Unlock instant, AI-driven research and patent intelligence for your innovation.

A malicious code detection method and system based on multi-feature fusion

A malicious code detection and multi-feature fusion technology, applied in the field of malicious code detection, can solve the problem of unsatisfactory classification effect and achieve strong discrimination and robustness

Active Publication Date: 2019-01-29
深圳华康创展科技控股集团有限公司
View PDF4 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

The traditional feature-based malicious code detection method needs to fit the training set for feature selection, and the selected features are too easy to fit the training set, resulting in a better detection effect on the training set. Detection on the test set, the classification effect is often not satisfactory

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A malicious code detection method and system based on multi-feature fusion
  • A malicious code detection method and system based on multi-feature fusion
  • A malicious code detection method and system based on multi-feature fusion

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0051] The present invention provides a malicious code detection method and system based on multi-feature fusion. In order to make the objectives, technical solutions and effects of the present invention clearer and clearer, the present invention will be further described in detail with reference to the accompanying drawings and examples. It should be understood that the specific embodiments described herein are only used to explain the present invention, but not to limit the present invention.

[0052] Such as figure 1 As shown, a malicious code detection method based on multi-feature fusion, wherein the malicious code detection method based on multi-feature fusion includes:

[0053] S100: Extract the N-grams and variable-length N-grams of the code sequences in the training set and the test set as the basic feature set of the training set and the basic feature set of the test set, respectively;

[0054] A part of the individuals actually observed or investigated in a research is cal...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The present invention discloses a malicious code detection method and system based on multi-feature fusion, wherein the detection method includes: step A: extracting N-gram and variable-length N-gram of the code sequence in the training set and the test set, respectively as The basic feature set of the training set and the basic feature set of the test set; step B: filter out the effective feature set of the training set and the effective feature set of the test set from the extracted basic feature set of the training set and the basic feature set of the test set by means of information gain ; Step C: Perform feature fusion on the selected effective feature set of the training set by Boosting algorithm to obtain a fusion feature classifier; Step D: Use the fusion feature classifier to detect the screened effective feature set of the test set. The detection method provided by the present invention makes the finally obtained fusion features have stronger discrimination and robustness, and can better classify malicious codes.

Description

Technical field [0001] The invention relates to the technical field of malicious code detection, in particular to a method and system for malicious code detection based on multi-feature fusion. Background technique [0002] Unwanted code refers to code that has no effect but can bring danger. Definition 1: Malicious code is also called malware. These software can also be referred to as adware, spyware, or malicious shareware. They are installed on the user’s computer or other terminal without explicitly prompting the user or without the user’s permission. Software that runs and violates the legitimate rights and interests of users is sometimes called rogue software. Definition 2: Malicious code refers to computer code that is deliberately programmed or set to cause threats or potential threats to the network or system. The most common malicious code includes computer viruses (referred to as viruses), Trojan horses (referred to as Trojan horses), and computer worms ( Referred to...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): G06F21/56G06K9/62
CPCG06F21/56G06F2221/033G06F18/24155G06F18/214
Inventor 杨卫国范娜娜何震宇
Owner 深圳华康创展科技控股集团有限公司