Analysis of sequential feature engineering and statistical features for malware behavior discovery

None, None

Analysis of sequential feature engineering and statistical features for malware behavior discovery

Bachelor Thesis (2021)

Author(s)

M.P. Epifanov (TU Delft - Electrical Engineering, Mathematics and Computer Science)

Contributor(s)

Sicco Verwer – Mentor (TU Delft - Cyber Security)

Azqa Nadeem – Mentor (TU Delft - Cyber Security)

M.A. Migut – Coach (TU Delft - Computer Science & Engineering-Teaching Team)

Faculty

Electrical Engineering, Mathematics and Computer Science

Copyright

Malpaca Network security Unsupervised Machine Learning

To reference this document use:

https://resolver.tudelft.nl/uuid:d442df44-14bb-47e1-8dd7-89e281ae39a9

More Info

expand_more

Publication Year

2021

Language

English

Copyright

Graduation Date

01-07-2021

Awarding Institution

Delft University of Technology

Project

CSE3000 Research Project

Programme

Computer Science and Engineering

Faculty

Electrical Engineering, Mathematics and Computer Science

Reuse Rights

Other than for strictly personal use, it is not permitted to download, forward or distribute the text or part of it, without the consent of the author(s) and/or copyright holder(s), unless the work is under an open content license such as Creative Commons.

Abstract

Malware Packet-sequence Clustering and Analysis (MalPaCA) is a unsupervised clustering application for malicious network behavior, it currently uses solely sequential features to characterize network behavior. In this paper an extensive comparison between those features and statistical features is performed. During the comparison a better clustering performance achievable with statistical features for longer connection sequences is shown and advice on which features can be added to MalPaCA.

Files

ResearchPaper_MikhailEpifanov_... (pdf)

(pdf | 1.25 Mb)

License info not available