A Novel Malware Detection and Family Classification Scheme for IoT Based on DEAM and DenseNet release_u2lplch3ardynn2tggpdxca7gy

by Changguang Wang, Ziqiu Zhao, Fangwei Wang, Qingru

Published in Security and Communication Networks by Hindawi Limited.

2021   Volume 2021, p1-16

Abstract

With the rapid increase in the amount and type of malware, traditional methods of malware detection and family classification for IoT applications through static and dynamic analysis have been greatly challenged. In this paper, a new simple and effective attention module of Convolutional Neural Networks (CNNs), named as Depthwise Efficient Attention Module (DEAM), is proposed and combined with a DenseNet to propose a new malware detection and family classification model. Based on the good effect of the DenseNet in the field of image classification and the visual similarity of the malware family on images, the gray-scale image transformed from malware is input into the model combined with the DEAM and DenseNet for malware detection, and then the family classification is carried out. The DEAM is a general lightweight attention module improved based on the Convolutional Block Attention Module (CBAM), which can strengthen the attention to the characteristics of malware and improve the model effect. We use the MalImg dataset, Microsoft malware classification challenge dataset (BIG 2015), and our dataset constructed by the two above-mentioned datasets to verify the effectiveness of the proposed model in family classification and malware detection. Experimental results show that the proposed model achieves 99.3% in terms of accuracy for malware detection on our dataset and achieves 98.5% and 97.3% in terms of accuracy for family classification on the MalImg dataset and BIG 2015 dataset, respectively. The model can reliably detect IoT malware and classify its families.
In application/xml+jats format

Archived Files and Locations

application/pdf  1.9 MB
file_rqv4k77rfrdfregmpmpet244da
downloads.hindawi.com (publisher)
web.archive.org (webarchive)
Read Archived PDF
Preserved and Accessible
Type  article-journal
Stage   published
Date   2021-01-05
Language   en ?
Container Metadata
Open Access Publication
In DOAJ
In Keepers Registry
ISSN-L:  1939-0122
Work Entity
access all versions, variants, and formats of this works (eg, pre-prints)
Catalog Record
Revision: c9b71088-d99a-4534-98ea-deb19546580c
API URL: JSON