Mining behavior pattern of mobile malware with convolutional neural network

Mining behavior pattern of mobile malware with convolutional neural network

The features extracted by existing malicious Android application detection methods are redundant and too abstract to reflect the behavior patterns of malicious applications in high-level semantics.In order to solve this problem,an interpretable detection method was proposed.Suspicious system call co...

Full description

Saved in:
Bibliographic Details
Main Authors: Xin ZHANG, Weizhong QIANG, Yueming WU, Deqing ZOU, Hai JIN
Format: Article
Language:English
Published: POSTS&TELECOM PRESS Co., LTD 2020-12-01
Series:网络与信息安全学报
Subjects:
Android
rapid detection
convolutional neural network
social network analysis
Online Access:http://www.cjnis.com.cn/thesisDetails#10.11959/j.issn.2096-109x.2020073
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:The features extracted by existing malicious Android application detection methods are redundant and too abstract to reflect the behavior patterns of malicious applications in high-level semantics.In order to solve this problem,an interpretable detection method was proposed.Suspicious system call combinations clustering by social network analysis was converted to a single channel image.Convolution neural network was applied to classify Android application.The model trained was used to find the most suspicious system call combinations by convolution layer gradient weight classification activation mapping algorithm,thus mining and understanding malicious application behavior.The experimental results show that the method can correctly discover the behavior patterns of malicious applications on the basis of efficient detection.
ISSN:2096-109X

Similar Items