Skip navigation

MFF-AMD: multivariate feature fusion for Android malware detection

MFF-AMD: multivariate feature fusion for Android malware detection

Xu, Guangquan, Feng, Meiqi, Jiao, Litao, Liu, Jian, Dai, Hong-Ning, Wang, Ding, Panaousis, Emmanouil ORCID: 0000-0001-7306-4062 and Zheng, Xi (2022) MFF-AMD: multivariate feature fusion for Android malware detection. In: CollaborateCom 2021: Networking, Applications and Worksharing 17th EAI. Virtual Event, October 16-18, 2021, Proceedings, Part I. Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering book series (LNICST, volume 406), 406 (ch. 10). Springer Link, Cham, pp. 368-385. ISBN 9783030926342 ; 9783030926359

[img]
Preview
PDF (Author's accepted manuscript (AAM))
34783_PANAOUSIS_mfd_amd_multivariate_feature_fusion.pdf - Accepted Version

Download (2MB) | Preview

Abstract

Researchers have turned their focus on leveraging either dynamic or static features extracted from applications to train AI algorithms to identify malware precisely. However, the adversarial techniques have been continuously evolving and meanwhile, the code structure and application function have been designed in complex format. This makes Android malware detection more challenging than before. Most of the existing detection methods may not work well on recent malware samples. In this paper, we aim at enhancing the detection accuracy of Android malware through machine learning techniques via the design and development of our system called MFF-AMD. In our system, we first extract various features through static and dynamic analysis and obtain a multiscale comprehensive feature set. Then, to achieve high classification performance, we introduce the Relief algorithm to fuse the features, and design four weight distribution algorithms to fuse base classifiers. Finally, we set the threshold to guide MFF-AMD to perform static or hybrid analysis on the malware samples. Our experiments performed on more than 25,000 applications from the recent five-year dataset demonstrate that MFF-AMD can effectively detect malware with high accuracy.

Item Type: Conference Proceedings
Title of Proceedings: CollaborateCom 2021: Networking, Applications and Worksharing 17th EAI. Virtual Event, October 16-18, 2021, Proceedings, Part I.
Uncontrolled Keywords: malware detection, hybrid analysis, weight distribution, multivariate feature fusion
Subjects: Q Science > QA Mathematics > QA75 Electronic computers. Computer science
Q Science > QA Mathematics > QA76 Computer software
T Technology > T Technology (General)
Faculty / School / Research Centre / Research Group: Faculty of Engineering & Science
Faculty of Engineering & Science > Internet of Things and Security Research Centre (ISEC)
Faculty of Engineering & Science > School of Computing & Mathematical Sciences (CMS)
Last Modified: 19 Jan 2022 10:03
URI: http://gala.gre.ac.uk/id/eprint/34783

Actions (login required)

View Item View Item

Downloads

Downloads per month over past year

View more statistics