The reviewed record of science sign in
Pith

arxiv: 1905.01999 · v2 · pith:RMI66EBY · submitted 2019-05-06 · cs.CR

A Benchmark API Call Dataset for Windows PE Malware Classification

Reviewed by Pith T0 review T1 audit T2 compute T3 formal T4 kernel pith:RMI66EBYrecord.jsonopen to challenge →

classification cs.CR
keywords malwarecallsclassificationdifferentoperatingsystemwindowsenvironment
0
0 comments X
read the original abstract

The use of operating system API calls is a promising task in the detection of PE-type malware in the Windows operating system. This task is officially defined as running malware in an isolated sandbox environment, recording the API calls made with the Windows operating system and sequentially analyzing these calls. Here, we have analyzed 7107 different malicious software belonging to various families such as virus, backdoor, trojan in an isolated sandbox environment and transformed these analysis results into a format where different classification algorithms and methods can be used. First, we'll explain how we got the malware, and then we'll explain how we've got these software bundled into families. Finally, we will describe how to perform malware classification tasks using different computational methods for the researchers who will use the data set we have created.

This paper has not been read by Pith yet.

discussion (0)

Sign in with ORCID, Apple, or X to comment. Anyone can read and Pith papers without signing in.