Show simple item record

dc.creatorRaheja, Anchal
dc.date.accessioned2019-02-08T18:19:37Z
dc.date.available2019-02-08T18:19:37Z
dc.date.created2018-08
dc.date.issued2018-08-03
dc.date.submittedAugust 2018
dc.identifier.urihttp://hdl.handle.net/10106/27675
dc.description.abstractSystems affected by Malware in the past 10 years has risen from 29 million to 780 million, which tells us it’s a rapidly growing threat. Viruses, ransomware, worms, backdoors, botnets etc. all come under malware. Ransomware alone is predicted to cost $11.5 billion in 2019. As the downtime and financial damages are rising the researchers are finding new ways to tackle this threat. However, the usual approach is prone to high false positive rate or delayed detection rate. This research explores a dynamic approach for early-stage malware detection by modeling it’s behavior using hardware performance counters with low overhead. The analysis begins on a bare-metal machine running malware which is profiled for hardware calls using Intel VTune before it infects the system. By using this system design, I am able to generate models from data extracted using hardware performance counters and use it to train the system using machine learning techniques from known malware samples collected from VirusTotal and Hybrid Analysis.
dc.format.mimetypeapplication/pdf
dc.language.isoen_US
dc.subjecthardware performance counter
dc.subjectmalware
dc.subjectvirustotal
dc.subjectsandbox
dc.titleMALWARE EARLY-STAGE DETECTION USING MACHINE LEARNING ON HARDWARE PERFORMANCE COUNTERS
dc.typeThesis
dc.date.updated2019-02-08T18:21:47Z
thesis.degree.departmentComputer Science and Engineering
thesis.degree.grantorThe University of Texas at Arlington
thesis.degree.levelMasters
thesis.degree.nameMaster of Science in Computer Science
dc.type.materialtext
dc.creator.orcid0000-0003-2399-3212


Files in this item

Thumbnail


This item appears in the following Collection(s)

Show simple item record