High Impact Factor : 4.396 icon | Submit Manuscript Online icon |

Metamorphic Malware Detection using Heuristic Signature

Author(s):

Milan Rajpara , GTU PG School; Girish Khilari, CDAC

Keywords:

Malware Signature; Heuristic Detection; Bioinformatics; Multiple Signature Alignment.

Abstract

Present day malicious programs are comes with dynamic packing capability which helps them to evade detection from traditional anti-malware scanner who works on OpCode pattern matching technique. The metamorphic engine resides in malware, changes the structure of malware, which changes OpCode hence the previous signature will not work for the new variant. Here we are using a bioinformatics technique of signature alignment, to generate a heuristic signature, based on the previous database of malware. We made a signature set of malicious (single MSA signature) and benign file (group signature) and computed a threshold to detect malwares. Proposed method calculates to predict the signatures, of the metamorphic malware variants. This method showed a good result with high true positive and low false positive ratio.

Other Details

Paper ID: IJSRDV2I3292
Published in: Volume : 2, Issue : 3
Publication Date: 01/06/2014
Page(s): 1420-1422

Article Preview

Download Article