Name
Title | ||
|---|---|---|
A Proposal of Malware Distinction Method Based on Scan Patterns Using Spectrum Analysis |
Abstract | ||
|---|---|---|
Network monitoring systems that detect and analyze malicious activities as well as counter them, are becoming increasingly important. As malwares, such as worms, viruses, and bots, can inflict significant damages on both the infrastructure and the end user, technologies for identifying such propagating malwares are in great demand. In the large-scale darknet monitoring operation, we can see that malwares have various kinds of scan patterns that involves choosing destination IP addresses. With a focus on such scan patterns, this paper proposes a novel concept of malware feature extraction and a distinct analysis method named ``SPectrum Analysis for Distinction and Extraction of malware features (SPADE).''Through several evaluations using real scan traffic, we show that SPADE has the significant advantage of recognizing the similarities and dissimilarities between the same and different types of malwares. |
Year | DOI | Venue |
|---|---|---|
2009 | 10.1007/978-3-642-10684-2_63 | ICONIP |
Keywords | Field | DocType |
destination ip address,spectrum analysis,significant advantage,malware feature,malware distinction method,significant damage,malware feature extraction,different type,network monitoring system,large-scale darknet monitoring operation,propagating malwares,network monitoring,feature extraction | Data mining,End user,Computer science,Darknet,Feature extraction,Artificial intelligence,Network monitoring,Spectrum analysis,Malware,Machine learning | Conference |
Volume | ISSN | Citations |
5864 | 0302-9743 | 7 |
PageRank | References | Authors |
0.52 | 6 | 5 |
Name | Order | Citations | PageRank |
|---|---|---|---|
| Masashi Eto | 1 | 170 | 16.36 |
| Kotaro Sonoda | 2 | 10 | 2.69 |
| Daisuke Inoue | 3 | 7 | 0.52 |
| Katsunari Yoshioka | 4 | 147 | 22.92 |
| Koji Nakao | 5 | 194 | 19.09 |