Research on Malware Classification with Network Activity for Classification and Attack Prediction of Attack Groups

Hyo-young Lim; Wan-ju Kim; Hong-jun Noh; Jae-sung Lim

Research on Malware Classification with Network Activity for Classification and Attack Prediction of Attack Groups

Vol. 42, No. 1, pp. 193-204, Jan. 2017

PDF

Abstract

The security of Internet systems critically depends on the capability to keep anti-virus (AV) software up-to-date and maintain high detection accuracy against new malware. However, malware variants evolve so quickly they cannot be detected by conventional signature-based detection. In this paper, we proposed a malware classification method based on sequence patterns generated from the network flow of malware samples. We evaluated our method with 766 malware samples and obtained a classification accuracy of approximately 40.4%. In this study, malicious codes were classified only by network behavior of malicious codes, excluding codes and other characteristics. Therefore, this study is expected to be further developed in the future. Also, we can predict the attack groups and additional attacks can be prevented.

Statistics

Cumulative Counts from November, 2022
Multiple requests among the same browser session are counted as one view. If you mouse over a chart, the values of data points will be shown.

Cite this article

[IEEE Style]

H. Lim, W. Kim, H. Noh, J. Lim, "Research on Malware Classification with Network Activity for Classification and Attack Prediction of Attack Groups," The Journal of Korean Institute of Communications and Information Sciences, vol. 42, no. 1, pp. 193-204, 2017. DOI: .

[ACM Style]

Hyo-young Lim, Wan-ju Kim, Hong-jun Noh, and Jae-sung Lim. 2017. Research on Malware Classification with Network Activity for Classification and Attack Prediction of Attack Groups. The Journal of Korean Institute of Communications and Information Sciences, 42, 1, (2017), 193-204. DOI: .

[KICS Style]

Hyo-young Lim, Wan-ju Kim, Hong-jun Noh, Jae-sung Lim, "Research on Malware Classification with Network Activity for Classification and Attack Prediction of Attack Groups," The Journal of Korean Institute of Communications and Information Sciences, vol. 42, no. 1, pp. 193-204, 1. 2017.

Research on Malware Classification with Network Activity for Classification and Attack Prediction of Attack Groups

Submenu

Search
(IN TITLE, AUTHOR, ABSTRACT,KEYWORDS)

Advanced Search

Recent Publications
(LAST 3 YEARS)

Research on Malware Classification with Network Activity for Classification and Attack Prediction of Attack Groups

Submenu

Search (IN TITLE, AUTHOR, ABSTRACT,KEYWORDS)

Advanced Search

POPULAR KEYWORDS(TOP 10 KEYWORDS)

Recent Publications(LAST 3 YEARS)

Search
(IN TITLE, AUTHOR, ABSTRACT,KEYWORDS)

POPULAR KEYWORDS
(TOP 10 KEYWORDS)

Recent Publications
(LAST 3 YEARS)