@inproceedings{f4c05c4c036845aa901b48b30bd18825,
title = "Learning latent byte-level feature representation for malware detection",
abstract = "This paper proposes two different byte level feature representations of binary files for malware detection. The proposed static feature representations do not need any third-party tools and are independent of the operating system because they operate on the raw file bytes. Sparse term-frequency simhashing (s-tf-simhashing) is a faster type of tf-simhashing. S-tf-simhashing requires less computation and outperforms the original dense tf-simhashing. The binary word2vec (Bword2vec) representation embeds the semantic relationships of the n-grams into the code vectors. Bword2vec employs a binary to word2vec representation that reduces the feature space dimension than s-tf-simhashing and thus further reducing the computation of the classifier. We show that the proposed techniques can successfully be used for both analyzing of full malware apps and infected files. The experiments are conducted on real Android and PDF malware datasets.",
keywords = "Binary Word2vec, Binary-level feature representation, Malware detection, Sparse term-frequency simhashing",
author = "Mahmood Yousefi-Azar and Len Hamey and Vijay Varadharajan and Shiping Chen",
year = "2018",
month = dec,
day = "16",
doi = "10.1007/978-3-030-04212-7_50",
language = "English",
isbn = "9783030042110",
series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
publisher = "Springer-VDI-Verlag GmbH & Co. KG",
pages = "568--578",
editor = "Long Cheng and Leung, {Andrew Chi Sing} and Seiichi Ozawa",
booktitle = "Neural Information Processing",
address = "Germany",
note = "25th International Conference on Neural Information Processing, ICONIP 2018 ; Conference date: 13-12-2018 Through 16-12-2018",
}