Automatic malware categorization based on K-means clustering technique

Nazifa Mosharrat; Iqbal H. Sarker; Md Musfique Anwar; Muhammad Nazrul Islam; Paul Watters; Mohammad Hammoudeh

doi:10.1007/978-981-16-6636-0_49

Automatic malware categorization based on K-means clustering technique

Nazifa Mosharrat, Iqbal H. Sarker^*, Md Musfique Anwar, Muhammad Nazrul Islam, Paul Watters, Mohammad Hammoudeh

^*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceeding › Chapter › peer-review

4 Citations (Scopus)

Abstract

The android operating system is a popular operating system for mobile phone applications. This is also known as an open-source operating system so that the developers can easily update and add new features to it. However, it poses significant challenges related to malicious attacks or cyberattacks because of its open system design philosophy. Nowadays, the number of malware applications is increasing rapidly and proportionally with safe android applications. As a result, it has become very challenging to identify their behaviors or signatures or categorizes them to implement protection in the android system. In this research work, we propose an automated system for malware categorization using the K-means clustering method that automatically chooses the cluster number. In our method, we have categorized malware into an optimum number of different cluster families by using a real-time malware dataset. We also compare our automated model with the traditional cluster selection technique with Elbow and Silhouette method. Experimental results demonstrate that our model determines the optimal cluster number with less user intervention for malware categorization.

Original language	English
Title of host publication	Proceedings of the International Conference on Big Data, IoT, and Machine Learning
Subtitle of host publication	BIM 2021
Editors	Mohammad Shamsul Arefin, M. Shamim Kaiser, Anirban Bandyopadhyay, Md. Atiqur Rahman Ahad, Kanad Ray
Place of Publication	Singapore
Publisher	Springer, Springer Nature
Pages	653-664
Number of pages	12
ISBN (Electronic)	9789811666360
ISBN (Print)	9789811666353
DOIs	https://doi.org/10.1007/978-981-16-6636-0_49
Publication status	Published - 2022
Event	International Conference on Big Data, IoT, and Machine Learning (2021) - Cox's Bazar, Bangladesh Duration: 23 Sept 2021 → 25 Sept 2021

Publication series

Name	Lecture Notes on Data Engineering and Communications Technologies
Volume	95
ISSN (Print)	2367-4512
ISSN (Electronic)	2367-4520

Conference

Conference	International Conference on Big Data, IoT, and Machine Learning (2021)
Abbreviated title	BIM 2021
Country/Territory	Bangladesh
City	Cox's Bazar
Period	23/09/21 → 25/09/21

Keywords

Android applications
Clustering
Cybersecurity
K-means
Machine learning
Malware categorization
Malware detection

Access to Document

10.1007/978-981-16-6636-0_49

Cite this

Mosharrat, N., Sarker, I. H., Anwar, M. M., Islam, M. N., Watters, P., & Hammoudeh, M. (2022). Automatic malware categorization based on K-means clustering technique. In M. S. Arefin, M. S. Kaiser, A. Bandyopadhyay, M. A. R. Ahad, & K. Ray (Eds.), Proceedings of the International Conference on Big Data, IoT, and Machine Learning: BIM 2021 (pp. 653-664). (Lecture Notes on Data Engineering and Communications Technologies; Vol. 95). Springer, Springer Nature. https://doi.org/10.1007/978-981-16-6636-0_49

Mosharrat, Nazifa ; Sarker, Iqbal H. ; Anwar, Md Musfique et al. / Automatic malware categorization based on K-means clustering technique. Proceedings of the International Conference on Big Data, IoT, and Machine Learning: BIM 2021. editor / Mohammad Shamsul Arefin ; M. Shamim Kaiser ; Anirban Bandyopadhyay ; Md. Atiqur Rahman Ahad ; Kanad Ray. Singapore : Springer, Springer Nature, 2022. pp. 653-664 (Lecture Notes on Data Engineering and Communications Technologies).

@inbook{523548d1acbf490f8cbd293d70dcc345,

title = "Automatic malware categorization based on K-means clustering technique",

abstract = "The android operating system is a popular operating system for mobile phone applications. This is also known as an open-source operating system so that the developers can easily update and add new features to it. However, it poses significant challenges related to malicious attacks or cyberattacks because of its open system design philosophy. Nowadays, the number of malware applications is increasing rapidly and proportionally with safe android applications. As a result, it has become very challenging to identify their behaviors or signatures or categorizes them to implement protection in the android system. In this research work, we propose an automated system for malware categorization using the K-means clustering method that automatically chooses the cluster number. In our method, we have categorized malware into an optimum number of different cluster families by using a real-time malware dataset. We also compare our automated model with the traditional cluster selection technique with Elbow and Silhouette method. Experimental results demonstrate that our model determines the optimal cluster number with less user intervention for malware categorization.",

keywords = "Android applications, Clustering, Cybersecurity, K-means, Machine learning, Malware categorization, Malware detection",

author = "Nazifa Mosharrat and Sarker, {Iqbal H.} and Anwar, {Md Musfique} and Islam, {Muhammad Nazrul} and Paul Watters and Mohammad Hammoudeh",

year = "2022",

doi = "10.1007/978-981-16-6636-0_49",

language = "English",

isbn = "9789811666353",

series = "Lecture Notes on Data Engineering and Communications Technologies",

publisher = "Springer, Springer Nature",

pages = "653--664",

editor = "Arefin, {Mohammad Shamsul} and Kaiser, {M. Shamim} and Anirban Bandyopadhyay and Ahad, {Md. Atiqur Rahman} and Kanad Ray",

booktitle = "Proceedings of the International Conference on Big Data, IoT, and Machine Learning",

address = "United States",

note = "International Conference on Big Data, IoT, and Machine Learning (2021), BIM 2021 ; Conference date: 23-09-2021 Through 25-09-2021",

}

Mosharrat, N, Sarker, IH, Anwar, MM, Islam, MN, Watters, P & Hammoudeh, M 2022, Automatic malware categorization based on K-means clustering technique. in MS Arefin, MS Kaiser, A Bandyopadhyay, MAR Ahad & K Ray (eds), Proceedings of the International Conference on Big Data, IoT, and Machine Learning: BIM 2021. Lecture Notes on Data Engineering and Communications Technologies, vol. 95, Springer, Springer Nature, Singapore, pp. 653-664, International Conference on Big Data, IoT, and Machine Learning (2021), Cox's Bazar, Bangladesh, 23/09/21. https://doi.org/10.1007/978-981-16-6636-0_49

Automatic malware categorization based on K-means clustering technique. / Mosharrat, Nazifa; Sarker, Iqbal H.; Anwar, Md Musfique et al.
Proceedings of the International Conference on Big Data, IoT, and Machine Learning: BIM 2021. ed. / Mohammad Shamsul Arefin; M. Shamim Kaiser; Anirban Bandyopadhyay; Md. Atiqur Rahman Ahad; Kanad Ray. Singapore: Springer, Springer Nature, 2022. p. 653-664 (Lecture Notes on Data Engineering and Communications Technologies; Vol. 95).

Research output: Chapter in Book/Report/Conference proceeding › Chapter › peer-review

TY - CHAP

T1 - Automatic malware categorization based on K-means clustering technique

AU - Mosharrat, Nazifa

AU - Sarker, Iqbal H.

AU - Anwar, Md Musfique

AU - Islam, Muhammad Nazrul

AU - Watters, Paul

AU - Hammoudeh, Mohammad

PY - 2022

Y1 - 2022

N2 - The android operating system is a popular operating system for mobile phone applications. This is also known as an open-source operating system so that the developers can easily update and add new features to it. However, it poses significant challenges related to malicious attacks or cyberattacks because of its open system design philosophy. Nowadays, the number of malware applications is increasing rapidly and proportionally with safe android applications. As a result, it has become very challenging to identify their behaviors or signatures or categorizes them to implement protection in the android system. In this research work, we propose an automated system for malware categorization using the K-means clustering method that automatically chooses the cluster number. In our method, we have categorized malware into an optimum number of different cluster families by using a real-time malware dataset. We also compare our automated model with the traditional cluster selection technique with Elbow and Silhouette method. Experimental results demonstrate that our model determines the optimal cluster number with less user intervention for malware categorization.

AB - The android operating system is a popular operating system for mobile phone applications. This is also known as an open-source operating system so that the developers can easily update and add new features to it. However, it poses significant challenges related to malicious attacks or cyberattacks because of its open system design philosophy. Nowadays, the number of malware applications is increasing rapidly and proportionally with safe android applications. As a result, it has become very challenging to identify their behaviors or signatures or categorizes them to implement protection in the android system. In this research work, we propose an automated system for malware categorization using the K-means clustering method that automatically chooses the cluster number. In our method, we have categorized malware into an optimum number of different cluster families by using a real-time malware dataset. We also compare our automated model with the traditional cluster selection technique with Elbow and Silhouette method. Experimental results demonstrate that our model determines the optimal cluster number with less user intervention for malware categorization.

KW - Android applications

KW - Clustering

KW - Cybersecurity

KW - K-means

KW - Machine learning

KW - Malware categorization

KW - Malware detection

UR - http://www.scopus.com/inward/record.url?scp=85120921210&partnerID=8YFLogxK

U2 - 10.1007/978-981-16-6636-0_49

DO - 10.1007/978-981-16-6636-0_49

M3 - Chapter

AN - SCOPUS:85120921210

SN - 9789811666353

T3 - Lecture Notes on Data Engineering and Communications Technologies

SP - 653

EP - 664

BT - Proceedings of the International Conference on Big Data, IoT, and Machine Learning

A2 - Arefin, Mohammad Shamsul

A2 - Kaiser, M. Shamim

A2 - Bandyopadhyay, Anirban

A2 - Ahad, Md. Atiqur Rahman

A2 - Ray, Kanad

PB - Springer, Springer Nature

CY - Singapore

T2 - International Conference on Big Data, IoT, and Machine Learning (2021)

Y2 - 23 September 2021 through 25 September 2021

ER -

Mosharrat N, Sarker IH, Anwar MM, Islam MN, Watters P, Hammoudeh M. Automatic malware categorization based on K-means clustering technique. In Arefin MS, Kaiser MS, Bandyopadhyay A, Ahad MAR, Ray K, editors, Proceedings of the International Conference on Big Data, IoT, and Machine Learning: BIM 2021. Singapore: Springer, Springer Nature. 2022. p. 653-664. (Lecture Notes on Data Engineering and Communications Technologies). doi: 10.1007/978-981-16-6636-0_49

Automatic malware categorization based on K-means clustering technique

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this