{"id":"https://openalex.org/W4296339055","doi":"https://doi.org/10.1109/access.2022.3207782","title":"MalView: Interactive Visual Analytics for Comprehending Malware Behavior","display_name":"MalView: Interactive Visual Analytics for Comprehending Malware Behavior","publication_year":2022,"publication_date":"2022-01-01","ids":{"openalex":"https://openalex.org/W4296339055","doi":"https://doi.org/10.1109/access.2022.3207782"},"language":"en","primary_location":{"id":"doi:10.1109/access.2022.3207782","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2022.3207782","pdf_url":"https://ieeexplore.ieee.org/ielx7/6287639/6514899/09895250.pdf","source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://ieeexplore.ieee.org/ielx7/6287639/6514899/09895250.pdf","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5031483176","display_name":"Huyen N. Nguyen","orcid":"https://orcid.org/0000-0001-6554-2327"},"institutions":[{"id":"https://openalex.org/I12315562","display_name":"Texas Tech University","ror":"https://ror.org/0405mnx93","country_code":"US","type":"education","lineage":["https://openalex.org/I12315562"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Huyen N. Nguyen","raw_affiliation_strings":["Department of Computer Science, Texas Tech University, Lubbock, TX, USA"],"raw_orcid":"https://orcid.org/0000-0001-6554-2327","affiliations":[{"raw_affiliation_string":"Department of Computer Science, Texas Tech University, Lubbock, TX, USA","institution_ids":["https://openalex.org/I12315562"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5083906665","display_name":"Faranak Abri","orcid":"https://orcid.org/0000-0003-3028-094X"},"institutions":[{"id":"https://openalex.org/I51504820","display_name":"San Jose State University","ror":"https://ror.org/04qyvz380","country_code":"US","type":"education","lineage":["https://openalex.org/I51504820"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Faranak Abri","raw_affiliation_strings":["Department of Computer Science, San Jose State University, San Jose, CA, USA"],"raw_orcid":"https://orcid.org/0000-0003-3028-094X","affiliations":[{"raw_affiliation_string":"Department of Computer Science, San Jose State University, San Jose, CA, USA","institution_ids":["https://openalex.org/I51504820"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5063674569","display_name":"Vung Pham","orcid":"https://orcid.org/0000-0001-9702-8904"},"institutions":[{"id":"https://openalex.org/I191429286","display_name":"Sam Houston State University","ror":"https://ror.org/00yh3cz06","country_code":"US","type":"education","lineage":["https://openalex.org/I191429286"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Vung Pham","raw_affiliation_strings":["Department of Computer Science, Sam Houston State University, Huntsville, TX, USA"],"raw_orcid":"https://orcid.org/0000-0001-9702-8904","affiliations":[{"raw_affiliation_string":"Department of Computer Science, Sam Houston State University, Huntsville, TX, USA","institution_ids":["https://openalex.org/I191429286"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5052704497","display_name":"Moitrayee Chatterjee","orcid":"https://orcid.org/0000-0002-7236-6912"},"institutions":[{"id":"https://openalex.org/I89554219","display_name":"New Jersey City University","ror":"https://ror.org/0546wew42","country_code":"US","type":"education","lineage":["https://openalex.org/I89554219"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Moitrayee Chatterjee","raw_affiliation_strings":["Department of Computer Science, New Jersey City University, Jersey City, NJ, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Computer Science, New Jersey City University, Jersey City, NJ, USA","institution_ids":["https://openalex.org/I89554219"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5026464816","display_name":"Akbar Siami Namin","orcid":"https://orcid.org/0000-0002-1646-7495"},"institutions":[{"id":"https://openalex.org/I12315562","display_name":"Texas Tech University","ror":"https://ror.org/0405mnx93","country_code":"US","type":"education","lineage":["https://openalex.org/I12315562"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Akbar Siami Namin","raw_affiliation_strings":["Department of Computer Science, Texas Tech University, Lubbock, TX, USA"],"raw_orcid":"https://orcid.org/0000-0002-1646-7495","affiliations":[{"raw_affiliation_string":"Department of Computer Science, Texas Tech University, Lubbock, TX, USA","institution_ids":["https://openalex.org/I12315562"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5032280607","display_name":"Tommy Dang","orcid":"https://orcid.org/0000-0001-8322-0014"},"institutions":[{"id":"https://openalex.org/I12315562","display_name":"Texas Tech University","ror":"https://ror.org/0405mnx93","country_code":"US","type":"education","lineage":["https://openalex.org/I12315562"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Tommy Dang","raw_affiliation_strings":["Department of Computer Science, Texas Tech University, Lubbock, TX, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Computer Science, Texas Tech University, Lubbock, TX, USA","institution_ids":["https://openalex.org/I12315562"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":6,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":{"value":1850,"currency":"USD","value_usd":1850},"apc_paid":{"value":1850,"currency":"USD","value_usd":1850},"fwci":0.9139,"has_fulltext":true,"cited_by_count":11,"citation_normalized_percentile":{"value":0.75312511,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":99},"biblio":{"volume":"10","issue":null,"first_page":"99909","last_page":"99930"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10799","display_name":"Data Visualization and Analytics","score":0.9987999796867371,"subfield":{"id":"https://openalex.org/subfields/1707","display_name":"Computer Vision and Pattern Recognition"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10799","display_name":"Data Visualization and Analytics","score":0.9987999796867371,"subfield":{"id":"https://openalex.org/subfields/1707","display_name":"Computer Vision and Pattern Recognition"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9943000078201294,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9593999981880188,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/visual-analytics","display_name":"Visual analytics","score":0.8303731679916382},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.80292809009552},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.802532434463501},{"id":"https://openalex.org/keywords/interactive-visual-analysis","display_name":"Interactive visual analysis","score":0.6590557098388672},{"id":"https://openalex.org/keywords/analytics","display_name":"Analytics","score":0.6460457444190979},{"id":"https://openalex.org/keywords/human\u2013computer-interaction","display_name":"Human\u2013computer interaction","score":0.5294997692108154},{"id":"https://openalex.org/keywords/malware-analysis","display_name":"Malware analysis","score":0.4258013069629669},{"id":"https://openalex.org/keywords/visualization","display_name":"Visualization","score":0.4034865200519562},{"id":"https://openalex.org/keywords/data-science","display_name":"Data science","score":0.37917834520339966},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.34133481979370117},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.23210155963897705}],"concepts":[{"id":"https://openalex.org/C59732488","wikidata":"https://www.wikidata.org/wiki/Q2528440","display_name":"Visual analytics","level":3,"score":0.8303731679916382},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.80292809009552},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.802532434463501},{"id":"https://openalex.org/C99740376","wikidata":"https://www.wikidata.org/wiki/Q17092520","display_name":"Interactive visual analysis","level":4,"score":0.6590557098388672},{"id":"https://openalex.org/C79158427","wikidata":"https://www.wikidata.org/wiki/Q485396","display_name":"Analytics","level":2,"score":0.6460457444190979},{"id":"https://openalex.org/C107457646","wikidata":"https://www.wikidata.org/wiki/Q207434","display_name":"Human\u2013computer interaction","level":1,"score":0.5294997692108154},{"id":"https://openalex.org/C2779395397","wikidata":"https://www.wikidata.org/wiki/Q15731404","display_name":"Malware analysis","level":3,"score":0.4258013069629669},{"id":"https://openalex.org/C36464697","wikidata":"https://www.wikidata.org/wiki/Q451553","display_name":"Visualization","level":2,"score":0.4034865200519562},{"id":"https://openalex.org/C2522767166","wikidata":"https://www.wikidata.org/wiki/Q2374463","display_name":"Data science","level":1,"score":0.37917834520339966},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.34133481979370117},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.23210155963897705}],"mesh":[],"locations_count":3,"locations":[{"id":"doi:10.1109/access.2022.3207782","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2022.3207782","pdf_url":"https://ieeexplore.ieee.org/ielx7/6287639/6514899/09895250.pdf","source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},{"id":"pmh:oai:scholarworks.sjsu.edu:faculty_rsca-4083","is_oa":true,"landing_page_url":"https://scholarworks.sjsu.edu/faculty_rsca/3084","pdf_url":null,"source":{"id":"https://openalex.org/S4377196389","display_name":"San Jos\u00e9 State University ScholarWorks (San Jose State University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I51504820","host_organization_name":"San Jose State University","host_organization_lineage":["https://openalex.org/I51504820"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Faculty Research, Scholarly, and Creative Activity","raw_type":"text"},{"id":"pmh:oai:doaj.org/article:56bfcdd03f7c42a08886288cc95401fb","is_oa":false,"landing_page_url":"https://doaj.org/article/56bfcdd03f7c42a08886288cc95401fb","pdf_url":null,"source":{"id":"https://openalex.org/S4306401280","display_name":"DOAJ (DOAJ: Directory of Open Access Journals)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IEEE Access, Vol 10, Pp 99909-99930 (2022)","raw_type":"article"}],"best_oa_location":{"id":"doi:10.1109/access.2022.3207782","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2022.3207782","pdf_url":"https://ieeexplore.ieee.org/ielx7/6287639/6514899/09895250.pdf","source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G1538597884","display_name":null,"funder_award_id":"1821560","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"}],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"}],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4296339055.pdf","grobid_xml":"https://content.openalex.org/works/W4296339055.grobid-xml"},"referenced_works_count":56,"referenced_works":["https://openalex.org/W4081608","https://openalex.org/W67117737","https://openalex.org/W201444914","https://openalex.org/W601576626","https://openalex.org/W1550383259","https://openalex.org/W1964181417","https://openalex.org/W1964459432","https://openalex.org/W1967160434","https://openalex.org/W1977330409","https://openalex.org/W1999065800","https://openalex.org/W2012132268","https://openalex.org/W2012833704","https://openalex.org/W2013937193","https://openalex.org/W2029653641","https://openalex.org/W2035156256","https://openalex.org/W2043263066","https://openalex.org/W2043756236","https://openalex.org/W2048308859","https://openalex.org/W2056127986","https://openalex.org/W2070970642","https://openalex.org/W2087740020","https://openalex.org/W2092958664","https://openalex.org/W2102019495","https://openalex.org/W2105863808","https://openalex.org/W2114324672","https://openalex.org/W2130971075","https://openalex.org/W2135415614","https://openalex.org/W2140807364","https://openalex.org/W2162740570","https://openalex.org/W2265842831","https://openalex.org/W2322681480","https://openalex.org/W2538108907","https://openalex.org/W2545965848","https://openalex.org/W2567480004","https://openalex.org/W2583683552","https://openalex.org/W2764327709","https://openalex.org/W2768050722","https://openalex.org/W2787857787","https://openalex.org/W2799820586","https://openalex.org/W2840829458","https://openalex.org/W2911626912","https://openalex.org/W2916021615","https://openalex.org/W2948368484","https://openalex.org/W2986375760","https://openalex.org/W3005979676","https://openalex.org/W3007580316","https://openalex.org/W3008434317","https://openalex.org/W3008518285","https://openalex.org/W3039295546","https://openalex.org/W3048346961","https://openalex.org/W3184177314","https://openalex.org/W3184903642","https://openalex.org/W3209772967","https://openalex.org/W4237375617","https://openalex.org/W4256522398","https://openalex.org/W6688716199"],"related_works":["https://openalex.org/W2469507153","https://openalex.org/W2008790809","https://openalex.org/W2768892939","https://openalex.org/W4285507391","https://openalex.org/W3164408430","https://openalex.org/W2397240470","https://openalex.org/W2602767565","https://openalex.org/W170652726","https://openalex.org/W2883822334","https://openalex.org/W2134874482"],"abstract_inverted_index":{"Malicious":[0],"applications":[1],"are":[2,30,57,77,104],"usually":[3],"comprehended":[4],"through":[5,67,106],"two":[6,49],"major":[7],"techniques,":[8],"namely":[9],"static":[10,15,68,129],"and":[11,23,72,98,130,166,181,204,210,240],"dynamic":[12,46,107,131],"analyses.":[13],"Through":[14],"analysis,":[16,69],"a":[17,114,137],"given":[18,37,55],"malicious":[19,38,84,185],"program":[20],"is":[21],"parsed,":[22],"some":[24,244],"representative":[25],"artifacts":[26,125,169],"(e.g.,":[27],"control-flow":[28],"graphs)":[29],"produced":[31],"without":[32],"any":[33,82,199],"execution;":[34],"whereas,":[35],"the":[36,54,70,75,91,94,111,120,124,179,184,188,207,212,219,249],"application":[39],"needs":[40],"to":[41,173,243],"be":[42,136,171],"executed":[43],"when":[44],"conducting":[45],"analysis.":[47,108],"These":[48],"mainstream":[50],"techniques":[51,162],"for":[52,140,155],"analyzing":[53],"software":[56,103],"effective":[58],"in":[59,80,87,187,229],"detecting":[60,81],"certain":[61],"classes":[62],"of":[63,74,102,123,183,224],"malware.":[64,221],"More":[65],"specifically,":[66],"patterns":[71,101],"signature":[73,201],"malware":[76,141,156,193,250],"exposed,":[78],"helping":[79],"known":[83,118],"payload":[85,186],"hidden":[86],"or":[88,202,216],"injected":[89],"into":[90],"code.":[92],"On":[93],"other":[95,245],"hand,":[96],"behavioral":[97,167],"run-time":[99],"execution":[100],"explored":[105],"To":[109],"ease":[110],"analysis":[112,116,132,157,168,251],"process,":[113],"third":[115],"approach,":[117],"as":[119],"visual":[121],"representation":[122],"created":[126],"by":[127,158,197,218],"both":[128,164],"tools,":[133,247],"would":[134],"also":[135],"supplementary":[138],"asset":[139],"experts.":[142],"This":[143],"paper":[144],"introduces":[145],"\u201c":[146],"<italic":[147,234],"xmlns:mml=\"http://www.w3.org/1998/Math/MathML\"":[148,235],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">MalView</i>":[149,236],"\u201d,":[150],"an":[151],"interactive":[152],"visualization":[153,246],"platform,":[154],"which":[159],"pattern":[160],"matching":[161],"on":[163],"signature-based":[165],"can":[170],"utilized":[172],"1)":[174],"classify":[175],"malware,":[176],"2)":[177],"identify":[178],"intention":[180],"location":[182],"artifacts,":[189],"3)":[190],"analyze":[191],"unknown":[192],"(i.e.,":[194],"zero-day":[195],"malware)":[196],"recognizing":[198],"unusual":[200],"behavior,":[203],"4)":[205],"explore":[206],"time":[208],"dependencies":[209],"thus":[211],"system":[213],"components":[214],"affected":[215],"tampered":[217],"underlying":[220],"The":[222],"results":[223],"several":[225],"case":[226],"studies":[227],"conducted":[228],"this":[230],"work":[231],"show":[232],"that":[233],"offers":[237],"more":[238],"features":[239],"information":[241],"compared":[242],"facilitating":[248],"process.":[252]},"counts_by_year":[{"year":2026,"cited_by_count":2},{"year":2025,"cited_by_count":7},{"year":2024,"cited_by_count":1},{"year":2023,"cited_by_count":1}],"updated_date":"2026-06-13T07:54:00.901334","created_date":"2025-10-10T00:00:00"}