Abstract | ||
---|---|---|
Metamorphic malware changes its internal structure with each infection, while maintaining its original functionality. Such malware can be difficult to detect, particularly using static analysis, since there may be no common signature across infections. In this paper, we apply a score based on Singular Value Decomposition (SVD) to the challenging problem of metamorphic detection. SVD, which can be viewed as a specific implementation of Principal Component Analysis, is a linear algebraic technique that is applicable to the wide range of problems where eigenvector analysis is useful. Previous research has shown that an eigenvector-based score derived from the facial recognition problem yields good results when applied to metamorphic malware detection. In this paper, we reconsider these previous results in the context of SVD, and we outline a strategy to defeat such a detection scheme. |
Year | DOI | Venue |
---|---|---|
2015 | 10.1007/s11416-014-0220-0 | J. Computer Virology and Hacking Techniques |
Keywords | Field | DocType |
virology,electronics,telecommunications | Singular value decomposition,Facial recognition system,Algebraic number,Computer science,Static analysis,Algorithm,Malware,Principal component analysis,Eigenvalues and eigenvectors,Dead code | Journal |
Volume | Issue | ISSN |
11 | 4 | 2263-8733 |
Citations | PageRank | References |
7 | 0.49 | 18 |
Authors | ||
3 |
Name | Order | Citations | PageRank |
---|---|---|---|
Ranjith Kumar Jidigam | 1 | 7 | 0.49 |
Thomas H. Austin | 2 | 307 | 15.96 |
Mark Stamp | 3 | 513 | 33.32 |