3.8 Proceedings Paper

Generic Black-Box End-to-End Attack Against State of the Art API Call Based Malware Classifiers

RESEARCH IN ATTACKS, INTRUSIONS, AND DEFENSES, RAID 2018 (2018)

Get Full Text
Add to Collection

Journal

RESEARCH IN ATTACKS, INTRUSIONS, AND DEFENSES, RAID 2018
Volume 11050, Issue -, Pages 490-510

Publisher

SPRINGER INTERNATIONAL PUBLISHING AG
DOI: 10.1007/978-3-030-00470-5_23

Keywords

Adversarial attacks; Malware classification; Deep neural networks; Dynamic analysis; Transferability

Categories

Computer Science, Software Engineering Computer Science, Theory & Methods

Ask authors/readers for more resources

Protocol

Community support

Reagent

Community support

In this paper, we present a black-box attack against API call based machine learning malware classifiers, focusing on generating adversarial sequences combining API calls and static features (e.g., printable strings) that will be misclassified by the classifier without affecting the malware functionality. We show that this attack is effective against many classifiers due to the transferability principle between RNN variants, feed forward DNNs, and traditional machine learning classifiers such as SVM. We also implement GADGET, a software framework to convert any malware binary to a binary undetected by malware classifiers, using the proposed attack, without access to the malware source code.

Authors

I am an author on this paper
Click your name to claim this paper and add it to your profile.

Reviews

Primary Rating

3.8
Not enough ratings

Secondary Ratings

Novelty
-
Significance
-
Scientific rigor
-
Rate this paper

Recommended

No Data Available
No Data Available
Webinars Posters Questions Hubs Funding Journals Papers Connect Collections Reviewers About Us FAQs Mobile App Privacy Policy Terms of Use
© Peeref 2019-2024. All rights reserved.