{"id":"https://openalex.org/W3118316519","doi":"https://doi.org/10.1109/acit50332.2020.9300081","title":"A Comparative Analysis of Machine Learning Techniques for Classification and Detection of Malware","display_name":"A Comparative Analysis of Machine Learning Techniques for Classification and Detection of Malware","publication_year":2020,"publication_date":"2020-11-28","ids":{"openalex":"https://openalex.org/W3118316519","doi":"https://doi.org/10.1109/acit50332.2020.9300081","mag":"3118316519"},"language":"en","primary_location":{"id":"doi:10.1109/acit50332.2020.9300081","is_oa":false,"landing_page_url":"https://doi.org/10.1109/acit50332.2020.9300081","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2020 21st International Arab Conference on Information Technology (ACIT)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5073562197","display_name":"Maryam Aljanabi","orcid":"https://orcid.org/0000-0003-2152-0788"},"institutions":[{"id":"https://openalex.org/I146367977","display_name":"Applied Science Private University","ror":"https://ror.org/01ah6nb52","country_code":"JO","type":"education","lineage":["https://openalex.org/I146367977"]}],"countries":["JO"],"is_corresponding":true,"raw_author_name":"Maryam Al-Janabi","raw_affiliation_strings":["Computer Science Department, Applied Science Private University, Amman, Jordan"],"affiliations":[{"raw_affiliation_string":"Computer Science Department, Applied Science Private University, Amman, Jordan","institution_ids":["https://openalex.org/I146367977"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5029553248","display_name":"Ahmad Mousa Altamimi","orcid":"https://orcid.org/0000-0003-3642-5257"},"institutions":[{"id":"https://openalex.org/I146367977","display_name":"Applied Science Private University","ror":"https://ror.org/01ah6nb52","country_code":"JO","type":"education","lineage":["https://openalex.org/I146367977"]}],"countries":["JO"],"is_corresponding":false,"raw_author_name":"Ahmad Mousa Altamimi","raw_affiliation_strings":["Computer Science Department, Applied Science Private University, Amman, Jordan"],"affiliations":[{"raw_affiliation_string":"Computer Science Department, Applied Science Private University, Amman, Jordan","institution_ids":["https://openalex.org/I146367977"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5073562197"],"corresponding_institution_ids":["https://openalex.org/I146367977"],"apc_list":null,"apc_paid":null,"fwci":1.8259,"has_fulltext":false,"cited_by_count":25,"citation_normalized_percentile":{"value":0.86405032,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":93,"max":100},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"9"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.995199978351593,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":0.9742000102996826,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.9387407302856445},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8469076156616211},{"id":"https://openalex.org/keywords/c4.5-algorithm","display_name":"C4.5 algorithm","score":0.7831330299377441},{"id":"https://openalex.org/keywords/ransomware","display_name":"Ransomware","score":0.7016535997390747},{"id":"https://openalex.org/keywords/decision-tree","display_name":"Decision tree","score":0.6275953054428101},{"id":"https://openalex.org/keywords/android-malware","display_name":"Android malware","score":0.5702146887779236},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.5643925070762634},{"id":"https://openalex.org/keywords/static-analysis","display_name":"Static analysis","score":0.5392493009567261},{"id":"https://openalex.org/keywords/cryptovirology","display_name":"Cryptovirology","score":0.5249783396720886},{"id":"https://openalex.org/keywords/system-call","display_name":"System call","score":0.4998812675476074},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.4875919222831726},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.46481001377105713},{"id":"https://openalex.org/keywords/computer-virus","display_name":"Computer virus","score":0.4646676480770111},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.4526309072971344},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.43390488624572754},{"id":"https://openalex.org/keywords/android","display_name":"Android (operating system)","score":0.42503786087036133},{"id":"https://openalex.org/keywords/malware-analysis","display_name":"Malware analysis","score":0.4102005958557129},{"id":"https://openalex.org/keywords/support-vector-machine","display_name":"Support vector machine","score":0.25504422187805176},{"id":"https://openalex.org/keywords/naive-bayes-classifier","display_name":"Naive Bayes classifier","score":0.17772790789604187},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.1463516652584076}],"concepts":[{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.9387407302856445},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8469076156616211},{"id":"https://openalex.org/C52003472","wikidata":"https://www.wikidata.org/wiki/Q1022655","display_name":"C4.5 algorithm","level":4,"score":0.7831330299377441},{"id":"https://openalex.org/C2777667771","wikidata":"https://www.wikidata.org/wiki/Q926331","display_name":"Ransomware","level":3,"score":0.7016535997390747},{"id":"https://openalex.org/C84525736","wikidata":"https://www.wikidata.org/wiki/Q831366","display_name":"Decision tree","level":2,"score":0.6275953054428101},{"id":"https://openalex.org/C2989133298","wikidata":"https://www.wikidata.org/wiki/Q94","display_name":"Android malware","level":3,"score":0.5702146887779236},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.5643925070762634},{"id":"https://openalex.org/C97686452","wikidata":"https://www.wikidata.org/wiki/Q7604153","display_name":"Static analysis","level":2,"score":0.5392493009567261},{"id":"https://openalex.org/C84525096","wikidata":"https://www.wikidata.org/wiki/Q3506050","display_name":"Cryptovirology","level":3,"score":0.5249783396720886},{"id":"https://openalex.org/C2778579508","wikidata":"https://www.wikidata.org/wiki/Q722192","display_name":"System call","level":2,"score":0.4998812675476074},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.4875919222831726},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.46481001377105713},{"id":"https://openalex.org/C19407854","wikidata":"https://www.wikidata.org/wiki/Q485","display_name":"Computer virus","level":2,"score":0.4646676480770111},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.4526309072971344},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.43390488624572754},{"id":"https://openalex.org/C557433098","wikidata":"https://www.wikidata.org/wiki/Q94","display_name":"Android (operating system)","level":2,"score":0.42503786087036133},{"id":"https://openalex.org/C2779395397","wikidata":"https://www.wikidata.org/wiki/Q15731404","display_name":"Malware analysis","level":3,"score":0.4102005958557129},{"id":"https://openalex.org/C12267149","wikidata":"https://www.wikidata.org/wiki/Q282453","display_name":"Support vector machine","level":2,"score":0.25504422187805176},{"id":"https://openalex.org/C52001869","wikidata":"https://www.wikidata.org/wiki/Q812530","display_name":"Naive Bayes classifier","level":3,"score":0.17772790789604187},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.1463516652584076},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/acit50332.2020.9300081","is_oa":false,"landing_page_url":"https://doi.org/10.1109/acit50332.2020.9300081","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2020 21st International Arab Conference on Information Technology (ACIT)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.6299999952316284,"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":46,"referenced_works":["https://openalex.org/W200681053","https://openalex.org/W595999655","https://openalex.org/W1545056863","https://openalex.org/W1964241047","https://openalex.org/W1973403081","https://openalex.org/W2037026906","https://openalex.org/W2057787526","https://openalex.org/W2085807744","https://openalex.org/W2119954997","https://openalex.org/W2144083192","https://openalex.org/W2144112223","https://openalex.org/W2152442131","https://openalex.org/W2156460613","https://openalex.org/W2215444025","https://openalex.org/W2292041963","https://openalex.org/W2313513770","https://openalex.org/W2541668755","https://openalex.org/W2581465409","https://openalex.org/W2607122509","https://openalex.org/W2626822883","https://openalex.org/W2660067476","https://openalex.org/W2732916693","https://openalex.org/W2744095836","https://openalex.org/W2744896416","https://openalex.org/W2765921396","https://openalex.org/W2784097977","https://openalex.org/W2784813287","https://openalex.org/W2792450155","https://openalex.org/W2794873039","https://openalex.org/W2798790152","https://openalex.org/W2800695847","https://openalex.org/W2895892359","https://openalex.org/W2904109097","https://openalex.org/W2907236248","https://openalex.org/W2918098492","https://openalex.org/W2922526186","https://openalex.org/W2963106521","https://openalex.org/W2965272007","https://openalex.org/W2980421545","https://openalex.org/W3003626607","https://openalex.org/W3020335785","https://openalex.org/W3151741126","https://openalex.org/W4250463209","https://openalex.org/W4297747285","https://openalex.org/W6608206699","https://openalex.org/W6618101189"],"related_works":["https://openalex.org/W4392966178","https://openalex.org/W4240330722","https://openalex.org/W3211746486","https://openalex.org/W3135174262","https://openalex.org/W2183925834","https://openalex.org/W4293077671","https://openalex.org/W3200508744","https://openalex.org/W4283578543","https://openalex.org/W4225094272","https://openalex.org/W4226034576"],"abstract_inverted_index":{"Malicious":[0],"software,":[1],"commonly":[2],"known":[3],"as":[4,126],"malware,":[5],"is":[6,189],"one":[7,75,127],"of":[8,47,59,110,119,128,153,182,220,266],"the":[9,31,45,48,80,117,129,163,173,208,215,218,226,230,233,240,245,264],"most":[10,130],"harmful":[11],"threats":[12],"developed":[13],"by":[14,69],"cyber":[15],"attackers":[16],"to":[17,24,100,157],"intentionally":[18],"cause":[19],"damage":[20],"or":[21,149],"gaining":[22],"access":[23],"computer":[25],"systems.":[26],"Malware":[27],"has":[28,123,236],"evolved":[29],"over":[30],"years":[32],"and":[33,41,53,88,113,132,167,211],"comes":[34],"in":[35,77,172,176,186,202,222,225,239,263],"all":[36,73],"shapes":[37],"with":[38,191,217,269],"different":[39],"types":[40],"functions":[42],"depending":[43],"on":[44,142,199],"goals":[46],"developer.":[49],"Virus,":[50],"Spyware,":[51],"Bots,":[52],"Ransomware":[54],"are":[55,97],"just":[56],"some":[57],"examples":[58],"malware.":[60,178,204],"While":[61],"those":[62],"described":[63],"above":[64],"found":[65],"themselves":[66],"causing":[67],"issues":[68],"accident,":[70],"however,":[71,103],"they":[72],"share":[74],"thing":[76],"common,":[78],"harming":[79],"system.":[81,228],"As":[82],"a":[83,159,180,192,258],"response,":[84],"many":[85],"infection":[86],"treatments":[87],"detecting":[89,177,203,223],"methods":[90,96,105,137,169],"have":[91],"been":[92,124,237],"proposed.":[93],"The":[94,151],"signature-based":[95],"currently":[98],"utilized":[99],"delete":[101],"malware;":[102],"these":[104,136,206],"cannot":[106],"provide":[107,158],"accurate":[108],"detection":[109,122],"zero-day":[111],"attacks":[112],"polymorphic":[114],"viruses.":[115],"Contrarily,":[116],"use":[118],"machine":[120,270],"learning-based":[121],"recognized":[125],"modern":[131],"notable":[133],"methods.":[134,272],"Specifically,":[135],"can":[138],"be":[139],"categorized":[140],"based":[141,198],"their":[143,200],"analysis":[144,213,268],"technique":[145],"into":[146],"static,":[147],"dynamic,":[148],"hybrid.":[150],"purpose":[152],"this":[154,187,255],"work":[155],"was":[156],"survey":[160],"that":[161,170,254],"determines":[162],"best":[164,174],"features":[165],"extraction":[166],"classification":[168],"result":[171],"accuracy":[175,201,219,235],"Moreover,":[179],"review":[181],"representable":[183],"research":[184,262],"papers":[185],"topic":[188],"represented":[190],"detailed":[193],"tabular":[194],"comparison":[195],"between":[196],"them":[197],"Among":[205],"methods,":[207],"J48":[209],"algorithm":[210,248],"Hybrid":[212],"outperformed":[214],"others":[216],"100%":[221],"malware":[224,267],"Windows":[227],"On":[229],"other":[231],"hand,":[232],"same":[234],"achieved":[238],"Android":[241],"system":[242],"when":[243],"employing":[244],"Decision":[246],"Tree":[247],"through":[249],"Dynamic":[250],"analysis.":[251],"We":[252],"believe":[253],"study":[256],"performs":[257],"base":[259],"for":[260],"further":[261],"field":[265],"learning":[271]},"counts_by_year":[{"year":2026,"cited_by_count":2},{"year":2025,"cited_by_count":6},{"year":2024,"cited_by_count":5},{"year":2023,"cited_by_count":7},{"year":2022,"cited_by_count":3},{"year":2021,"cited_by_count":2}],"updated_date":"2026-03-03T08:47:05.690250","created_date":"2025-10-10T00:00:00"}