Paper Info
Title
A Post-Mortem Empirical Investigation of the Popularity and Distribution of Malware Files in the Contemporary Web-Facing Internet.
Abstract
This short empirical paper investigates a snapshot of about two million files from a continuously updated big data collection maintained by F-Secure for security intelligence purposes. By further augmenting the snapshot with open data covering about a half of a million files, the paper examines two questions: (a) what is the shape of a probability distribution characterizing the relative share of malware files to all files distributed from web-facing Internet domains; and (b) what is the distribution shaping the popularity of malware files? A bimodal distribution is proposed as an answer to the former question, while a graph theoretical definition for the popularity concept indicates a long-tailed, extreme value distribution. With these two questions -and the answers thereto, the paper contributes to the attempts to understand large-scale characteristics of malware at the grand population level - at the level of the whole Internet.
Year
DOI
Venue
2016
10.1109/EISIC.2016.30
European Intelligence and Security Informatics Conference
Keywords
Field
DocType
malware,web crawling,security intelligence
Open data,Population,World Wide Web,Computer science,Popularity,Malware,Web crawler,Big data,Snapshot (computer storage),The Internet
Conference
ISSN
Citations 
PageRank 
2572-3723
0
0.34
References 
Authors
0
6
Name
Order
Citations
PageRank
Jukka Ruohonen15513.05
Sanja Scepanovic252.79
Sami Hyrynsalmi314532.53
Igor Mishkovski4157.19
Tuomas Aura555277.28
Ville Leppänen624056.53