Automated PE32 Threat Classification using Import Table and Deep Neural Networks

Visweswaran N

Rate me:

4.90/5 (8 votes)

13 Feb 2020CPOL17 min read

14.8K

In this research, we are going to prove that Import Address Table is very helpful in classifying a malware.

A malware is a computer program which harms the computer in which it gets executed. Malware analysis plays a major role in analysing the functionalities and behaviour of the malware. Malware analysis is a slow and tedious process which involves a lot of manual work. Finding the type of the malware will often boost up the analysis process and helps the researcher to know what the binary is capable of. Usually, researchers perform various static analysis techniques to find the category of the malware using various tools like strings, dependency walker, etc. But each day. there are millions [1] of new malware that get released, so classifying them manually is a non-feasible solution. In our approach, we are going to automate this process using deep neural networks.

This article is an entry in our Machine Learning and Artificial Intelligence Challenge. Articles in this sub-section are not required to be full articles so care should be taken when voting.

Views

Daily Counts

License

This article, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

Written By

Visweswaran N

India

I am an old member here. Lost my old account.

As I am unable to recover my old account, but I do know the names who helped me to grow up and I shall thank them forever.

1. Jeron1
2. OriginalGriff
3. Richard MacCutchan
4. A person from Germany who has photograph of legs (I am sorry I can't recall the name)
5. Michael Haephrati
6. Afzaal Ahmad Zeeshan
7. Nelek
8. Dave Kreskowiak

and some names are missing I apologize for that as I cannot recover my original profile.

Automated PE32 Threat Classification using Import Table and Deep Neural Networks

Views

License

Comments and Discussions