{"id":"https://openalex.org/W4406414864","doi":"https://doi.org/10.1109/tsusc.2025.3529752","title":"Proof: Pre-Training Model of Malware Family Classification Based on Active Defense","display_name":"Proof: Pre-Training Model of Malware Family Classification Based on Active Defense","publication_year":2025,"publication_date":"2025-01-15","ids":{"openalex":"https://openalex.org/W4406414864","doi":"https://doi.org/10.1109/tsusc.2025.3529752"},"language":"en","primary_location":{"id":"doi:10.1109/tsusc.2025.3529752","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tsusc.2025.3529752","pdf_url":null,"source":{"id":"https://openalex.org/S4210221417","display_name":"IEEE Transactions on Sustainable Computing","issn_l":"2377-3782","issn":["2377-3782","2377-3790"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Sustainable Computing","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5069872577","display_name":"Shuai Guo","orcid":"https://orcid.org/0000-0003-3718-810X"},"institutions":[{"id":"https://openalex.org/I37987034","display_name":"Guangzhou University","ror":"https://ror.org/05ar8rn06","country_code":"CN","type":"education","lineage":["https://openalex.org/I37987034"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Shuai Guo","raw_affiliation_strings":["Cyberspace Institute of Advanced Technology, Guangzhou University, Guangzhou, China"],"affiliations":[{"raw_affiliation_string":"Cyberspace Institute of Advanced Technology, Guangzhou University, Guangzhou, China","institution_ids":["https://openalex.org/I37987034"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5103251349","display_name":"Hao Liu","orcid":"https://orcid.org/0000-0002-7073-8444"},"institutions":[{"id":"https://openalex.org/I37987034","display_name":"Guangzhou University","ror":"https://ror.org/05ar8rn06","country_code":"CN","type":"education","lineage":["https://openalex.org/I37987034"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Hao Liu","raw_affiliation_strings":["Cyberspace Institute of Advanced Technology, Guangzhou University, Guangzhou, China"],"affiliations":[{"raw_affiliation_string":"Cyberspace Institute of Advanced Technology, Guangzhou University, Guangzhou, China","institution_ids":["https://openalex.org/I37987034"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100352621","display_name":"Zhiyong Zhang","orcid":"https://orcid.org/0000-0003-3061-7768"},"institutions":[{"id":"https://openalex.org/I37987034","display_name":"Guangzhou University","ror":"https://ror.org/05ar8rn06","country_code":"CN","type":"education","lineage":["https://openalex.org/I37987034"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Zhiyong Zhang","raw_affiliation_strings":["Cyberspace Institute of Advanced Technology, Guangzhou University, Guangzhou, China"],"affiliations":[{"raw_affiliation_string":"Cyberspace Institute of Advanced Technology, Guangzhou University, Guangzhou, China","institution_ids":["https://openalex.org/I37987034"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5037817436","display_name":"Shen Su","orcid":"https://orcid.org/0000-0003-2744-3584"},"institutions":[{"id":"https://openalex.org/I37987034","display_name":"Guangzhou University","ror":"https://ror.org/05ar8rn06","country_code":"CN","type":"education","lineage":["https://openalex.org/I37987034"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Shen Su","raw_affiliation_strings":["Cyberspace Institute of Advanced Technology, Guangzhou University, Guangzhou, China"],"affiliations":[{"raw_affiliation_string":"Cyberspace Institute of Advanced Technology, Guangzhou University, Guangzhou, China","institution_ids":["https://openalex.org/I37987034"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5056608045","display_name":"Zhihong Tian","orcid":"https://orcid.org/0000-0002-9409-5359"},"institutions":[{"id":"https://openalex.org/I37987034","display_name":"Guangzhou University","ror":"https://ror.org/05ar8rn06","country_code":"CN","type":"education","lineage":["https://openalex.org/I37987034"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Zhihong Tian","raw_affiliation_strings":["Cyberspace Institute of Advanced Technology, Guangzhou University, Guangzhou, China"],"affiliations":[{"raw_affiliation_string":"Cyberspace Institute of Advanced Technology, Guangzhou University, Guangzhou, China","institution_ids":["https://openalex.org/I37987034"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5069872577"],"corresponding_institution_ids":["https://openalex.org/I37987034"],"apc_list":null,"apc_paid":null,"fwci":1.6525,"has_fulltext":false,"cited_by_count":1,"citation_normalized_percentile":{"value":0.76518843,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":91,"max":95},"biblio":{"volume":"10","issue":"4","first_page":"642","last_page":"653"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9943000078201294,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9943000078201294,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9839000105857849,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/training","display_name":"Training (meteorology)","score":0.7973155975341797},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.7747270464897156},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.5265766978263855},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.45715683698654175},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.3704562783241272},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.33656612038612366},{"id":"https://openalex.org/keywords/geography","display_name":"Geography","score":0.10243606567382812},{"id":"https://openalex.org/keywords/meteorology","display_name":"Meteorology","score":0.053187161684036255}],"concepts":[{"id":"https://openalex.org/C2777211547","wikidata":"https://www.wikidata.org/wiki/Q17141490","display_name":"Training (meteorology)","level":2,"score":0.7973155975341797},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.7747270464897156},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.5265766978263855},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.45715683698654175},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.3704562783241272},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.33656612038612366},{"id":"https://openalex.org/C205649164","wikidata":"https://www.wikidata.org/wiki/Q1071","display_name":"Geography","level":0,"score":0.10243606567382812},{"id":"https://openalex.org/C153294291","wikidata":"https://www.wikidata.org/wiki/Q25261","display_name":"Meteorology","level":1,"score":0.053187161684036255}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/tsusc.2025.3529752","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tsusc.2025.3529752","pdf_url":null,"source":{"id":"https://openalex.org/S4210221417","display_name":"IEEE Transactions on Sustainable Computing","issn_l":"2377-3782","issn":["2377-3782","2377-3790"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Sustainable Computing","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":38,"referenced_works":["https://openalex.org/W1545528966","https://openalex.org/W1985328160","https://openalex.org/W2026361699","https://openalex.org/W2064675550","https://openalex.org/W2079215333","https://openalex.org/W2150423842","https://openalex.org/W2292109572","https://openalex.org/W2621204675","https://openalex.org/W2751661638","https://openalex.org/W2752241832","https://openalex.org/W2792450155","https://openalex.org/W2794652108","https://openalex.org/W2926178846","https://openalex.org/W2963961561","https://openalex.org/W2990954041","https://openalex.org/W3007070494","https://openalex.org/W3022550689","https://openalex.org/W3035366542","https://openalex.org/W3106619103","https://openalex.org/W3112012065","https://openalex.org/W3133719257","https://openalex.org/W3166956180","https://openalex.org/W3193668405","https://openalex.org/W4205270295","https://openalex.org/W4205465310","https://openalex.org/W4205663290","https://openalex.org/W4206637870","https://openalex.org/W4213072039","https://openalex.org/W4220969141","https://openalex.org/W4255756278","https://openalex.org/W4286375281","https://openalex.org/W4289938749","https://openalex.org/W4295347215","https://openalex.org/W4390881876","https://openalex.org/W6636510571","https://openalex.org/W6679775712","https://openalex.org/W6739901393","https://openalex.org/W6745899033"],"related_works":["https://openalex.org/W2961085424","https://openalex.org/W4306674287","https://openalex.org/W4387369504","https://openalex.org/W3046775127","https://openalex.org/W4394896187","https://openalex.org/W3170094116","https://openalex.org/W4386462264","https://openalex.org/W3107602296","https://openalex.org/W4364306694","https://openalex.org/W4312192474"],"abstract_inverted_index":{"Malware":[0,13,90],"acts":[1],"as":[2],"a":[3,46,55,87,99,108],"critical":[4],"component":[5],"in":[6,76,153],"network":[7],"attack":[8],"and":[9,18,31,67,72,135,157],"defense":[10,48],"mechanisms.":[11],"As":[12],"threats":[14],"become":[15],"more":[16],"complex":[17],"diverse,":[19],"timely":[20],"automatic":[21],"malware":[22,35,61,80,144,148],"classification":[23,36,130,162],"is":[24,82,113],"urgently":[25],"needed.":[26],"Take":[27],"into":[28],"account":[29],"consistency":[30],"system":[32],"resource":[33],"consumption,":[34],"should":[37],"be":[38],"compatible":[39],"with":[40],"other":[41],"security":[42],"devices":[43],"to":[44,115,123],"form":[45],"comprehensive":[47],"system.":[49],"In":[50],"this":[51],"study,":[52],"we":[53,151],"proposed":[54],"pre-training":[56,110],"framework":[57,141],"Proof":[58,140],"based":[59],"on":[60],"behavior":[62],"captured":[63,104,152],"by":[64,97,105],"honeypoints":[65],"inside":[66],"outside":[68],"the":[69,73,77,117,125,139,154,158,161],"protected":[70],"system,":[71],"framework\u2019s":[74],"performance":[75],"categorization":[78],"of":[79,101,120,133,160],"families":[81,149],"evaluated.":[83],"To":[84],"describe":[85],"malware,":[86],"structure":[88],"called":[89],"Behavior":[91],"Instruction":[92],"Set":[93],"(MBIS)":[94],"was":[95,164],"designed":[96],"selecting":[98],"subset":[100],"all":[102],"behaviors":[103],"honeypoints.":[106],"Then,":[107],"self-supervised":[109],"model":[111,131],"MBI2vec":[112],"applied":[114],"learn":[116],"internal":[118],"mode":[119],"malicious":[121,127],"code":[122,128],"guide":[124],"downstream":[126],"family":[129],"composed":[132],"Bi-LSTM":[134],"attention":[136],"mechanism.":[137],"Finally,":[138],"evaluated":[142],"846":[143],"samples":[145],"from":[146],"five":[147],"that":[150],"real":[155],"world,":[156],"f1-score":[159],"result":[163],"0.9554.":[165]},"counts_by_year":[{"year":2025,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}