{"title":"基于lstm的API调用信息的勒索软件检测","authors":"Kohei Tsunewaki, Tomotaka Kimura, Jun Cheng","doi":"10.1109/ICCE-Taiwan55306.2022.9869122","DOIUrl":null,"url":null,"abstract":"In this paper, we propose a ransomware detection method based on API IDs and call intervals. In the proposed method, to detect ransomware, when each API call occurs, we input both the API ID and the call interval from the previous call into an LSTM (Long Short Term Memory). By inputting the API IDs and call intervals into LSTM, we can learn the characteristics of the time series change of API calls in the ransomware. Through the experiments using an original dataset, we demonstrated that the accuracy of our proposed method was high and the characteristic learning of the call interval was useful for detecting ransomware.","PeriodicalId":164671,"journal":{"name":"2022 IEEE International Conference on Consumer Electronics - Taiwan","volume":"43 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-07-06","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"LSTM-Based Ransomware Detection Using API Call Information\",\"authors\":\"Kohei Tsunewaki, Tomotaka Kimura, Jun Cheng\",\"doi\":\"10.1109/ICCE-Taiwan55306.2022.9869122\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"In this paper, we propose a ransomware detection method based on API IDs and call intervals. In the proposed method, to detect ransomware, when each API call occurs, we input both the API ID and the call interval from the previous call into an LSTM (Long Short Term Memory). By inputting the API IDs and call intervals into LSTM, we can learn the characteristics of the time series change of API calls in the ransomware. Through the experiments using an original dataset, we demonstrated that the accuracy of our proposed method was high and the characteristic learning of the call interval was useful for detecting ransomware.\",\"PeriodicalId\":164671,\"journal\":{\"name\":\"2022 IEEE International Conference on Consumer Electronics - Taiwan\",\"volume\":\"43 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2022-07-06\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2022 IEEE International Conference on Consumer Electronics - Taiwan\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICCE-Taiwan55306.2022.9869122\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2022 IEEE International Conference on Consumer Electronics - Taiwan","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICCE-Taiwan55306.2022.9869122","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
LSTM-Based Ransomware Detection Using API Call Information
In this paper, we propose a ransomware detection method based on API IDs and call intervals. In the proposed method, to detect ransomware, when each API call occurs, we input both the API ID and the call interval from the previous call into an LSTM (Long Short Term Memory). By inputting the API IDs and call intervals into LSTM, we can learn the characteristics of the time series change of API calls in the ransomware. Through the experiments using an original dataset, we demonstrated that the accuracy of our proposed method was high and the characteristic learning of the call interval was useful for detecting ransomware.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
