Using spatio-temporal information in API calls with machine learning algorithms for malware detection


Run-time monitoring of program execution behavior is widely used to discriminate between benign and malicious processes running on an end-host. Towards this end, most of the existing run-time intrusion or malware detection techniques utilize information available in Windows Application Programming Interface (API) call arguments or sequences. In comparison… (More)
DOI: 10.1145/1654988.1655003


10 Figures and Tables


Citations per Year

55 Citations

Semantic Scholar estimates that this publication has 55 citations based on the available data.

See our FAQ for additional information.

Slides referencing similar topics