Malware Similarity Analysis Based on Graph Similarity Flooding Algorithm

机译：基于图相似性泛洪算法的恶意软件相似性分析

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

Malware is a pervasive problem in computer security. The traditional signature-based detecting method is ineffective to recognize the dramatically increased malware. Researches show that many of the malicious samples are just variations of previously encountered malware. Therefore, it would be preferable to analysis the similarity of malware to determine whether submitted samples are merely variations of existing ones. Static analysis of polymorphic malware variants plays an important role. Function call graph has shown to be an effective feature that represents functionality of malware semantically. to this paper we propose a novel algorithm by comparing the function call graph based on similarity flooding algorithm to analyze the similarity of malware. Similarity between malware can be determined by graph matching method. The evaluation shows that our algorithm is highly effective in terms of accuracy and computational complexity.

机译：恶意软件是计算机安全中普遍存在的问题。传统的基于签名的检测方法无法识别急剧增加的恶意软件。研究表明，许多恶意样本只是先前遇到的恶意软件的变体。因此，最好分析恶意软件的相似性，以确定提交的样本是否仅仅是现有样本的变体。多态恶意软件变体的静态分析起着重要作用。函数调用图已显示是一种有效的功能，可以从语义上表示恶意软件的功能。本文针对基于相似泛洪算法的函数调用图进行比较，以分析恶意软件的相似性，提出了一种新颖的算法。恶意软件之间的相似性可以通过图匹配方法来确定。评估表明，我们的算法在准确性和计算复杂度方面非常有效。

著录项

来源
《International conference on computer science and it applications;International conference on ubiquitous information technologies 》|2015年|31-37|共7页
会议地点
作者
Jing Liu; Yongjun Wang; Peidai Xie; Yuan Wang; Zhijian Huang;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类
关键词
Malware variants; Similarity analysis; Function call graph; Similarity flooding algorithm;

机译：恶意软件变体;相似性分析;函数调用图;相似度泛洪算法;

相似文献

外文文献
中文文献
专利

1. Graph Similarity Metric Using Graph Convolutional Network: Application to Malware Similarity Match [J] . Bing-lin ZHAO, Fu-dong LIU, Zheng SHAN, IEICE transactions on information and systems . 2019 ,第8期

机译：使用图卷积网络的图相似度量：在恶意软件相似匹配中的应用
2. Andro-Dumpsys: Anti-malware system based on the similarity of malware creator and malware centric information [J] . Jae-wook Jang, Hyunjae Kang, Jiyoung Woo, Computers & Security . 2016 ,第May期

机译：Andro-Dumpsys：基于恶意软件创建者和以恶意软件为中心的信息的相似性的反恶意软件系统
3. Andro-AutoPsy: Anti-malware system based on similarity matching of malware and malware creator-centric information [J] . Jang Jae-Wook, Kang Hyunjae, Woo Jiyoung, Digital investigation . 2015 ,第SEPa期

机译：Andro-AutoPsy：基于恶意软件和以恶意软件创建者为中心的信息的相似性匹配的反恶意软件系统
4. Malware Similarity Analysis Based on Graph Similarity Flooding Algorithm [C] . Jing Liu, Yongjun Wang, Peidai Xie, International conference on computer science and it applications . 2015

机译：基于图形相似性洪水算法的恶意软件相似性分析
5. Similarity Based Large Scale Malware Analysis: Techniques and Implications [D] . Li, Yuping. 2018

机译：基于相似度的大规模恶意软件分析：技术和意义
6. Detecting and classifying method based on similarity matching of Android malware behavior with profile [O] . Jae-wook Jang, Jaesung Yun, Aziz Mohaisen, -1

机译：基于Android恶意软件行为与配置文件相似度匹配的检测分类方法
7. Graph Similarity Metric Using Graph Convolutional Network: Application to Malware Similarity Match [O] . Bing-lin ZHAO, Fu-dong LIU, Zheng SHAN, 2019

机译：图形相似度指标使用图形卷积网络：应用于恶意软件相似性匹配
8. On hydrologic similarity: A dimensionless flood frequency model using a generalized geomorphologic unit hydrograph and partial area runoff generation [R] . Sivapalan, Murugesu, Wood, Eric F., Beven, Keith J. 1993

机译：关于水文相似性：使用广义地貌单位水文和部分区域径流产生的无量纲洪水频率模型

Malware Similarity Analysis Based on Graph Similarity Flooding Algorithm

摘要

著录项

相似文献

相关主题

期刊订阅