Collaborative Computing: Networking, Applications and Worksharing. 17th EAI International Conference, CollaborateCom 2021, Virtual Event, October 16-18, 2021, Proceedings, Part I

Research Article

MFF-AMD: Multivariate Feature Fusion for Android Malware Detection

Download
3 downloads
Cite
BibTeX Plain Text
  • @INPROCEEDINGS{10.1007/978-3-030-92635-9_22,
    author={Guangquan Xu and Meiqi Feng and Litao Jiao and Jian Liu and Hong-Ning Dai and Ding Wang and Emmanouil Panaousis and Xi Zheng},
    title={MFF-AMD: Multivariate Feature Fusion for Android Malware Detection},
    proceedings={Collaborative Computing: Networking, Applications and Worksharing. 17th EAI International Conference, CollaborateCom 2021, Virtual Event, October 16-18, 2021, Proceedings, Part I},
    proceedings_a={COLLABORATECOM},
    year={2022},
    month={1},
    keywords={Malware detection Hybrid analysis Weight distribution Multivariate feature fusion},
    doi={10.1007/978-3-030-92635-9_22}
}
  • Guangquan Xu
    Meiqi Feng
    Litao Jiao
    Jian Liu
    Hong-Ning Dai
    Ding Wang
    Emmanouil Panaousis
    Xi Zheng
    Year: 2022
    MFF-AMD: Multivariate Feature Fusion for Android Malware Detection
    COLLABORATECOM
    Springer
    DOI: 10.1007/978-3-030-92635-9_22
Guangquan Xu1, Meiqi Feng1, Litao Jiao2, Jian Liu1,*, Hong-Ning Dai3, Ding Wang4, Emmanouil Panaousis, Xi Zheng5
  • 1: College of Intelligence and Computing
  • 2: Big Data School
  • 3: Faculty of Information Technology, Macau University of Science and Technology
  • 4: School of EECS
  • 5: Department of Computing
*Contact email: jianliu@tju.edu.cn

Abstract

Researchers have turned their focus on leveraging either dynamic or static features extracted from applications to train AI algorithms to identify malware precisely. However, the adversarial techniques have been continuously evolving and meanwhile, the code structure and application function have been designed in complex format. This makes Android malware detection more challenging than before. Most of the existing detection methods may not work well on recent malware samples. In this paper, we aim at enhancing the detection accuracy of Android malware through machine learning techniques via the design and development of our system called MFF-AMD. In our system, we first extract various features through static and dynamic analysis and obtain a multiscale comprehensive feature set. Then, to achieve high classification performance, we introduce the Relief algorithm to fuse the features, and design four weight distribution algorithms to fuse base classifiers. Finally, we set the threshold to guide MFF-AMD to perform static or hybrid analysis on the malware samples. Our experiments performed on more than 25,000 applications from the recent five-year dataset demonstrate that MFF-AMD can effectively detect malware with high accuracy.

Keywords
Malware detection Hybrid analysis Weight distribution Multivariate feature fusion
Published
2022-01-01
Appears in
SpringerLink
http://dx.doi.org/10.1007/978-3-030-92635-9_22
Copyright © 2021–2025 ICST
EAI Logo

About EAI

Community

Publish with EAI