Using spatio-temporal information in API calls with machine learning algorithms for malware detection

Abstract

Run-time monitoring of program execution behavior is widely used to discriminate between benign and malicious processes running on an end-host. Towards this end, most of the existing run-time intrusion or malware detection techniques utilize information available in Windows Application Programming Interface (API) call arguments or sequences. In comparison… (More)
DOI: 10.1145/1654988.1655003

Topics

10 Figures and Tables

Statistics

0510201020112012201320142015201620172018
Citations per Year

55 Citations

Semantic Scholar estimates that this publication has 55 citations based on the available data.

See our FAQ for additional information.

Slides referencing similar topics