IMAD: in-execution malware analysis and detection

13 years 11 months ago

Download nexginrc.org

The sophistication of computer malware is becoming a serious threat to the information technology infrastructure, which is the backbone of modern e-commerce systems. We, therefore, advocate the need for developing sophisticated, efﬁcient, and accurate malware classiﬁcation techniques that can detect a malware on the ﬁrst day of its launch – commonly known as “zero-day malware detection”. To this end, we present a new technique, IMAD, that can not only identify zero-day malware without any apriori knowledge but can also detect a malicious process while it is executing (inexecution detection). The capability of in-execution malware detection empowers an operating system to immediately kill it before it can cause any signiﬁcant damage. IMAD is a realtime, dynamic, eﬃcient, in-execution zero-day malware detection scheme, which analyzes the system call sequence of a process to classify it as malicious or benign. We use Genetic Algorithm to optimize system parameters of our ...

Syed Bilal Mehdi, Ajay Kumar Tanwani, Muddassar Fa

Real-time Traffic

Artificial Intelligence | GECCO 2009 | Malware | Malware Detection | Zero-day Malware |

claim paper

Post Info
More Details (n/a)

Added	26 May 2010
Updated	26 May 2010
Type	Conference
Year	2009
Where	GECCO
Authors	Syed Bilal Mehdi, Ajay Kumar Tanwani, Muddassar Farooq

Comments (0)

Sciweavers

IMAD: in-execution malware analysis and detection

Artificial Intelligence | GECCO 2009 | Malware | Malware Detection | Zero-day Malware |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers