Malware Detection based on Dependency Graph using Hybrid Genetic Algorithm
Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
science projects buddy
Active In SP
**

Posts: 278
Joined: Dec 2010
#1
28-12-2010, 11:41 PM


Malware Detection based on Dependency Graph using Hybrid Genetic Algorithm
B.Tech Seminar report
by
Jishnu V
Department of Computer Science And Engineering
Government Engineering College, Thrissur
December 2010


.pdf   Malware Detection based on Dependency Graph using hybrid genetic algorithm.pdf (Size: 356.5 KB / Downloads: 118)

Abstract
Computer malwares are becoming a serious threat to our data and information stored
in our computers. Among them, scripted malwares are gaining popularity since script-
ing is supported by a wide range of programs. So their detection and prevention is very
important. Most malware detection tools follow signature based detection mechanism.
But by the introduction of polymorphic variants of malwares, signature based detec-
tion has become inecient. This paper proposes a mechanism based on dependency
graphs for detecting script malwares. All malwares are represented by dependency
graphs and the detection is done by nding the maximum subgraph isomorphism with
the dependency graph of the target le. Since the problem of nding maxumum sub-
graph isomorphism is a NP hard problem, a genetic algorithm is more appropriate.
A heuristic approach is also presented to improve accuracy and reduce computational
cost of our genetic algorithm.

Chapter 1
Introduction

Malicious softwares or malwares are a broad class of softwares that are threats to
computer systems. They damages the computer systems, destroys or steals data, or
allows unauthorized access. According to thier behaviour malwares can be grouped
as viruses, spywares, adwares or trojan horses.
Scripted malwares are those that written in script languages like VBscript,
javascript etc.. These are spread in the form of sources embedded in emails or docu-
ments.
Signature based detection is the most common method followed for malware
detection. The malware detection tools have the siganture of most malwares in their
database. Signature can be considered to be a piece of code that uniquely identi es
that malware. The suspicious le is searched for a known signature. If the signature
matches with one in the database the le is declared as malware, else benign.
Malware polymorphism is the main threat to the signature based detection
technique. But it only changes the appearance of the malware. The dependencies
among statements will be still valid. The structure of the dependency graph of the
code will remain same even after alteration of statements. So our problem reduces to
nding the maximum subgraph isomorphism between the graphs. A genetic algorithm
with heuristics is used since nding maximum subgraph isomorphism is a NP hard
problem.

Chapter 2
Malware Polymorphism

Many techniques have evolved over time to avoid detection of anti-virus softwares.
The most prominent among them is malware polymorphism. This method is the main
threat to the signature based detection.
Polymorphic viruses confuse the virus detectors by changing their appearance.
Even if they change their appearance, their function will not change. The algorithm
of the original code remains intact. Commonly, 7 well-known techniques are used for
creating polymorphic variants. Even with these 7 techniques only, it is possible to
create a large number of variants of a single virus. Some even have a mutation engine
which creates a random variant each time it infects a new program.
2.1 7 well-known Polymorphic Techniques
The di erent polymorphic variants of the code shown in Figure 2.1(a) are shown
in Figure 2.1(b)-2.1(h). The di erent techniques are described below:
2.1.1 Variable Renaming
Identi er names are changed by keeping the correctness of the program. It is the
weakest form of polymorphism.
Use Search at http://topicideas.net/search.php wisely To Get Information About Project Topic and Seminar ideas with report/source code along pdf and ppt presenaion
Reply

Important Note..!

If you are not satisfied with above reply ,..Please

ASK HERE

So that we will collect data for you and will made reply to the request....OR try below "QUICK REPLY" box to add a reply to this page

Quick Reply
Message
Type your reply to this message here.


Image Verification
Please enter the text contained within the image into the text box below it. This process is used to prevent automated spam bots.
Image Verification
(case insensitive)

Possibly Related Threads...
Thread Author Replies Views Last Post
  DETECTION OF WORMHOLE ATTACK IN MANET seminar ideas 5 1,399 26-08-2015, 12:37 AM
Last Post: Leenas
  Cut Detection in Wireless Sensor Networks pdf project girl 2 1,272 16-07-2015, 09:21 PM
Last Post: Guest
  analysis on credit card fraud detection methods ppt jaseelati 0 154 22-01-2015, 02:45 PM
Last Post: jaseelati
  credit card fraud detection using hidden markov model project download jaseelati 0 295 10-01-2015, 01:34 PM
Last Post: jaseelati
  A Character Segmentation Algorithm for Printed Kannada Text Document uploader 1 1,508 10-01-2015, 12:52 PM
Last Post: zcfqmbrtb
  analysis on credit card fraud detection methods ppt jaseelati 0 148 09-01-2015, 02:41 PM
Last Post: jaseelati
  credit card fraud detection ppt jaseelati 0 196 27-12-2014, 01:11 PM
Last Post: jaseelati
  3D Steganography Algorithm project report helper 8 3,519 01-09-2014, 11:07 AM
Last Post: computer science crazy
Lightbulb Fraud detection system for card transactions ffffff123456 0 395 26-04-2014, 05:19 AM
Last Post: ffffff123456
  Intrusion Detection: An Energy Efficient Approach in Heterogeneous WSN pdf study tips 1 948 09-02-2014, 05:40 PM
Last Post: Guest