Labeling a malicious executable as a variant of a known family is important for security applications such as triage, lineage, and for building reference datasets in turn used for …
A Mohaisen, O Alrawi - Detection of Intrusions and Malware, and …, 2014 - Springer
Antivirus scanners are designed to detect malware and, to a lesser extent, to label detections based on a family association. The labeling provided by AV vendors has many …
Tags can be used by malware repositories and analysis services to enable searches for samples of interest across different dimensions. Automatically extracting tags from AV labels …
A Salem, S Banescu, A Pretschner - ACM Transactions on Privacy and …, 2021 - dl.acm.org
The malware analysis and detection research community relies on the online platform VirusTotal to label Android apps based on the scan results of around 60 antiviral scanners …
A Kantchelian, MC Tschantz, S Afroz, B Miller… - Proceedings of the 8th …, 2015 - dl.acm.org
We examine the problem of aggregating the results of multiple anti-virus (AV) vendors' detectors into a single authoritative ground-truth label for every binary. To do so, we adapt a …
Malware remains an important security threat, as miscreants continue to deliver a variety of malicious programs to hosts around the world. At the heart of all the malware delivery …
Malware family classification is a significant issue with public safety and research implications that has been hindered by the high cost of expert labels. The vast majority of …
The number of unique malware samples is growing out of control. Over the years, security companies have designed and deployed complex infrastructures to collect and analyze this …
Malware analysis aims to understand how malicious software carries out actions necessary for a successful attack and identify the possible impacts of the attack. While there has been …