Malicious code family classification method based on feature expression enhancement

A malicious code and feature expression technology, applied in the field of malicious code classification, can solve the problems of unable to meet the real-time and accuracy requirements of family classification, insufficient expression of feature information, and low efficiency of dynamic methods, so as to enhance expression ability and improve accuracy and efficiency, and the effect of responding to malicious code attacks

Inactive Publication Date: 2021-10-01
SHANGHAI UNIVERSITY OF ELECTRIC POWER
View PDF3 Cites 1 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Because the efficiency of dynamic methods is usually too low, the current mainstream technology is still dominated by static methods
[0004] However, the extracted static features such as text and opcode cannot meet the real-time and accuracy requirements of family classification
In addition, traditional malicious code detection technology relies too much on a single feature, resulting in insufficient expression of feature information and low detection accuracy

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Malicious code family classification method based on feature expression enhancement
  • Malicious code family classification method based on feature expression enhancement
  • Malicious code family classification method based on feature expression enhancement

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0021] In order to make the technical means, creative features, goals and effects achieved by the present invention easy to understand, a malicious code family classification method based on feature expression enhancement of the present invention will be described in detail below in conjunction with the embodiments and accompanying drawings.

[0022]

[0023] This embodiment provides a malicious code family classification method based on feature expression enhancement, the method uses a feature expression enhanced malicious code family classification system for classification, wherein the system includes a malicious code preprocessing module, a malicious code feature extraction module, Malicious code classification detection module, malicious code family classification module and control module. The control module controls the operation of the malicious code preprocessing module, the malicious code feature extraction module, the malicious code classification and detection mod...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to a malicious code family classification method based on feature expression enhancement, and belongs to a malicious code classification technology. The method comprises the following steps: firstly, decompiling a malicious code source program to obtain a. Bytes file and a. Asm file, then extracting text features of the. Asm file through an N-Gram algorithm, converting the two types of files into a gray image, extracting texture features and color features through a gray co-occurrence matrix and a gray histogram, and finally, fusing three types of single features including the text feature, the texture feature and the color feature to construct a new fusion feature. Therefore, according to the malicious code family classification method provided by the invention, the malicious code feature expression capability can be enhanced, and the malicious code family classification precision can be improved, so that malicious code attack behaviors can be effectively dealt with, and the network security of the Internet can be maintained.

Description

technical field [0001] The invention relates to a malicious code classification technology, in particular to a method for classifying malicious code families based on feature expression enhancement. Background technique [0002] With the in-depth development and large-scale application of new technologies such as cloud computing, big data, and artificial intelligence, network security threats and risks are increasing, posing huge challenges to social development. According to the "Summary of my country's Internet Security Situation in 2019", the number of computer malicious program samples captured in 2019 alone exceeded 62 million, with an average daily spread of more than 8.24 million times, involving as many as 660,000 computer malicious program families The remaining ones show that the number of malicious codes is gradually increasing, and the destructive power is constantly increasing. According to the latest security research report released by Symantec: In one day on ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): G06F21/56G06K9/46G06K9/62
CPCG06F21/563G06F18/241G06F18/253
Inventor 崔荣成温蜜陈克非张凯孙超耿韶松
Owner SHANGHAI UNIVERSITY OF ELECTRIC POWER
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap