{"id":"https://openalex.org/W3162845755","doi":"https://doi.org/10.1109/access.2021.3077295","title":"A Novel Method for Detecting Future Generations of Targeted and Metamorphic Malware Based on Genetic Algorithm","display_name":"A Novel Method for Detecting Future Generations of Targeted and Metamorphic Malware Based on Genetic Algorithm","publication_year":2021,"publication_date":"2021-01-01","ids":{"openalex":"https://openalex.org/W3162845755","doi":"https://doi.org/10.1109/access.2021.3077295","mag":"3162845755"},"language":"en","primary_location":{"id":"doi:10.1109/access.2021.3077295","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2021.3077295","pdf_url":null,"source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://doi.org/10.1109/access.2021.3077295","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5083420500","display_name":"Danial Javaheri","orcid":"https://orcid.org/0000-0002-7275-2370"},"institutions":[{"id":"https://openalex.org/I155419210","display_name":"Islamic Azad University, Science and Research Branch","ror":"https://ror.org/03187yj51","country_code":"IR","type":"education","lineage":["https://openalex.org/I110525433","https://openalex.org/I155419210"]}],"countries":["IR"],"is_corresponding":false,"raw_author_name":"Danial Javaheri","raw_affiliation_strings":["Department of Computer Engineering, Science and Research Branch, Islamic Azad University, Tehran, Iran"],"raw_orcid":"https://orcid.org/0000-0002-7275-2370","affiliations":[{"raw_affiliation_string":"Department of Computer Engineering, Science and Research Branch, Islamic Azad University, Tehran, Iran","institution_ids":["https://openalex.org/I155419210"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5078927496","display_name":"Pooia Lalbakhsh","orcid":"https://orcid.org/0000-0001-9267-2610"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Pooia Lalbakhsh","raw_affiliation_strings":["Euler Capital, Drysdale, VIC, Australia"],"raw_orcid":"https://orcid.org/0000-0001-9267-2610","affiliations":[{"raw_affiliation_string":"Euler Capital, Drysdale, VIC, Australia","institution_ids":[]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5101415968","display_name":"Mehdi Hosseinzadeh","orcid":"https://orcid.org/0000-0003-3040-1801"},"institutions":[{"id":"https://openalex.org/I170238339","display_name":"Duy Tan University","ror":"https://ror.org/05ezss144","country_code":"VN","type":"education","lineage":["https://openalex.org/I170238339"]},{"id":"https://openalex.org/I4210118815","display_name":"University of Human Development","ror":"https://ror.org/02jz38b76","country_code":"IQ","type":"education","lineage":["https://openalex.org/I4210118815"]}],"countries":["IQ","VN"],"is_corresponding":false,"raw_author_name":"Mehdi Hosseinzadeh","raw_affiliation_strings":["Institute of Research and Development, Duy Tan University, Da Nang, Vietnam","University of Human Development, Al Sulaimaniyah, Iraq"],"raw_orcid":"https://orcid.org/0000-0003-3040-1801","affiliations":[{"raw_affiliation_string":"Institute of Research and Development, Duy Tan University, Da Nang, Vietnam","institution_ids":["https://openalex.org/I170238339"]},{"raw_affiliation_string":"University of Human Development, Al Sulaimaniyah, Iraq","institution_ids":["https://openalex.org/I4210118815"]}]}],"institutions":[],"countries_distinct_count":3,"institutions_distinct_count":3,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":{"value":1850,"currency":"USD","value_usd":1850},"apc_paid":{"value":1850,"currency":"USD","value_usd":1850},"fwci":4.9414,"has_fulltext":false,"cited_by_count":38,"citation_normalized_percentile":{"value":0.96103635,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":95,"max":99},"biblio":{"volume":"9","issue":null,"first_page":"69951","last_page":"69970"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9904999732971191,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9898999929428101,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8513342142105103},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.8074984550476074},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.5900163054466248},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.5476197600364685},{"id":"https://openalex.org/keywords/c4.5-algorithm","display_name":"C4.5 algorithm","score":0.454860657453537},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.45456036925315857},{"id":"https://openalex.org/keywords/obfuscation","display_name":"Obfuscation","score":0.44602149724960327},{"id":"https://openalex.org/keywords/genetic-algorithm","display_name":"Genetic algorithm","score":0.4379500448703766},{"id":"https://openalex.org/keywords/botnet","display_name":"Botnet","score":0.4295772910118103},{"id":"https://openalex.org/keywords/system-call","display_name":"System call","score":0.4182102680206299},{"id":"https://openalex.org/keywords/process","display_name":"Process (computing)","score":0.41225191950798035},{"id":"https://openalex.org/keywords/algorithm","display_name":"Algorithm","score":0.3574464023113251},{"id":"https://openalex.org/keywords/naive-bayes-classifier","display_name":"Naive Bayes classifier","score":0.29101449251174927},{"id":"https://openalex.org/keywords/support-vector-machine","display_name":"Support vector machine","score":0.2882154583930969},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.24837911128997803},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.13585561513900757},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.10508319735527039}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8513342142105103},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.8074984550476074},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.5900163054466248},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.5476197600364685},{"id":"https://openalex.org/C52003472","wikidata":"https://www.wikidata.org/wiki/Q1022655","display_name":"C4.5 algorithm","level":4,"score":0.454860657453537},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.45456036925315857},{"id":"https://openalex.org/C40305131","wikidata":"https://www.wikidata.org/wiki/Q2616305","display_name":"Obfuscation","level":2,"score":0.44602149724960327},{"id":"https://openalex.org/C8880873","wikidata":"https://www.wikidata.org/wiki/Q187787","display_name":"Genetic algorithm","level":2,"score":0.4379500448703766},{"id":"https://openalex.org/C22735295","wikidata":"https://www.wikidata.org/wiki/Q317671","display_name":"Botnet","level":3,"score":0.4295772910118103},{"id":"https://openalex.org/C2778579508","wikidata":"https://www.wikidata.org/wiki/Q722192","display_name":"System call","level":2,"score":0.4182102680206299},{"id":"https://openalex.org/C98045186","wikidata":"https://www.wikidata.org/wiki/Q205663","display_name":"Process (computing)","level":2,"score":0.41225191950798035},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.3574464023113251},{"id":"https://openalex.org/C52001869","wikidata":"https://www.wikidata.org/wiki/Q812530","display_name":"Naive Bayes classifier","level":3,"score":0.29101449251174927},{"id":"https://openalex.org/C12267149","wikidata":"https://www.wikidata.org/wiki/Q282453","display_name":"Support vector machine","level":2,"score":0.2882154583930969},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.24837911128997803},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.13585561513900757},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.10508319735527039}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/access.2021.3077295","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2021.3077295","pdf_url":null,"source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},{"id":"pmh:oai:doaj.org/article:dfc4dfe1fb79401ea122d39e6a03afd4","is_oa":true,"landing_page_url":"https://doaj.org/article/dfc4dfe1fb79401ea122d39e6a03afd4","pdf_url":null,"source":{"id":"https://openalex.org/S4306401280","display_name":"DOAJ (DOAJ: Directory of Open Access Journals)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-sa","license_id":"https://openalex.org/licenses/cc-by-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IEEE Access, Vol 9, Pp 69951-69970 (2021)","raw_type":"article"}],"best_oa_location":{"id":"doi:10.1109/access.2021.3077295","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2021.3077295","pdf_url":null,"source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":50,"referenced_works":["https://openalex.org/W119280561","https://openalex.org/W132470307","https://openalex.org/W630314164","https://openalex.org/W1490425716","https://openalex.org/W1981221397","https://openalex.org/W1984233424","https://openalex.org/W2024170198","https://openalex.org/W2079140046","https://openalex.org/W2092375860","https://openalex.org/W2110978214","https://openalex.org/W2119896695","https://openalex.org/W2157734500","https://openalex.org/W2390760470","https://openalex.org/W2513887219","https://openalex.org/W2602229646","https://openalex.org/W2712617220","https://openalex.org/W2732916693","https://openalex.org/W2748761731","https://openalex.org/W2765653036","https://openalex.org/W2765921396","https://openalex.org/W2775008189","https://openalex.org/W2782999659","https://openalex.org/W2795033129","https://openalex.org/W2805511146","https://openalex.org/W2876466190","https://openalex.org/W2889474744","https://openalex.org/W2900986841","https://openalex.org/W2904250082","https://openalex.org/W2904792378","https://openalex.org/W2910122460","https://openalex.org/W2913409763","https://openalex.org/W2931858311","https://openalex.org/W2932977083","https://openalex.org/W2950754826","https://openalex.org/W2951146859","https://openalex.org/W2962695400","https://openalex.org/W2965177634","https://openalex.org/W2996806689","https://openalex.org/W3002543587","https://openalex.org/W3015605314","https://openalex.org/W3017881119","https://openalex.org/W3097711322","https://openalex.org/W3100268192","https://openalex.org/W3113361848","https://openalex.org/W3117245247","https://openalex.org/W4232545478","https://openalex.org/W4241084861","https://openalex.org/W4249471531","https://openalex.org/W4249545506","https://openalex.org/W6787594048"],"related_works":["https://openalex.org/W2929621094","https://openalex.org/W1996006176","https://openalex.org/W2620652965","https://openalex.org/W2024170198","https://openalex.org/W4285325964","https://openalex.org/W4296272594","https://openalex.org/W2900526031","https://openalex.org/W1599449514","https://openalex.org/W2289039654","https://openalex.org/W2128507946"],"abstract_inverted_index":{"This":[0,172],"paper":[1],"presents":[2],"a":[3,15,60,73,111,168,264],"novel":[4],"solution":[5],"for":[6,23,34,221,271],"detecting":[7],"rare":[8,256],"and":[9,13,79,110,124,135,164,182,188,203,257],"mutating":[10],"malware":[11,35,54,81,119,178,211,214],"programs":[12],"provides":[14],"strategy":[16,46],"to":[17,98,114,120,157,235,253],"address":[18],"the":[19,144,147,159,207,222,233,237,272],"scarcity":[20],"of":[21,27,51,62,118,137,146,162,177,209,225,239],"datasets":[22],"modeling":[24,202],"these":[25],"types":[26],"malware.":[28,259],"To":[29],"provide":[30],"sufficient":[31],"training":[32],"data":[33],"behavioral":[36,90,210],"modeling,":[37],"genetic":[38],"algorithms":[39],"are":[40,82,92,140,179,199],"used":[41,220],"together":[42],"with":[43,167],"an":[44,85,107],"optimization":[45],"that":[47,174],"selectively":[48],"creates":[49],"generations":[50,176],"mutated":[52],"elite":[53,86],"samples.":[55],"In":[56],"our":[57,195,226,240],"unique":[58],"method,":[59],"sequence":[61],"system":[63,105,126,149],"API":[64],"calls":[65],"is":[66,131],"extracted":[67,96],"using":[68,100],"tracker":[69],"filter":[70],"drivers":[71],"in":[72,194,206,232,248,267],"sandbox":[74],"environment.":[75],"The":[76,89,128,243,260],"most":[77],"obfuscated":[78],"metamorphic":[80,258],"chosen":[83],"by":[84,94],"selection":[87],"method.":[88],"chromosomes":[91],"formed":[93],"mapping":[95],"APIs":[97],"genes":[99],"linear":[101,169],"regression.":[102],"Our":[103],"analysis":[104],"includes":[106],"Internet":[108],"simulator":[109],"human":[112],"emulator":[113],"deceive":[115],"intelligent":[116],"classes":[117],"successfully":[121],"execute":[122],"themselves":[123],"prevent":[125],"halting.":[127],"evolution":[129],"process":[130],"performed":[132],"through":[133],"crossover":[134],"permutation":[136],"genes,":[138],"which":[139],"encoded":[141],"based":[142],"on":[143],"addresses":[145],"kernel-level":[148],"functions.":[150],"An":[151],"objective":[152],"function":[153],"has":[154],"been":[155],"defined":[156],"optimize":[158],"vital":[160],"indicators":[161],"malignancy":[163],"tracking":[165],"rate":[166,270],"time":[170],"complexity.":[171],"guarantees":[173],"new":[175],"more":[180],"destructive":[181],"stealthy":[183],"than":[184],"their":[185],"parents.":[186],"J48":[187],"deep":[189],"neural":[190],"networks":[191],"were":[192,219,230],"employed":[193],"experiments":[196,234],"as":[197],"they":[198],"two":[200],"popular":[201],"classification":[204],"strategies":[205],"area":[208],"detection.":[212],"Real-world":[213],"samples":[215],"from":[216],"valid":[217],"references":[218],"performance":[223,238],"evaluation":[224],"approach.":[227],"Comprehensive":[228],"scenarios":[229],"involved":[231],"evaluate":[236],"proposed":[241,273],"strategy.":[242],"results":[244,261],"demonstrate":[245],"significant":[246],"improvement":[247],"detection":[249],"accuracy":[250],"-":[251],"up":[252],"5%":[254],"considering":[255],"also":[262],"demonstrated":[263],"considerable":[265],"enhancement":[266],"true":[268],"positive":[269],"deep-learning":[274],"algorithm.":[275]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":5},{"year":2024,"cited_by_count":6},{"year":2023,"cited_by_count":14},{"year":2022,"cited_by_count":12}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}