Abstract—Malware is a sequence of instructions that has the potential to harm any computer system or computer network. Thus detecting malware especially new ones is a critical topic in today’s software security profession. Traditional signature based detection performs well against known malicious programs but can’t deal with new ones where signatures are not available. Furthermore, this approach is generally regarded as ineffective against attacks like code polymorphism and metamorphism used by malware writers to obfuscate their code. To overcome this problem new techniques have been developed using data mining and machine learning. In this paper we present a new framework to detect new malicious programs, it’s based on N-grams and an improved
…show more content…
The history of malware began with Computer Virus, a term first introduced by Cohen [19]. Malware can be defined according to McGraw and Morisett [16] as any code added, changed, or removed from a software system to intentionally cause harm or subvert the system’s intended function. Other definitions was proposed by commercial anti-malware companies, which describe malware as software designed to delete, block, modify or copy data, or disrupt the performance of computers or computer networks. Based on their particular actions, malware can be categorized into groups and subgroups that can …show more content…
Rootkits are extremely difficult to detect and eradicate since they are typically installed into low level system resources. Because of this, Rootkits often go undetected by conventional anti-virus software.
Many factors favor the spread of malware such as the growth of Internet, the advent of social networks, the vulgarization of smart devices, the increasing use of storage media, etc. Malware causes many damages to computer and networks, according to [23] over 390,000 new malicious programs appear every day. Moreover a recent threat report published [12], states that the release rate of malicious code and other unwanted programs may be exceeding that of legitimate software
The history of malware began with Computer Virus, a term first introduced by Cohen [19]. Malware can be defined according to McGraw and Morisett [16] as any code added, changed, or removed from a software system to intentionally cause harm or subvert the system’s intended function. Other definitions was proposed by commercial anti-malware companies, which describe malware as software designed to delete, block, modify or copy data, or disrupt the performance of computers or computer networks. Based on their particular actions, malware can be categorized into groups and subgroups that can …show more content…
Rootkits are extremely difficult to detect and eradicate since they are typically installed into low level system resources. Because of this, Rootkits often go undetected by conventional anti-virus software.
Many factors favor the spread of malware such as the growth of Internet, the advent of social networks, the vulgarization of smart devices, the increasing use of storage media, etc. Malware causes many damages to computer and networks, according to [23] over 390,000 new malicious programs appear every day. Moreover a recent threat report published [12], states that the release rate of malicious code and other unwanted programs may be exceeding that of legitimate software