Complexity Reduction on API Call Sequence Alignment Using Unique API Word Sequence
© 2017 IEEE. API call analysis is well-known method for classifing malware based on their behaviors. An analysis based on sequence alignment of API call usually produces the high accuracy result. However, the method suffers from time consuming. Thus, researchers make trade-off between time and accur...
Saved in:
| Main Authors: | , |
|---|---|
| Other Authors: | |
| Format: | Conference or Workshop Item |
| Published: |
2019
|
| Subjects: | |
| Online Access: | https://repository.li.mahidol.ac.th/handle/123456789/45593 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Mahidol University |
| id |
th-mahidol.45593 |
|---|---|
| record_format |
dspace |
| spelling |
th-mahidol.455932019-08-23T17:55:31Z Complexity Reduction on API Call Sequence Alignment Using Unique API Word Sequence Thotsaphon Tungjitviboonkun Vasin Suttichaya Mahidol University Computer Science © 2017 IEEE. API call analysis is well-known method for classifing malware based on their behaviors. An analysis based on sequence alignment of API call usually produces the high accuracy result. However, the method suffers from time consuming. Thus, researchers make trade-off between time and accuracy by neglecting API call arguments and/or grouping API calls into character categories. We suggest an approach to preserve API call arguments while reducing the alignment overhead by using longest common unique API word sequence as split points. The proposed method produces high matching sequences while API call arguments are preserved and time complexity is reduced. Moreover, we apply this approach to produce malware subfamily signature, the similar API calls that extracted from aligned sequences. Malware subfamily signatures can be used for detecting malware samples of their family with high accuracy. 2019-08-23T10:55:31Z 2019-08-23T10:55:31Z 2018-08-21 Conference Paper ICSEC 2017 - 21st International Computer Science and Engineering Conference 2017, Proceeding. (2018), 15-18 10.1109/ICSEC.2017.8443930 2-s2.0-85053464205 https://repository.li.mahidol.ac.th/handle/123456789/45593 Mahidol University SCOPUS https://www.scopus.com/inward/record.uri?partnerID=HzOxMe3b&scp=85053464205&origin=inward |
| institution |
Mahidol University |
| building |
Mahidol University Library |
| continent |
Asia |
| country |
Thailand Thailand |
| content_provider |
Mahidol University Library |
| collection |
Mahidol University Institutional Repository |
| topic |
Computer Science |
| spellingShingle |
Computer Science Thotsaphon Tungjitviboonkun Vasin Suttichaya Complexity Reduction on API Call Sequence Alignment Using Unique API Word Sequence |
| description |
© 2017 IEEE. API call analysis is well-known method for classifing malware based on their behaviors. An analysis based on sequence alignment of API call usually produces the high accuracy result. However, the method suffers from time consuming. Thus, researchers make trade-off between time and accuracy by neglecting API call arguments and/or grouping API calls into character categories. We suggest an approach to preserve API call arguments while reducing the alignment overhead by using longest common unique API word sequence as split points. The proposed method produces high matching sequences while API call arguments are preserved and time complexity is reduced. Moreover, we apply this approach to produce malware subfamily signature, the similar API calls that extracted from aligned sequences. Malware subfamily signatures can be used for detecting malware samples of their family with high accuracy. |
| author2 |
Mahidol University |
| author_facet |
Mahidol University Thotsaphon Tungjitviboonkun Vasin Suttichaya |
| format |
Conference or Workshop Item |
| author |
Thotsaphon Tungjitviboonkun Vasin Suttichaya |
| author_sort |
Thotsaphon Tungjitviboonkun |
| title |
Complexity Reduction on API Call Sequence Alignment Using Unique API Word Sequence |
| title_short |
Complexity Reduction on API Call Sequence Alignment Using Unique API Word Sequence |
| title_full |
Complexity Reduction on API Call Sequence Alignment Using Unique API Word Sequence |
| title_fullStr |
Complexity Reduction on API Call Sequence Alignment Using Unique API Word Sequence |
| title_full_unstemmed |
Complexity Reduction on API Call Sequence Alignment Using Unique API Word Sequence |
| title_sort |
complexity reduction on api call sequence alignment using unique api word sequence |
| publishDate |
2019 |
| url |
https://repository.li.mahidol.ac.th/handle/123456789/45593 |
| _version_ |
1763487834163904512 |