Methodology for malware classification using a random forest classifier

Carlos Domenick Morales-Molina; Diego Santamaria-Guerrero; Gabriel Sanchez-Perez; Hector Perez-Meana; Aldo Hernandez-Suarez

doi:10.1109/ROPEC.2018.8661441

Methodology for malware classification using a random forest classifier

Carlos Domenick Morales-Molina, Diego Santamaria-Guerrero, Gabriel Sanchez-Perez, Hector Perez-Meana, Aldo Hernandez-Suarez

Escuela Superior de Ingeniería Mecánica y Eléctrica (ESIME), Unidad Culhuacán

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

15 Scopus citations

Abstract

Malware analysis using machine learning techniques has been the subject of study in recent years as a new alternative for efficient detection of malicious behaviour patterns in different operating systems. Recent advances in this research field have proposed different algorithms employing information extraction and feature selection tasks, aiming to cover different types of data and improving several performance metrics. In this work is proposed the use of an assembly classifier, better known as Random Forest, that improves the performance of other well-known algorithms by aggregating individual class predictions to combine into a final prediction. A case study is presented using two different datasets of malware, that through data preparation techniques is enhanced the quality of data to strengthen the classifier training.

Original language	English
Title of host publication	2018 IEEE International Autumn Meeting on Power, Electronics and Computing, ROPEC 2018
Publisher	Institute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)	9781538659359
DOIs	https://doi.org/10.1109/ROPEC.2018.8661441
State	Published - 2 Jul 2018
Event	2018 IEEE International Autumn Meeting on Power, Electronics and Computing, ROPEC 2018 - Ixtapa, Guerrero, Mexico Duration: 14 Nov 2018 → 16 Nov 2018

Publication series

Name	2018 IEEE International Autumn Meeting on Power, Electronics and Computing, ROPEC 2018

Conference

Conference	2018 IEEE International Autumn Meeting on Power, Electronics and Computing, ROPEC 2018
Country/Territory	Mexico
City	Ixtapa, Guerrero
Period	14/11/18 → 16/11/18

Access to Document

10.1109/ROPEC.2018.8661441

Cite this

Morales-Molina, C. D., Santamaria-Guerrero, D., Sanchez-Perez, G., Perez-Meana, H., & Hernandez-Suarez, A. (2018). Methodology for malware classification using a random forest classifier. In 2018 IEEE International Autumn Meeting on Power, Electronics and Computing, ROPEC 2018 Article 8661441 (2018 IEEE International Autumn Meeting on Power, Electronics and Computing, ROPEC 2018). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/ROPEC.2018.8661441

Morales-Molina, Carlos Domenick ; Santamaria-Guerrero, Diego ; Sanchez-Perez, Gabriel et al. / Methodology for malware classification using a random forest classifier. 2018 IEEE International Autumn Meeting on Power, Electronics and Computing, ROPEC 2018. Institute of Electrical and Electronics Engineers Inc., 2018. (2018 IEEE International Autumn Meeting on Power, Electronics and Computing, ROPEC 2018).

@inproceedings{bd916a48e3a94c3bad44bfa53e560951,

title = "Methodology for malware classification using a random forest classifier",

abstract = "Malware analysis using machine learning techniques has been the subject of study in recent years as a new alternative for efficient detection of malicious behaviour patterns in different operating systems. Recent advances in this research field have proposed different algorithms employing information extraction and feature selection tasks, aiming to cover different types of data and improving several performance metrics. In this work is proposed the use of an assembly classifier, better known as Random Forest, that improves the performance of other well-known algorithms by aggregating individual class predictions to combine into a final prediction. A case study is presented using two different datasets of malware, that through data preparation techniques is enhanced the quality of data to strengthen the classifier training.",

author = "Morales-Molina, {Carlos Domenick} and Diego Santamaria-Guerrero and Gabriel Sanchez-Perez and Hector Perez-Meana and Aldo Hernandez-Suarez",

note = "Publisher Copyright: {\textcopyright} 2018 IEEE.; 2018 IEEE International Autumn Meeting on Power, Electronics and Computing, ROPEC 2018 ; Conference date: 14-11-2018 Through 16-11-2018",

year = "2018",

month = jul,

day = "2",

doi = "10.1109/ROPEC.2018.8661441",

language = "Ingl{\'e}s",

series = "2018 IEEE International Autumn Meeting on Power, Electronics and Computing, ROPEC 2018",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

booktitle = "2018 IEEE International Autumn Meeting on Power, Electronics and Computing, ROPEC 2018",

address = "Estados Unidos",

}

Morales-Molina, CD, Santamaria-Guerrero, D, Sanchez-Perez, G , Perez-Meana, H & Hernandez-Suarez, A 2018, Methodology for malware classification using a random forest classifier. in 2018 IEEE International Autumn Meeting on Power, Electronics and Computing, ROPEC 2018., 8661441, 2018 IEEE International Autumn Meeting on Power, Electronics and Computing, ROPEC 2018, Institute of Electrical and Electronics Engineers Inc., 2018 IEEE International Autumn Meeting on Power, Electronics and Computing, ROPEC 2018, Ixtapa, Guerrero, Mexico, 14/11/18. https://doi.org/10.1109/ROPEC.2018.8661441

Methodology for malware classification using a random forest classifier. / Morales-Molina, Carlos Domenick; Santamaria-Guerrero, Diego; Sanchez-Perez, Gabriel et al.
2018 IEEE International Autumn Meeting on Power, Electronics and Computing, ROPEC 2018. Institute of Electrical and Electronics Engineers Inc., 2018. 8661441 (2018 IEEE International Autumn Meeting on Power, Electronics and Computing, ROPEC 2018).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Methodology for malware classification using a random forest classifier

AU - Morales-Molina, Carlos Domenick

AU - Santamaria-Guerrero, Diego

AU - Sanchez-Perez, Gabriel

AU - Perez-Meana, Hector

AU - Hernandez-Suarez, Aldo

PY - 2018/7/2

Y1 - 2018/7/2

N2 - Malware analysis using machine learning techniques has been the subject of study in recent years as a new alternative for efficient detection of malicious behaviour patterns in different operating systems. Recent advances in this research field have proposed different algorithms employing information extraction and feature selection tasks, aiming to cover different types of data and improving several performance metrics. In this work is proposed the use of an assembly classifier, better known as Random Forest, that improves the performance of other well-known algorithms by aggregating individual class predictions to combine into a final prediction. A case study is presented using two different datasets of malware, that through data preparation techniques is enhanced the quality of data to strengthen the classifier training.

AB - Malware analysis using machine learning techniques has been the subject of study in recent years as a new alternative for efficient detection of malicious behaviour patterns in different operating systems. Recent advances in this research field have proposed different algorithms employing information extraction and feature selection tasks, aiming to cover different types of data and improving several performance metrics. In this work is proposed the use of an assembly classifier, better known as Random Forest, that improves the performance of other well-known algorithms by aggregating individual class predictions to combine into a final prediction. A case study is presented using two different datasets of malware, that through data preparation techniques is enhanced the quality of data to strengthen the classifier training.

UR - http://www.scopus.com/inward/record.url?scp=85063909658&partnerID=8YFLogxK

U2 - 10.1109/ROPEC.2018.8661441

DO - 10.1109/ROPEC.2018.8661441

M3 - Contribución a la conferencia

AN - SCOPUS:85063909658

T3 - 2018 IEEE International Autumn Meeting on Power, Electronics and Computing, ROPEC 2018

BT - 2018 IEEE International Autumn Meeting on Power, Electronics and Computing, ROPEC 2018

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 2018 IEEE International Autumn Meeting on Power, Electronics and Computing, ROPEC 2018

Y2 - 14 November 2018 through 16 November 2018

ER -

Morales-Molina CD, Santamaria-Guerrero D, Sanchez-Perez G , Perez-Meana H , Hernandez-Suarez A. Methodology for malware classification using a random forest classifier. In 2018 IEEE International Autumn Meeting on Power, Electronics and Computing, ROPEC 2018. Institute of Electrical and Electronics Engineers Inc. 2018. 8661441. (2018 IEEE International Autumn Meeting on Power, Electronics and Computing, ROPEC 2018). doi: 10.1109/ROPEC.2018.8661441

Methodology for malware classification using a random forest classifier

Abstract

Publication series

Conference

Access to Document

Other files and links

Fingerprint

Cite this