A convolutional transformation network for malware classification

D.-L. Vu; T.-K. Nguyen; T.V. Nguyen; T.N. Nguyen; F. Massacci; P.H. Phung

doi:10.1109/NICS48868.2019.9023876

A convolutional transformation network for malware classification

D.-L. Vu, T.-K. Nguyen, T.V. Nguyen, T.N. Nguyen, F. Massacci, P.H. Phung

Research output: Chapter in Book / Report / Conference proceeding › Conference contribution › Academic › peer-review

Abstract

© 2019 IEEE.Modern malware evolves various detection avoidance techniques to bypass the state-of-the-art detection methods. An emerging trend to deal with this issue is the combination of image transformation and machine learning techniques to classify and detect malware. However, existing works in this field only perform simple image transformation methods that limit the accuracy of the detection. In this paper, we introduce a novel approach to classify malware by using a deep network on images transformed from binary samples. In particular, we first develop a novel hybrid image transformation method to convert binaries into color images that convey the binary semantics. The images are trained by a deep convolutional neural network that later classifies the test inputs into benign or malicious categories. Through the extensive experiments, our proposed method surpasses all baselines and achieves 99.14% in terms of accuracy on the testing set.

Original language	English
Title of host publication	Proceedings - 2019 6th NAFOSTED Conference on Information and Computer Science, NICS 2019
Editors	V.N. Quoc Bao, P.M. Quang, H. Van Hoa
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	234-239
ISBN (Electronic)	9781728151632
ISBN (Print)	9781728151632
DOIs	https://doi.org/10.1109/NICS48868.2019.9023876
Publication status	Published - 1 Dec 2019
Externally published	Yes
Event	6th NAFOSTED Conference on Information and Computer Science, NICS 2019 - Hanoi, Viet Nam Duration: 12 Dec 2019 → 13 Dec 2019

Publication series

Name	Proceedings - 2019 6th NAFOSTED Conference on Information and Computer Science, NICS 2019

Conference

Conference	6th NAFOSTED Conference on Information and Computer Science, NICS 2019
Country/Territory	Viet Nam
City	Hanoi
Period	12/12/19 → 13/12/19

Funding

ACKNOWLEDGEMENTS The project leading to this paper has received funding from the European Union’s Horizon 2020 research and innovation programme under grant agreement No 675320 (NeCS: European Network for Cyber Security).

Funders	Funder number
Horizon 2020 Framework Programme	675320

Access to Document

10.1109/NICS48868.2019.9023876

Persistent URL (handle)

Persistent link

Cite this

Vu, D.-L., Nguyen, T.-K., Nguyen, T. V., Nguyen, T. N., Massacci, F., & Phung, P. H. (2019). A convolutional transformation network for malware classification. In V. N. Quoc Bao, P. M. Quang, & H. Van Hoa (Eds.), Proceedings - 2019 6th NAFOSTED Conference on Information and Computer Science, NICS 2019 (pp. 234-239). Article 9023876 (Proceedings - 2019 6th NAFOSTED Conference on Information and Computer Science, NICS 2019). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/NICS48868.2019.9023876

Vu, D.-L. ; Nguyen, T.-K. ; Nguyen, T.V. et al. / A convolutional transformation network for malware classification. Proceedings - 2019 6th NAFOSTED Conference on Information and Computer Science, NICS 2019. editor / V.N. Quoc Bao ; P.M. Quang ; H. Van Hoa. Institute of Electrical and Electronics Engineers Inc., 2019. pp. 234-239 (Proceedings - 2019 6th NAFOSTED Conference on Information and Computer Science, NICS 2019).

@inproceedings{5e6eb8962b9d457a8ea3c81abc077304,

title = "A convolutional transformation network for malware classification",

abstract = "{\textcopyright} 2019 IEEE.Modern malware evolves various detection avoidance techniques to bypass the state-of-the-art detection methods. An emerging trend to deal with this issue is the combination of image transformation and machine learning techniques to classify and detect malware. However, existing works in this field only perform simple image transformation methods that limit the accuracy of the detection. In this paper, we introduce a novel approach to classify malware by using a deep network on images transformed from binary samples. In particular, we first develop a novel hybrid image transformation method to convert binaries into color images that convey the binary semantics. The images are trained by a deep convolutional neural network that later classifies the test inputs into benign or malicious categories. Through the extensive experiments, our proposed method surpasses all baselines and achieves 99.14% in terms of accuracy on the testing set.",

author = "D.-L. Vu and T.-K. Nguyen and T.V. Nguyen and T.N. Nguyen and F. Massacci and P.H. Phung",

year = "2019",

month = dec,

day = "1",

doi = "10.1109/NICS48868.2019.9023876",

language = "English",

isbn = "9781728151632",

series = "Proceedings - 2019 6th NAFOSTED Conference on Information and Computer Science, NICS 2019",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "234--239",

editor = "{Quoc Bao}, V.N. and P.M. Quang and {Van Hoa}, H.",

booktitle = "Proceedings - 2019 6th NAFOSTED Conference on Information and Computer Science, NICS 2019",

address = "United States",

note = "6th NAFOSTED Conference on Information and Computer Science, NICS 2019 ; Conference date: 12-12-2019 Through 13-12-2019",

}

Vu, D-L, Nguyen, T-K, Nguyen, TV, Nguyen, TN, Massacci, F & Phung, PH 2019, A convolutional transformation network for malware classification. in VN Quoc Bao, PM Quang & H Van Hoa (eds), Proceedings - 2019 6th NAFOSTED Conference on Information and Computer Science, NICS 2019., 9023876, Proceedings - 2019 6th NAFOSTED Conference on Information and Computer Science, NICS 2019, Institute of Electrical and Electronics Engineers Inc., pp. 234-239, 6th NAFOSTED Conference on Information and Computer Science, NICS 2019, Hanoi, Viet Nam, 12/12/19. https://doi.org/10.1109/NICS48868.2019.9023876

A convolutional transformation network for malware classification. / Vu, D.-L.; Nguyen, T.-K.; Nguyen, T.V. et al.
Proceedings - 2019 6th NAFOSTED Conference on Information and Computer Science, NICS 2019. ed. / V.N. Quoc Bao; P.M. Quang; H. Van Hoa. Institute of Electrical and Electronics Engineers Inc., 2019. p. 234-239 9023876 (Proceedings - 2019 6th NAFOSTED Conference on Information and Computer Science, NICS 2019).

Research output: Chapter in Book / Report / Conference proceeding › Conference contribution › Academic › peer-review

TY - GEN

T1 - A convolutional transformation network for malware classification

AU - Vu, D.-L.

AU - Nguyen, T.-K.

AU - Nguyen, T.V.

AU - Nguyen, T.N.

AU - Massacci, F.

AU - Phung, P.H.

PY - 2019/12/1

Y1 - 2019/12/1

N2 - © 2019 IEEE.Modern malware evolves various detection avoidance techniques to bypass the state-of-the-art detection methods. An emerging trend to deal with this issue is the combination of image transformation and machine learning techniques to classify and detect malware. However, existing works in this field only perform simple image transformation methods that limit the accuracy of the detection. In this paper, we introduce a novel approach to classify malware by using a deep network on images transformed from binary samples. In particular, we first develop a novel hybrid image transformation method to convert binaries into color images that convey the binary semantics. The images are trained by a deep convolutional neural network that later classifies the test inputs into benign or malicious categories. Through the extensive experiments, our proposed method surpasses all baselines and achieves 99.14% in terms of accuracy on the testing set.

AB - © 2019 IEEE.Modern malware evolves various detection avoidance techniques to bypass the state-of-the-art detection methods. An emerging trend to deal with this issue is the combination of image transformation and machine learning techniques to classify and detect malware. However, existing works in this field only perform simple image transformation methods that limit the accuracy of the detection. In this paper, we introduce a novel approach to classify malware by using a deep network on images transformed from binary samples. In particular, we first develop a novel hybrid image transformation method to convert binaries into color images that convey the binary semantics. The images are trained by a deep convolutional neural network that later classifies the test inputs into benign or malicious categories. Through the extensive experiments, our proposed method surpasses all baselines and achieves 99.14% in terms of accuracy on the testing set.

U2 - 10.1109/NICS48868.2019.9023876

DO - 10.1109/NICS48868.2019.9023876

M3 - Conference contribution

SN - 9781728151632

T3 - Proceedings - 2019 6th NAFOSTED Conference on Information and Computer Science, NICS 2019

SP - 234

EP - 239

BT - Proceedings - 2019 6th NAFOSTED Conference on Information and Computer Science, NICS 2019

A2 - Quoc Bao, V.N.

A2 - Quang, P.M.

A2 - Van Hoa, H.

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 6th NAFOSTED Conference on Information and Computer Science, NICS 2019

Y2 - 12 December 2019 through 13 December 2019

ER -

Vu DL, Nguyen TK, Nguyen TV, Nguyen TN, Massacci F, Phung PH. A convolutional transformation network for malware classification. In Quoc Bao VN, Quang PM, Van Hoa H, editors, Proceedings - 2019 6th NAFOSTED Conference on Information and Computer Science, NICS 2019. Institute of Electrical and Electronics Engineers Inc. 2019. p. 234-239. 9023876. (Proceedings - 2019 6th NAFOSTED Conference on Information and Computer Science, NICS 2019). doi: 10.1109/NICS48868.2019.9023876

A convolutional transformation network for malware classification

Abstract

Publication series

Conference

Funding

Access to Document

Persistent URL (handle)

Fingerprint

Cite this