Multi Purpose Malware

Multi-purpose malware, capable of executing diverse malicious actions, poses a significant cybersecurity challenge. Current research focuses on improving malware detection and analysis using advanced machine learning techniques, including reinforcement learning for efficient forensic investigation, graph neural networks (like GraphSAGE) for analyzing software structural interactions, and transformer-based architectures (like self-attention models) for dynamic analysis of malware behavior. These efforts aim to enhance the speed and accuracy of malware identification, particularly for novel ("zero-day") threats, and improve the efficiency of digital forensics investigations, ultimately bolstering cybersecurity defenses.

Papers

November 12, 2024

SCORE: Syntactic Code Representations for Static Script Malware Detection
Ecenaz Erdemir, Kyuhong Park, Michael J. Morais, Vianne R. Gao, Marion Marschalek, Yi Fan
Data Detection Performance Score Client Side Multi Purpose Malware

October 19, 2024

A Novel Reinforcement Learning Model for Post-Incident Malware Investigations
Dipo Dunsin, Mohamed Chahine Ghanem, Karim Ouazzane, Vassil Vassilev
Q Learning Comprehensive Investigation Novel Reinforcement Learning Malware Attack Malware Representation Multi Purpose Malware

August 4, 2024

Reinforcement Learning for an Efficient and Effective Malware Investigation during Cyber Incident Response
Dipo Dunsin, Mohamed Chahine Ghanem, Karim Ouazzane, Vassil Vassilev
Reinforcement Learning Markov Decision Process Malware Analysis Multi Purpose Malware

December 19, 2023

Discovering Malicious Signatures in Software from Structural Interactions
Chenzhong Yin, Hantang Zhang, Mingxi Cheng, Xiongye Xiao, Xinghe Chen, Xin Ren, Paul Bogdan
Malware Detection Software System Malicious Instruction Multi Purpose Malware

September 19, 2023

Nebula: Self-Attention for Dynamic Malware Analysis
Dmitrijs Trizna, Luca Demetrio, Battista Biggio, Fabio Roli
Machine Learning Model Self Attention Malware Detection Malware Classification Malware Analysis Data Analysis Pipeline Multi Purpose Malware

October 14, 2022

A Lightweight Moving Target Defense Framework for Multi-purpose Malware Affecting IoT Devices
Jan von der Assen, Alberto Huertas Celdrán, Pedro Miguel Sánchez Sánchez, Jordan Cedeño, Gérôme Bovet, Gregorio Martínez Pérez, Burkhard Stiller
Internet of Thing Internet of Thing Device Moving Target Defense Multi Purpose Malware

August 24, 2022

Combining AI and AM - Improving Approximate Matching through Transformer Networks
Frieder Uhlig, Lukas Struppek, Dominik Hintersdorf, Thomas Göbel, Harald Baier, Kristian Kersting
Transformer Network Digital Forensic Efficient Matching Deep Matching Multi Purpose Malware