Catch'em all: Classification of Rare, Prominent, and Novel Malware Families
| dc.contributor.author | Eren, Maksim E. | |
| dc.contributor.author | Barron, Ryan | |
| dc.contributor.author | Bhattarai, Manish | |
| dc.contributor.author | Wanna, Selma | |
| dc.contributor.author | Solovyev, Nicholas | |
| dc.contributor.author | Rasmussen, Kim | |
| dc.contributor.author | Alexandrov, Boian S. | |
| dc.contributor.author | Nicholas, Charles | |
| dc.date.accessioned | 2024-03-27T13:26:10Z | |
| dc.date.available | 2024-03-27T13:26:10Z | |
| dc.date.issued | 2024-03-04 | |
| dc.description.abstract | National security is threatened by malware, which remains one of the most dangerous and costly cyber threats. As of last year, researchers reported 1.3 billion known malware specimens, motivating the use of data-driven machine learning (ML) methods for analysis. However, shortcomings in existing ML approaches hinder their mass adoption. These challenges include detection of novel malware and the ability to perform malware classification in the face of class imbalance: a situation where malware families are not equally represented in the data. Our work addresses these shortcomings with MalwareDNA: an advanced dimensionality reduction and feature extraction framework. We demonstrate stable task performance under class imbalance for the following tasks: malware family classification and novel malware detection with a trade-off in increased abstention or reject-option rate. | |
| dc.description.sponsorship | This manuscript has been assigned LA-UR-24-21917. This research was funded by the LANL LDRD grant 20230067SR and the LANL Institutional Computing Program, supported by the U.S. Department of Energy National Nuclear Security Administration under Contract No. 89233218CNA000001. | |
| dc.description.uri | http://arxiv.org/abs/2403.02546 | |
| dc.format.extent | 6 pages | |
| dc.genre | journal articles | |
| dc.genre | preprints | |
| dc.identifier | doi:10.13016/m2bj7o-bfwv | |
| dc.identifier.uri | https://doi.org/10.48550/arXiv.2403.02546 | |
| dc.identifier.uri | http://hdl.handle.net/11603/32675 | |
| dc.language.iso | en_US | |
| dc.relation.isAvailableAt | The University of Maryland, Baltimore County (UMBC) | |
| dc.relation.ispartof | UMBC Faculty Collection | |
| dc.relation.ispartof | UMBC Computer Science and Electrical Engineering Department | |
| dc.rights | This work was written as part of one of the author's official duties as an Employee of the United States Government and is therefore a work of the United States Government. In accordance with 17 U.S.C. 105, no copyright protection is available for such works under U.S. Law. | |
| dc.rights | Public Domain Mark 1.0 | |
| dc.rights.uri | https://creativecommons.org/publicdomain/mark/1.0/deed.en | |
| dc.subject | Computer Science - Cryptography and Security | |
| dc.title | Catch'em all: Classification of Rare, Prominent, and Novel Malware Families | |
| dc.type | Text | |
| dcterms.creator | https://orcid.org/0000-0001-9494-7139 |
Files
Original bundle
1 - 1 of 1