Sun Hao, Wen Wang, Huabiao Lu and Peige Ren AutoMal: automatic clustering and signature generation for malwares based on the network flow Security and Communication Networks 8
This paper presents AutoMal, a system for automatically extracting signatures from large-scale malware, and our main contribution is putting forward the concept hashing signature and developing the corresponding mechanism constituted by three methods in the paper. We utilize feature hashing for high-dimensional feature spaces reducing and propose cross association with median filtering for malware clustering then provide Bayesian selection for signature generating and evaluating. The results show that AutoMal can generate strongly noise-resisted signatures that exactly show the characteristics of malware.
Complete the form below and we will send an e-mail message containing a link to the selected article on your behalf