With the rapid development of the Internet, malware became one of the major cyber threats nowadays. Any software performing malicious actions, including information stealing, espionage, etc. can be referred to as malware. Kaspersky Labs (2017) define malware as “a type of program designed to infect a legitimate user's computer, mobile and inflict harm on it in multiple ways.” While the diversity of malware is increasing, anti-virus scanners cannot fulfill the needs of protection, resulting in millions of hosts being attacked. According to Kaspersky Labs (2016), 6 563 145 different hosts were attacked, and 4 000 000 unique malware objects were detected in 2015. In turn, Juniper Research (2016) predicts the cost of data breaches to increase to $2.1 trillion globally by 2019. In addition to that, there is a decrease in the skill level that is required for malware development, due to the high availability of attacking tools on the Internet nowadays. High availability of anti-detection techniques, as well as ability to buy malware on the black market result in the opportunity to become an attacker for anyone, not depending on the skill level. Current studies show that more and more attacks are being issued by script-kiddies or are automated. (Aliyev 2010). Therefore, malware protection of computer, mobile systems is one of the most important cybersecurity tasks for single users and businesses, since even a single attack can result in compromised data and sufficient losses. Massive losses and frequent attacks dictate the need for accurate and timely detection methods. Current static and dynamic methods do not provide efficient detection, especially when dealing with zero-day attacks. For this reason, machine learning-based techniques can be used. This paper discusses the main points and concerns of machine learning-based malware detection, as well as looks for the best feature representation and classification methods. The goal of this project is to develop the proof of concept for the machine learning based malware classification based on Cuckoo Sandbox. This sandbox will be utilized for the extraction of the behavior of the malware samples, which will be used as an input to the machine learning algorithms. The goal is to 6 determine the best feature representation method and how the features should be extracted, the most accurate algorithm that can distinguish the malware families with the lowest error rate. The accuracy will be measured both for the case of detection of wheher the file is malicious and for the case of classification of the file to the malware family. The accuracy of the obtained results will also be assessed in relation to current scoring implemented in Cuckoo Sandbox, and the decision of which method performs better will be made. The study conducted will allow building an additional detection module to Cuckoo Sandbox.
Vérifié 0%
Attention. Il y a un risque que les membres non vérifiés ne soient pas réellement membres de l'équipe
Cette offre est basée sur des informations fournies uniquement par l'offrant et d'autres informations accessibles au public. L'événement de vente ou d'échange symbolique est entièrement indépendant de ICOholder et ICOholder n'y participe pas (y compris tout support technique ou promotion). Les ventes de jeton répertoriées par des personnes avec lesquelles ICOholder n'a aucun lien ne sont présentées que pour aider les clients à suivre l'activité qui se déroule dans le secteur global des jetons. Cette information n'est pas destinée à constituer un conseil sur lequel vous devriez compter. Vous devez obtenir des conseils professionnels ou spécialisés ou effectuer votre propre diligence avant de prendre, ou de vous abstenir, de toute action sur la base du contenu de notre site. Toutes les conditions et modalités conclues par les contributeurs à l'égard de l'acquisition de Tokens sont entre eux et l'émetteur du Token et ICOholder n'est pas le vendeur de ces Tokens. ICOholder n'a aucune responsabilité légale pour les déclarations faites par des tiers à l'égard de toute vente de jeton et toute réclamation pour rupture de contrat doit également être faite directement contre l'entité émettrice Token énumérés dans les présentes.
Si vous avez des questions concernant la nature, la propriété ou la légalité de cette vente symbolique ou des personnes impliquées, veuillez contacter info@icoholder.com avec des informations détaillées sur vos préoccupations.