{"id":"https://openalex.org/W4210535441","doi":"https://doi.org/10.1109/globecom46510.2021.9685415","title":"Friend or Foe: Discerning Benign vs Malicious Software and Malware Family","display_name":"Friend or Foe: Discerning Benign vs Malicious Software and Malware Family","publication_year":2021,"publication_date":"2021-12-01","ids":{"openalex":"https://openalex.org/W4210535441","doi":"https://doi.org/10.1109/globecom46510.2021.9685415"},"language":"en","primary_location":{"id":"doi:10.1109/globecom46510.2021.9685415","is_oa":false,"landing_page_url":"https://doi.org/10.1109/globecom46510.2021.9685415","pdf_url":null,"source":{"id":"https://openalex.org/S4363607714","display_name":"2021 IEEE Global Communications Conference (GLOBECOM)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2021 IEEE Global Communications Conference (GLOBECOM)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5064028585","display_name":"Aaron Walker","orcid":"https://orcid.org/0000-0003-4040-6665"},"institutions":[{"id":"https://openalex.org/I134113660","display_name":"University of Nevada, Reno","ror":"https://ror.org/01keh0577","country_code":"US","type":"education","lineage":["https://openalex.org/I134113660"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Aaron Walker","raw_affiliation_strings":["University of Nevada, Reno,Department of Computer Science and Engineering,Reno,USA"],"affiliations":[{"raw_affiliation_string":"University of Nevada, Reno,Department of Computer Science and Engineering,Reno,USA","institution_ids":["https://openalex.org/I134113660"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5008136058","display_name":"Tapadhir Das","orcid":"https://orcid.org/0000-0002-4793-8982"},"institutions":[{"id":"https://openalex.org/I134113660","display_name":"University of Nevada, Reno","ror":"https://ror.org/01keh0577","country_code":"US","type":"education","lineage":["https://openalex.org/I134113660"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Tapadhir Das","raw_affiliation_strings":["University of Nevada, Reno,Department of Computer Science and Engineering,Reno,USA"],"affiliations":[{"raw_affiliation_string":"University of Nevada, Reno,Department of Computer Science and Engineering,Reno,USA","institution_ids":["https://openalex.org/I134113660"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5039235730","display_name":"Raj Mani Shukla","orcid":"https://orcid.org/0000-0002-8239-7325"},"institutions":[{"id":"https://openalex.org/I36234482","display_name":"University of Bristol","ror":"https://ror.org/0524sp257","country_code":"GB","type":"education","lineage":["https://openalex.org/I36234482"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Raj Mani Shukla","raw_affiliation_strings":["University of Bristol,Department of Computer Science,Bristol,UK"],"affiliations":[{"raw_affiliation_string":"University of Bristol,Department of Computer Science,Bristol,UK","institution_ids":["https://openalex.org/I36234482"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5100748436","display_name":"Shamik Sengupta","orcid":"https://orcid.org/0000-0002-2019-8056"},"institutions":[{"id":"https://openalex.org/I134113660","display_name":"University of Nevada, Reno","ror":"https://ror.org/01keh0577","country_code":"US","type":"education","lineage":["https://openalex.org/I134113660"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Shamik Sengupta","raw_affiliation_strings":["University of Nevada, Reno,Department of Computer Science and Engineering,Reno,USA"],"affiliations":[{"raw_affiliation_string":"University of Nevada, Reno,Department of Computer Science and Engineering,Reno,USA","institution_ids":["https://openalex.org/I134113660"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5064028585"],"corresponding_institution_ids":["https://openalex.org/I134113660"],"apc_list":null,"apc_paid":null,"fwci":0.5161,"has_fulltext":false,"cited_by_count":3,"citation_normalized_percentile":{"value":0.68838146,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":94},"biblio":{"volume":"6","issue":null,"first_page":"01","last_page":"06"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12034","display_name":"Digital and Cyber Forensics","score":0.9983000159263611,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.9702298045158386},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8014872074127197},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.7444250583648682},{"id":"https://openalex.org/keywords/resilience","display_name":"Resilience (materials science)","score":0.5887124538421631},{"id":"https://openalex.org/keywords/function","display_name":"Function (biology)","score":0.5803223252296448},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.4628322422504425},{"id":"https://openalex.org/keywords/cryptovirology","display_name":"Cryptovirology","score":0.45862171053886414},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.3474099636077881},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.32975712418556213},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.1359650194644928}],"concepts":[{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.9702298045158386},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8014872074127197},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.7444250583648682},{"id":"https://openalex.org/C2779585090","wikidata":"https://www.wikidata.org/wiki/Q3457762","display_name":"Resilience (materials science)","level":2,"score":0.5887124538421631},{"id":"https://openalex.org/C14036430","wikidata":"https://www.wikidata.org/wiki/Q3736076","display_name":"Function (biology)","level":2,"score":0.5803223252296448},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.4628322422504425},{"id":"https://openalex.org/C84525096","wikidata":"https://www.wikidata.org/wiki/Q3506050","display_name":"Cryptovirology","level":3,"score":0.45862171053886414},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.3474099636077881},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.32975712418556213},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.1359650194644928},{"id":"https://openalex.org/C78458016","wikidata":"https://www.wikidata.org/wiki/Q840400","display_name":"Evolutionary biology","level":1,"score":0.0},{"id":"https://openalex.org/C97355855","wikidata":"https://www.wikidata.org/wiki/Q11473","display_name":"Thermodynamics","level":1,"score":0.0},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/globecom46510.2021.9685415","is_oa":false,"landing_page_url":"https://doi.org/10.1109/globecom46510.2021.9685415","pdf_url":null,"source":{"id":"https://openalex.org/S4363607714","display_name":"2021 IEEE Global Communications Conference (GLOBECOM)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2021 IEEE Global Communications Conference (GLOBECOM)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[{"id":"https://openalex.org/F4320309566","display_name":"University of Nevada, Las Vegas","ror":"https://ror.org/0406gha72"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":15,"referenced_works":["https://openalex.org/W2735195081","https://openalex.org/W2758492464","https://openalex.org/W2761652379","https://openalex.org/W2767531870","https://openalex.org/W2783390333","https://openalex.org/W2783615536","https://openalex.org/W2791319131","https://openalex.org/W2795063185","https://openalex.org/W2798980918","https://openalex.org/W2807671950","https://openalex.org/W2889559485","https://openalex.org/W2963563709","https://openalex.org/W2963973118","https://openalex.org/W3112012065","https://openalex.org/W4210535441"],"related_works":["https://openalex.org/W2477251628","https://openalex.org/W4249009605","https://openalex.org/W2183594348","https://openalex.org/W2125235075","https://openalex.org/W3195170298","https://openalex.org/W4381279634","https://openalex.org/W1506884343","https://openalex.org/W2092915750","https://openalex.org/W2188132133","https://openalex.org/W2965893286"],"abstract_inverted_index":{"Malware":[0],"remains":[1],"one":[2],"of":[3,17,64,112,136],"the":[4,62,114,131,145],"gravest":[5],"threats":[6,60,79],"to":[7,11,34,47,56,76,86,90,104,129],"cybersecurity,":[8],"second":[9],"only":[10],"social":[12],"engineering":[13],"or":[14],"a":[15],"lack":[16],"user":[18],"security":[19,49],"awareness.":[20],"This":[21],"is":[22],"especially":[23],"true":[24],"for":[25],"Windows":[26,117],"systems":[27],"in":[28,97,134],"enterprise":[29],"environments.":[30],"As":[31],"malware":[32,59,78,106],"continues":[33],"evolve":[35],"and":[36,40,88,108,126,138,140],"frustrate":[37],"legacy":[38],"detection":[39],"prevention":[41],"mechanisms,":[42],"additional":[43],"approaches":[44],"are":[45],"necessary":[46],"ensure":[48],"resilience.":[50],"Machine":[51],"learning":[52,72],"offers":[53],"many":[54],"opportunities":[55],"better":[57],"combat":[58],"through":[61,110],"advantage":[63],"big":[65],"datasets.":[66],"Our":[67],"research":[68],"highlights":[69],"how":[70],"machine":[71],"can":[73],"be":[74],"leveraged":[75],"identify":[77],"with":[80,147],"rapid":[81],"results,":[82],"enabling":[83],"cybersecurity":[84],"professionals":[85],"learn":[87],"adapt":[89],"these":[91],"threats.":[92],"The":[93],"approach":[94],"we":[95],"present":[96],"this":[98],"paper":[99],"produces":[100],"an":[101],"efficient":[102],"methodology":[103],"discern":[105],"family":[107],"function":[109,120],"analysis":[111],"just":[113],"first":[115],"3,000":[116],"system":[118],"API":[119],"calls.":[121],"We":[122],"compare":[123],"MLP,":[124],"CNN,":[125],"SVM":[127],"networks":[128],"determine":[130],"best":[132,146],"performance":[133],"terms":[135],"accuracy":[137],"speed":[139],"find":[141],"that":[142],"MLP":[143],"works":[144],"our":[148],"dataset.":[149]},"counts_by_year":[{"year":2024,"cited_by_count":1},{"year":2023,"cited_by_count":1},{"year":2021,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}