Paper Info
Title
Singular value decomposition and metamorphic detection.
Abstract
Metamorphic malware changes its internal structure with each infection, while maintaining its original functionality. Such malware can be difficult to detect, particularly using static analysis, since there may be no common signature across infections. In this paper, we apply a score based on Singular Value Decomposition (SVD) to the challenging problem of metamorphic detection. SVD, which can be viewed as a specific implementation of Principal Component Analysis, is a linear algebraic technique that is applicable to the wide range of problems where eigenvector analysis is useful. Previous research has shown that an eigenvector-based score derived from the facial recognition problem yields good results when applied to metamorphic malware detection. In this paper, we reconsider these previous results in the context of SVD, and we outline a strategy to defeat such a detection scheme.
Year
DOI
Venue
2015
10.1007/s11416-014-0220-0
J. Computer Virology and Hacking Techniques
Keywords
Field
DocType
virology,electronics,telecommunications
Singular value decomposition,Facial recognition system,Algebraic number,Computer science,Static analysis,Algorithm,Malware,Principal component analysis,Eigenvalues and eigenvectors,Dead code
Journal
Volume
Issue
ISSN
11
4
2263-8733
Citations 
PageRank 
References 
7
0.49
18
Authors
3
Name
Order
Citations
PageRank
Ranjith Kumar Jidigam170.49
Thomas H. Austin230715.96
Mark Stamp351333.32