计算机工程与信息技术学报

Significance of Feature Extraction in Classification of Rootkit Sub-Families of Malware

Prasenjit Das and Chetan Sharma

Modern malware sharing common code within sub-families, in order to nullify the anti-malware has redundant features in them. These features are added in the code to obfuscate the anti-malware. Feature selection techniques remove these redundant insignificant features from the binary exe. This leads to better classification results. We have shown experimentally that the classification of two classes of rootkit family of malware generate better accuracy when feature selection techniques have been applied. The accuracy of 84.17% as against 66.67% when feature selection is not applied shows the significance of feature selection in malware classification.

免责声明: 此摘要通过人工智能工具翻译,尚未经过审核或验证