Would a File by Any Other Name Seem as Malicious?
| dc.contributor.author | Nguyen, Andre T. | |
| dc.contributor.author | Raff, Edward | |
| dc.contributor.author | Sant-Miller, Aaron | |
| dc.date.accessioned | 2020-03-11T17:55:13Z | |
| dc.date.available | 2020-03-11T17:55:13Z | |
| dc.date.issued | 2019-10-10 | |
| dc.description.abstract | Successful malware attacks on information technology systems can cause millions of dollars in damage, the exposure of sensitive and private information, and the irreversible destruction of data. Anti-virus systems that analyze a file's contents use a combination of static and dynamic analysis to detect and remove/remediate such malware. However, examining a file's entire contents is not always possible in practice, as the volume and velocity of incoming data may be too high, or access to the underlying file contents may be restricted or unavailable. If it were possible to obtain estimates of a file's relative likelihood of being malicious without looking at the file contents, we could better prioritize file processing order and aid analysts in situations where a file is unavailable. In this work, we demonstrate that file names can contain information predictive of the presence of malware in a file. In particular, we show the effectiveness of a character-level convolutional neural network at predicting malware status using file names on Endgame's EMBER malware detection benchmark dataset. | en_US |
| dc.description.uri | https://arxiv.org/abs/1910.04753 | en_US |
| dc.format.extent | 10 pages | en_US |
| dc.genre | journal articles preprints | en_US |
| dc.identifier | doi:10.13016/m2okq6-ikow | |
| dc.identifier.citation | Nguyen, Andre T.; Raff, Edward; Sant-Miller, Aaron; Would a File by Any Other Name Seem as Malicious?; Cryptography and Security (2019); https://arxiv.org/abs/1910.04753 | en_US |
| dc.identifier.uri | http://hdl.handle.net/11603/17551 | |
| dc.language.iso | en_US | en_US |
| dc.relation.isAvailableAt | The University of Maryland, Baltimore County (UMBC) | |
| dc.relation.ispartof | UMBC Computer Science and Electrical Engineering Department Collection | |
| dc.relation.ispartof | UMBC Faculty Collection | |
| dc.rights | This item is likely protected under Title 17 of the U.S. Copyright Law. Unless on a Creative Commons license, for uses protected by Copyright Law, contact the copyright holder or the author. | |
| dc.subject | information technology systems | en_US |
| dc.subject | malware attacks | en_US |
| dc.subject | anti-virus systems | en_US |
| dc.subject | character-level convolutional neural network | en_US |
| dc.title | Would a File by Any Other Name Seem as Malicious? | en_US |
| dc.type | Text | en_US |
Files
License bundle
1 - 1 of 1
No Thumbnail Available
- Name:
- license.txt
- Size:
- 2.56 KB
- Format:
- Item-specific license agreed upon to submission
- Description: