{"title":"Research on family classification based on graph similarity","authors":"Zemin Guo, Xiaojian Liu","doi":"10.1117/12.2653827","DOIUrl":null,"url":null,"abstract":"With the continuous development of mobile devices, the rapid increase in the number of Android malware poses a huge threat to malware detection systems. By classifying malware samples into families, the features shared by malware in the same family can be utilized in the malware detection method, to achieve the effect of improving the detection rate of malware. In this paper, a family classification method based on graph similarity is proposed, which constructs a family matrix and a weight matrix for malicious families and performs family classification by calculating the similarity between the software and each family. Experiments show that the classification accuracy rate of this method for the Kmin family, Inconosys family, Ginimi family, and DroidKungFu family in the Drebin dataset is over 90%.","PeriodicalId":32903,"journal":{"name":"JITeCS Journal of Information Technology and Computer Science","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2022-12-08","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"JITeCS Journal of Information Technology and Computer Science","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1117/12.2653827","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 0
Abstract
With the continuous development of mobile devices, the rapid increase in the number of Android malware poses a huge threat to malware detection systems. By classifying malware samples into families, the features shared by malware in the same family can be utilized in the malware detection method, to achieve the effect of improving the detection rate of malware. In this paper, a family classification method based on graph similarity is proposed, which constructs a family matrix and a weight matrix for malicious families and performs family classification by calculating the similarity between the software and each family. Experiments show that the classification accuracy rate of this method for the Kmin family, Inconosys family, Ginimi family, and DroidKungFu family in the Drebin dataset is over 90%.