DOI: 10.14569/IJACSA.2019.0100148

A Survey of Malware Detection Techniques based on Machine Learning

Author 1: Hoda El Merabet
Author 2: Abderrahmane Hajraoui

International Journal of Advanced Computer Science and Applications(IJACSA), Volume 10 Issue 1, 2019.

Abstract: Diverse malware programs are set up daily focusing on attacking computer systems without the knowledge of their users. While some authors of these programs intend to steal secret information, others try quietly to prove their competence and aptitude. The traditional signature-based static technique is primarily used by anti-malware programs in order to counter these malicious codes. Although this technique excels at blocking known malware, it can never intercept new ones. The dynamic technique, which is often based on running the executable on a virtual environment, may be introduced by a number of anti-malware programs. The major drawbacks of this technique are the long period of scanning and the high consumption of resources. Nowadays, recent programs may utilize a third technique. It is the heuristic technique based on machine learning, which has proven its success in several areas based on the processing of huge amounts of data. In this paper we provide a survey of available researches utilizing this latter technique to counter cyber-attacks. We explore the different training phases of machine learning classifiers for malware detection. The first phase is the extraction of features from the input files according to previously chosen feature types. The second phase is the rejection of less important features and the selection of the most important ones which better represent the data contained in the input files. The last phase is the injection of the selected features in a chosen machine learning classifier, so that it can learn to distinguish between benign and malicious files, and give accurate predictions when confronted to previously unseen files. The paper ends with a critical comparison between the studied approaches according to their performance in malware detection.

Keywords: Malware; anti-malware; machine learning; feature extraction; feature selection; random forest; SVM; neural networks; classification

Hoda El Merabet and Abderrahmane Hajraoui, “A Survey of Malware Detection Techniques based on Machine Learning” International Journal of Advanced Computer Science and Applications(IJACSA), 10(1), 2019. http://dx.doi.org/10.14569/IJACSA.2019.0100148

@article{Merabet2019,
title = {A Survey of Malware Detection Techniques based on Machine Learning},
journal = {International Journal of Advanced Computer Science and Applications},
doi = {10.14569/IJACSA.2019.0100148},
url = {http://dx.doi.org/10.14569/IJACSA.2019.0100148},
year = {2019},
publisher = {The Science and Information Organization},
volume = {10},
number = {1},
author = {Hoda El Merabet and Abderrahmane Hajraoui}
}


Copyright Statement: This is an open access article licensed under a Creative Commons Attribution 4.0 International License, which permits unrestricted use, distribution, and reproduction in any medium, even commercially as long as the original work is properly cited.

IJACSA

Upcoming Conferences

Future of Information and Communication Conference (FICC) 2024

4-5 April 2024

Computing Conference 2024

11-12 July 2024

IntelliSys 2024

5-6 September 2024

Future Technologies Conference (FTC) 2023

2-3 November 2023