{"title":"使用机器学习的勒索软件分类","authors":"N. Majd, Torsha Mazumdar","doi":"10.1109/ICCCN58024.2023.10230176","DOIUrl":null,"url":null,"abstract":"The rise of ransomware has emerged as a pressing concern for the technology industry, demanding prompt action to prevent monetary and ethical exploitation. Therefore, an accurate approach is imperative to identify and thwart such attacks effectively. Most of the prior ransomware detection techniques either are signature-based, which are inefficient to identify new ransomware, or utilize a dynamic analysis, which are complicated and computationally expensive. This paper proposes a feature selection-based framework along with different machine learning and deep learning algorithms that can effectively detect ransomware based on features extracted from the files. We performed various experiments beginning with filter, wrapper and embedded methods of feature selection and then applied Decision Tree (DT), Random Forest (RF), Naïve Bayes (NB), Logistic Regression (LR), Support Vector Machine (SVM), k-Nearest Neighbor (KNN), Extreme Gradient Boost (XGB) and Multi-layer Perceptron (MLP) on a ransomware dataset that contains the features and label from files. The experimental results demonstrate that RF and MLP classifiers with ANOVA filter method of feature selection outperform other methods in terms of accuracy, precision, and recall.","PeriodicalId":132030,"journal":{"name":"2023 32nd International Conference on Computer Communications and Networks (ICCCN)","volume":"21 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2023-07-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Ransomware Classification Using Machine Learning\",\"authors\":\"N. Majd, Torsha Mazumdar\",\"doi\":\"10.1109/ICCCN58024.2023.10230176\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The rise of ransomware has emerged as a pressing concern for the technology industry, demanding prompt action to prevent monetary and ethical exploitation. Therefore, an accurate approach is imperative to identify and thwart such attacks effectively. Most of the prior ransomware detection techniques either are signature-based, which are inefficient to identify new ransomware, or utilize a dynamic analysis, which are complicated and computationally expensive. This paper proposes a feature selection-based framework along with different machine learning and deep learning algorithms that can effectively detect ransomware based on features extracted from the files. We performed various experiments beginning with filter, wrapper and embedded methods of feature selection and then applied Decision Tree (DT), Random Forest (RF), Naïve Bayes (NB), Logistic Regression (LR), Support Vector Machine (SVM), k-Nearest Neighbor (KNN), Extreme Gradient Boost (XGB) and Multi-layer Perceptron (MLP) on a ransomware dataset that contains the features and label from files. The experimental results demonstrate that RF and MLP classifiers with ANOVA filter method of feature selection outperform other methods in terms of accuracy, precision, and recall.\",\"PeriodicalId\":132030,\"journal\":{\"name\":\"2023 32nd International Conference on Computer Communications and Networks (ICCCN)\",\"volume\":\"21 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2023-07-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2023 32nd International Conference on Computer Communications and Networks (ICCCN)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICCCN58024.2023.10230176\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2023 32nd International Conference on Computer Communications and Networks (ICCCN)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICCCN58024.2023.10230176","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
The rise of ransomware has emerged as a pressing concern for the technology industry, demanding prompt action to prevent monetary and ethical exploitation. Therefore, an accurate approach is imperative to identify and thwart such attacks effectively. Most of the prior ransomware detection techniques either are signature-based, which are inefficient to identify new ransomware, or utilize a dynamic analysis, which are complicated and computationally expensive. This paper proposes a feature selection-based framework along with different machine learning and deep learning algorithms that can effectively detect ransomware based on features extracted from the files. We performed various experiments beginning with filter, wrapper and embedded methods of feature selection and then applied Decision Tree (DT), Random Forest (RF), Naïve Bayes (NB), Logistic Regression (LR), Support Vector Machine (SVM), k-Nearest Neighbor (KNN), Extreme Gradient Boost (XGB) and Multi-layer Perceptron (MLP) on a ransomware dataset that contains the features and label from files. The experimental results demonstrate that RF and MLP classifiers with ANOVA filter method of feature selection outperform other methods in terms of accuracy, precision, and recall.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
