Title :
Function length as a tool for malware classification
Author :
Tian, R. ; Batten, L.M. ; Versteeg, S.C.
Author_Institution :
Deakin Univ., Melbourne, VIC
Abstract :
The proliferation of malware is a serious threat to computer and information systems throughout the world. Anti-malware companies are continually challenged to identify and counter new malware as it is released into the wild. In attempts to speed up this identification and response, many researchers have examined ways to efficiently automate classification of malware as it appears in the environment. In this paper, we present a fast, simple and scalable method of classifying Trojans based only on the lengths of their functions. Our results indicate that function length may play a significant role in classifying malware, and, combined with other features, may result in a fast, inexpensive and scalable method of malware classification.
Keywords :
invasive software; Trojans; function length; malware classification; malware proliferation; Application software; Australia; Computer networks; Counting circuits; Cryptography; Environmental management; Information systems; Road transportation; Software performance; Spatial databases;
Conference_Titel :
Malicious and Unwanted Software, 2008. MALWARE 2008. 3rd International Conference on
Conference_Location :
Fairfax, VI
Print_ISBN :
978-1-4244-3288-2
Electronic_ISBN :
978-1-4244-3289-9
DOI :
10.1109/MALWARE.2008.4690860
