Show simple item record

dc.contributor.authorKipsang, Jacob
dc.date.accessioned2022-04-14T13:02:20Z
dc.date.available2022-04-14T13:02:20Z
dc.date.issued2021-11-23
dc.identifier.citationKipsang, J. (2022). Hybridizing machine learning and static malware detection using the PE header. Masters. Masters thesis. Makerere University.en_US
dc.identifier.urihttp://hdl.handle.net/10570/10125
dc.descriptionProject report submitted to the School of Computing and Informatics Technology in partial fulfillment of the requirements for the award of Master of Science in Computer Science of Makerere Universityen_US
dc.description.abstractCyber crime cases currently involve demanding payment after infecting a victimized organization’s computers with ransomware or impairing operations through a distributed denial-of-service attack which significantly impacts the confidentiality, integrity and availability of data. Recent researchers show that hybridizing techniques can detect malware or benign effectively. Our research provides an experimental study on hybridizing machine learning and signature-based techniques to detect malware based on the PE header information. The dataset was sliced randomly into training 80% and testing 20% sets. The classifiers we used were Random Forest, Gradient Boosting and Ada boost to train and test the dataset. We evaluated our models using the evaluation metrics. Results showed overall achieved accuracy is high for the cleaned dataset ranging from 99.70% to 99.77%, for the uncleaned dataset range from 93.83% to 96.83%. The VirusTotal file report API had a high Average detection rate for unclean datasets ranging from 0.00% to 12.57% and a low average detection rate of 0.00% on a cleaned dataset. Random Forest emerged as the best classifier for both cleaned and uncleaned datasets with an average detection rate for static analysis of 0.00%.en_US
dc.language.isoenen_US
dc.publisherMakerere Universityen_US
dc.subjectHybridizing, Machine Learning, Static Malware, Detection, PE Headeren_US
dc.subjectMachine learningen_US
dc.subjectStatic malware detectionen_US
dc.subjectPE Headeren_US
dc.titleHybridizing machine learning and static malware detection using the PE headeren_US
dc.typeThesisen_US


Files in this item

Thumbnail

This item appears in the following Collection(s)

Show simple item record