Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Malicious software classification method and system based on dual-channel convolutional neural network

A convolutional neural network and malware technology, applied in the field of malware detection, can solve problems such as large data volume, cumbersome operation, and unsatisfactory recognition accuracy, and achieve strong applicability

Inactive Publication Date: 2019-11-15
东北大学秦皇岛分校
View PDF4 Cites 3 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

At present, these two methods have the disadvantages of unsatisfactory recognition accuracy, cumbersome operation, and large amount of data.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Malicious software classification method and system based on dual-channel convolutional neural network
  • Malicious software classification method and system based on dual-channel convolutional neural network
  • Malicious software classification method and system based on dual-channel convolutional neural network

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0029] The present invention will be further described in detail below in conjunction with the accompanying drawings and specific embodiments.

[0030] The invention discloses a malware classification method and system based on a double-channel convolutional neural network.

[0031] In order to accurately and effectively detect and classify software, the present invention selects the operation code sequence and sensitive API features of the application program as detection features. The present invention comprehensively considers when selecting features: 1) the effectiveness of features, that is, whether the features can effectively distinguish malware from non-malware; 2) the degree of automation of feature extraction, which is to cope with the emergence of automatic malware generators ; 3) The spatio-temporal efficiency of feature detection, that is, the selected features should not be too resource-intensive.

[0032] Such as figure 1 Shown, the malicious software classifi...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a malicious software classification method and system based on a dual-channel convolutional neural network, and the system comprises: a training sample processing module and anoperation code extraction module which are used for decompiling a training sample, and obtaining an operation code sequence of an application program; an API feature extraction module which is used for obtaining sensitive API features of the training sample; a dual-channel convolutional neural network training module which is used for training by using the operation code sequence and the sensitive API feature sequence and obtaining a dual-channel convolutional neural network of which the output is accurate; an accuracy judgment module and a detection module which are used for judging whetherthe accuracy output by the dual-channel convolutional neural network reaches a set value or not, and detecting the to-be-identified software when the accuracy reaches the set value; and a probabilityoutput module which is used for outputting a probability value that the to-be-identified software is malicious software. According to the method, the advantages of the operation code sequence of the application program and the sensitive API feature detection are combined, and the accuracy and the data processing are greatly improved.

Description

technical field [0001] The invention relates to the field of malicious software detection, in particular to a method and system for classifying malicious software based on a dual-channel convolutional neural network. Background technique [0002] With the development of science and technology, the types and complexity of malware are getting higher and higher, and the identification of malware is becoming more and more difficult, especially in the mobile field platform. Given the rapid growth of mobile devices and mobile app stores. The number of new applications is too large to manually check each program for malicious behavior. Malware detection has traditionally been based on manual detection of known malware behaviors or codes to manually design malware signatures, a process that makes it difficult to detect a large number of applications. [0003] There are two mainstream detection methods at this stage. The first one is to obtain training samples, which are execution ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): G06K9/62G06N3/04G06F21/56
CPCG06F21/56G06F21/561G06N3/045G06F18/24G06F18/214
Inventor 李丹赵立超陈璨史闻博唐宇
Owner 东北大学秦皇岛分校
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com