batten-functionlengthasatool-2008.pdf (305.61 kB)
Function length as a tool for malware classification
conference contribution
posted on 2008-01-01, 00:00 authored by Ronghua Tian, Lynn BattenLynn Batten, S VersteegThe proliferation of malware is a serious threat to computer and information systems throughout the world. Antimalware companies are continually challenged to identify and counter new malware as it is released into the wild. In attempts to speed up this identification and response, many researchers have examined ways to efficiently automate classification of malware as it appears in the environment. In this paper, we present a fast, simple and scalable method of classifying Trojans based only on the lengths of their functions. Our results indicate that function length may play a significant role in classifying malware, and, combined with other features, may result in a fast, inexpensive and scalable method of malware classification.
History
Event
MALWARE : International Conference on Malicious and Unwanted Software (3rd : 2008 : Alexandria, Va.)Pagination
69 - 76Publisher
IEEELocation
Alexandria, Va.Place of publication
Los Alamitos, Calif.Publisher DOI
Start date
2008-10-07End date
2008-10-08ISBN-13
9781424432899Language
engNotes
This material is presented to ensure timely dissemination of scholarly and technical work. Copyright and all rights therein are retained by authors or by other copyright holders. All persons copying this information are expected to adhere to the terms and constraints invoked by each author's copyright. In most cases, these works may not be reposted without the explicit permission of the copyright holder.Publication classification
E1 Full written paper - refereedCopyright notice
2008, IEEETitle of proceedings
Proceedings of the 3rd International Conference on Malicious and Unwanted Software : MALWARE 2008Usage metrics
Categories
No categories selectedKeywords
Licence
Exports
RefWorks
BibTeX
Ref. manager
Endnote
DataCite
NLM
DC