Research Article
A Survey on Mining Program-Graph Features for Malware Analysis
@INPROCEEDINGS{10.1007/978-3-319-23802-9_18, author={Md. Islam and Md. Islam and A. Kayes and Chengfei Liu and Irfan Altas}, title={A Survey on Mining Program-Graph Features for Malware Analysis}, proceedings={International Conference on Security and Privacy in Communication Networks. 10th International ICST Conference, SecureComm 2014, Beijing, China, September 24-26, 2014, Revised Selected Papers, Part II}, proceedings_a={SECURECOMM}, year={2015}, month={12}, keywords={Program graph Graph features Malware detection}, doi={10.1007/978-3-319-23802-9_18} }- Md. Islam
Md. Islam
A. Kayes
Chengfei Liu
Irfan Altas
Year: 2015
A Survey on Mining Program-Graph Features for Malware Analysis
SECURECOMM
Springer
DOI: 10.1007/978-3-319-23802-9_18
Abstract
Malware, which is a malevolent software, mostly programmed by attackers for either disrupting the normal computer operation or gaining access to private computer systems. A malware detector determines the malicious intent of a program and thereafter, stops executing the program if the program is malicious. While a substantial number of various malware detection techniques based on static and dynamic analysis has been studied for decades, malware detection based on mining program graph features has attracted recent attention. It is commonly believed that graph based representation of a program is a natural way to understand its semantics and thereby, unveil its execution intent. This paper presents a state of the art survey on mining program-graph features for malware detection. We have also outlined the challenges of malware detection based on mining program graph features for its successful deployment, and opportunities that can be explored in the future.
