Enviar artigo por via de e-mail Clustering of Malicious Executable Files Based on the Sequence Analysis of System Calls
- Autores: Ognev R.A.1, Zhukovskii E.V.1, Zegzhda D.P.1
-
Afiliações:
- Peter the Great St. Petersburg Polytechnic University (SPbPU)
- Edição: Volume 53, Nº 8 (2019)
- Páginas: 1045-1055
- Seção: Article
- URL: https://journal-vniispk.ru/0146-4116/article/view/176009
- DOI: https://doi.org/10.3103/S0146411619080212
- ID: 176009
Citar
Acesso aberto
Acesso está concedido
Somente assinantes
Resumo
The use of clustering algorithms to determine the types of malicious software files based on the analysis of the WinAPI function call sequences is investigated. The use of clustering algorithms such as k-means, EM-algorithm, hierarchical algorithm, and the affinity propagation method is considered. The quality of clustering is evaluated using the silhouette metrics, the Calinski–Harabasz index, and the Davies–Bouldin index.
Sobre autores
R. Ognev
Peter the Great St. Petersburg Polytechnic University (SPbPU)
Email: dmitry@ibks.spbstu.ru
Rússia, St. Petersburg, 195251
E. Zhukovskii
Peter the Great St. Petersburg Polytechnic University (SPbPU)
Autor responsável pela correspondência
Email: spbzhuk@gmail.com
Rússia, St. Petersburg, 195251
D. Zegzhda
Peter the Great St. Petersburg Polytechnic University (SPbPU)
Autor responsável pela correspondência
Email: dmitry@ibks.spbstu.ru
Rússia, St. Petersburg, 195251
Arquivos suplementares
