware images: visualization and automatic classification , 2011, VizSec '11.

[9]  Barath Narayanan Narayanan,et al.  Combination of Traditional and Deep Learning based Architectures to Overcome Class Imbalance and its Application to Malware Classification , 2018, NAECON 2018 - IEEE National Aerospace and Electronics Conference.

[10]  Zhou Xiao,et al.  API based sequence and statistical features in a combined malware detection architecture , 2018 .

[11]  Lakshmanan Nataraj A Signal Processing Approach To Malware Analysis , 2015 .

[12]  Barath Narayanan Narayanan,et al.  Performance analysis of machine learning and pattern recognition algorithms for Malware classification , 2016, 2016 IEEE National Aerospace and Electronics Conference (NAECON) and Ohio Innovation Summit (OIS).