Skip to main content
Login | Suomeksi | På svenska | In English

Adversarial Robustness of Hybrid Machine Learning Architecture for Malware Classification

Show full item record

Title: Adversarial Robustness of Hybrid Machine Learning Architecture for Malware Classification
Author(s): Trizna, Dmitrijs
Contributor: University of Helsinki, Faculty of Science
Degree program: Master's Programme in Data Science
Specialisation: no specialization
Language: English
Acceptance year: 2022
Abstract:
The detection heuristic in contemporary machine learning Windows malware classifiers is typically based on the static properties of the sample. In contrast, simultaneous utilization of static and behavioral telemetry is vaguely explored. We propose a hybrid model that employs dynamic malware analysis techniques, contextual information as an executable filesystem path on the system, and static representations used in modern state-of-the-art detectors. It does not require an operating system virtualization platform. Instead, it relies on kernel emulation for dynamic analysis. Our model reports enhanced detection heuristic and identify malicious samples, even if none of the separate models express high confidence in categorizing the file as malevolent. For instance, given the $0.05\%$ false positive rate, individual static, dynamic, and contextual model detection rates are $18.04\%$, $37.20\%$, and $15.66\%$. However, we show that composite processing of all three achieves a detection rate of $96.54\%$, above the cumulative performance of individual components. Moreover, simultaneous use of distinct malware analysis techniques address independent unit weaknesses, minimizing false positives and increasing adversarial robustness. Our experiments show a decrease in contemporary adversarial attack evasion rates from $26.06\%$ to $0.35\%$ when behavioral and contextual representations of sample are employed in detection heuristic.
Keyword(s): adversarial machine learning malicious software windows deep learning


Files in this item

Files Size Format View
Dmitrijs_Trizna_thesis_2022.pdf 1.528Mb PDF

This item appears in the following Collection(s)

Show full item record