Skip to Main content Skip to Navigation
New interface
Conference papers

JavaScript Malware Detection Using Locality Sensitive Hashing

Abstract : In this paper, we explore the idea of using locality sensitive hashes as input features to a feed-forward neural network with the goal of detecting JavaScript malware through static analysis. An experiment is conducted using a dataset containing 1.5M evenly distributed benign and malicious samples provided by the anti-malware company Cyren. Four different locality sensitive hashing algorithms are tested and evaluated: Nilsimsa, ssdeep, TLSH, and SDHASH. The results show a high prediction accuracy, as well as low false positive and negative rates. These results show that LSH based neural networks are a competitive option against other state-of-the-art JavaScript malware classification solutions.
Document type :
Conference papers
Complete list of metadata

https://hal.inria.fr/hal-03440842
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Monday, November 22, 2021 - 3:33:41 PM
Last modification on : Monday, November 22, 2021 - 4:37:40 PM
Long-term archiving on: : Wednesday, February 23, 2022 - 7:59:23 PM

File

 Restricted access
To satisfy the distribution rights of the publisher, the document is embargoed until : 2023-01-01

Please log in to resquest access to the document

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Collections

Citation

Stefan Carl Peiser, Ludwig Friborg, Riccardo Scandariato. JavaScript Malware Detection Using Locality Sensitive Hashing. 35th IFIP International Conference on ICT Systems Security and Privacy Protection (SEC), Sep 2020, Maribor, Slovenia. pp.143-154, ⟨10.1007/978-3-030-58201-2_10⟩. ⟨hal-03440842⟩

Share

Metrics

Record views

19