@inproceedings{91edad7d74734764bf5ec0a3384d272c,
title = "Generic black-box end-to-end attack against state of the art API call based malware classifiers",
abstract = "In this paper, we present a black-box attack against API call based machine learning malware classifiers, focusing on generating adversarial sequences combining API calls and static features (e.g., printable strings) that will be misclassified by the classifier without affecting the malware functionality. We show that this attack is effective against many classifiers due to the transferability principle between RNN variants, feed forward DNNs, and traditional machine learning classifiers such as SVM. We also implement GADGET, a software framework to convert any malware binary to a binary undetected by malware classifiers, using the proposed attack, without access to the malware source code.",
keywords = "Adversarial attacks, Deep neural networks, Dynamic analysis, Malware classification, Transferability",
author = "Ishai Rosenberg and Asaf Shabtai and Lior Rokach and Yuval Elovici",
note = "Publisher Copyright: {\textcopyright} Springer Nature Switzerland AG 2018.; 21st International Symposium on Research in Attacks, Intrusions and Defenses, RAID 2018 ; Conference date: 10-09-2018 Through 12-09-2018",
year = "2018",
month = jan,
day = "1",
doi = "10.1007/978-3-030-00470-5_23",
language = "American English",
isbn = "9783030004699",
series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
publisher = "Springer Verlag",
pages = "490--510",
editor = "Michael Bailey and Sotiris Ioannidis and Manolis Stamatogiannakis and Thorsten Holz",
booktitle = "Research in Attacks, Intrusions, and Defenses - 21st International Symposium, RAID 2018, Proceedings",
address = "Germany",
}