Selecting Features to Classify Malware presented at LayerOne 2012

by Karthik Raman,

Tags: Security

Summary : Polymorphic malware is a menace to modern computing and a strain business productivity. The challenge faced by antivirus technology is that there is not enough time for new variants of this type of malware to be collected, sent to antivirus companies, and analyzed, and for signatures to be created and returned to customers. To attempt to address this problem, we explore the classification of malware using machine learning. We compare some classifiers for malware and present a carefully selected set of attributes that result in good classification between malware and clean programs. We discuss the application of this research to security technologies.