Publication: Signature-based malware detection using sequences of N-grams
| dc.FundingDetails | Ministry of Higher Education, Malaysia: FRGS/1/2015/ICT01/USIM/02/1 | |
| dc.FundingDetails | This paper is supported by a research project funded under The Ministry of Higher Education, Malaysia (Grant No FRGS/1/2015/ICT01/USIM/02/1). | |
| dc.contributor.affiliations | Islamic Science Institute | |
| dc.contributor.affiliations | Faculty of Science and Technology | |
| dc.contributor.affiliations | Universiti Sains Islam Malaysia (USIM) | |
| dc.contributor.author | Abiola A.M. | en_US |
| dc.contributor.author | Marhusin M.F. | en_US |
| dc.date.accessioned | 2024-05-28T08:35:57Z | |
| dc.date.available | 2024-05-28T08:35:57Z | |
| dc.date.issued | 2018 | |
| dc.description.abstract | The focus of our study is on one set of malware family known as Brontok worms. These worms have long been a huge burden to most Windows-based user platforms. A prototype of the antivirus was able to scan files and accurately detect any traces of the Brontok malware signatures in the scanned files. In this study, we developed a detection model by extracting the signatures of the Brontok worms and used an n-gram technique to break down the signatures. This process makes the task to remove redundancies between the signatures of the different types of Brontok malware easier. Hence, it was used in this study to accurately differentiate between the signatures of both malicious and normal files. During the experiment, we have successfully detected the presence of Brontok worms while correctly identifying the benign ones. The techniques employed in the experiment provided some insight on creating a good signature-based detector, which could be used to create a more credible solution that eliminates any threats of old malware that may resurface in the future. | en_US |
| dc.description.nature | Final | en_US |
| dc.identifier.doi | 10.14419/ijet.v7i4.15.21432 | |
| dc.identifier.epage | 125 | |
| dc.identifier.issn | 2227524X | |
| dc.identifier.issue | 4 | |
| dc.identifier.scopus | 2-s2.0-85054691476 | |
| dc.identifier.spage | 120 | |
| dc.identifier.uri | https://www.scopus.com/inward/record.uri?eid=2-s2.0-85054691476&doi=10.14419%2fijet.v7i4.15.21432&partnerID=40&md5=c53529e218f5e8e9ffa6ffde11c13f3e | |
| dc.identifier.uri | https://oarep.usim.edu.my/handle/123456789/9141 | |
| dc.identifier.volume | 7 | |
| dc.language | English | |
| dc.language.iso | en_US | en_US |
| dc.publisher | Science Publishing Corporation Inc | en_US |
| dc.relation.ispartof | Open Access | en_US |
| dc.relation.ispartof | International Journal of Engineering and Technology(UAE) | |
| dc.source | Scopus | |
| dc.subject | K-grams | en_US |
| dc.subject | N-grams | en_US |
| dc.subject | Signature-based detection | en_US |
| dc.title | Signature-based malware detection using sequences of N-grams | en_US |
| dc.title.alternative | Int. J. Eng. Technol. | en_US |
| dc.type | Article | en_US |
| dspace.entity.type | Publication |
Files
Original bundle
1 - 1 of 1
Loading...
- Name:
- Signature-based malware detection using sequences of N-grams.pdf
- Size:
- 593.39 KB
- Format:
- Adobe Portable Document Format