{"id":"https://openalex.org/W4400976095","doi":"https://doi.org/10.1145/3664476.3664514","title":"SoK: Visualization-based Malware Detection Techniques","display_name":"SoK: Visualization-based Malware Detection Techniques","publication_year":2024,"publication_date":"2024-07-25","ids":{"openalex":"https://openalex.org/W4400976095","doi":"https://doi.org/10.1145/3664476.3664514"},"language":"en","primary_location":{"id":"doi:10.1145/3664476.3664514","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3664476.3664514","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 19th International Conference on Availability, Reliability and Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5105049142","display_name":"Matteo Brosolo","orcid":"https://orcid.org/0009-0005-4944-0976"},"institutions":[{"id":"https://openalex.org/I138689650","display_name":"University of Padua","ror":"https://ror.org/00240q980","country_code":"IT","type":"education","lineage":["https://openalex.org/I138689650"]}],"countries":["IT"],"is_corresponding":true,"raw_author_name":"Matteo Brosolo","raw_affiliation_strings":["University of Padua, Italy"],"affiliations":[{"raw_affiliation_string":"University of Padua, Italy","institution_ids":["https://openalex.org/I138689650"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5108960174","display_name":"Vinod Puthuvath","orcid":null},"institutions":[{"id":"https://openalex.org/I138689650","display_name":"University of Padua","ror":"https://ror.org/00240q980","country_code":"IT","type":"education","lineage":["https://openalex.org/I138689650"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Vinod Puthuvath","raw_affiliation_strings":["University of Padua, Italy"],"affiliations":[{"raw_affiliation_string":"University of Padua, Italy","institution_ids":["https://openalex.org/I138689650"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5105049143","display_name":"Asmitha KA","orcid":null},"institutions":[{"id":"https://openalex.org/I20497027","display_name":"Cochin University of Science and Technology","ror":"https://ror.org/00a4kqq17","country_code":"IN","type":"education","lineage":["https://openalex.org/I20497027"]}],"countries":["IN"],"is_corresponding":false,"raw_author_name":"Asmitha KA","raw_affiliation_strings":["Cochin University of Science and Technology, India"],"affiliations":[{"raw_affiliation_string":"Cochin University of Science and Technology, India","institution_ids":["https://openalex.org/I20497027"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5113304281","display_name":"Rafidha Rehiman","orcid":null},"institutions":[{"id":"https://openalex.org/I20497027","display_name":"Cochin University of Science and Technology","ror":"https://ror.org/00a4kqq17","country_code":"IN","type":"education","lineage":["https://openalex.org/I20497027"]}],"countries":["IN"],"is_corresponding":false,"raw_author_name":"Rafidha Rehiman","raw_affiliation_strings":["Cochin University of Science and Technology, India"],"affiliations":[{"raw_affiliation_string":"Cochin University of Science and Technology, India","institution_ids":["https://openalex.org/I20497027"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5063847107","display_name":"Mauro Conti","orcid":"https://orcid.org/0000-0002-3612-1934"},"institutions":[{"id":"https://openalex.org/I138689650","display_name":"University of Padua","ror":"https://ror.org/00240q980","country_code":"IT","type":"education","lineage":["https://openalex.org/I138689650"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Mauro Conti","raw_affiliation_strings":["University of Padua, Italy"],"affiliations":[{"raw_affiliation_string":"University of Padua, Italy","institution_ids":["https://openalex.org/I138689650"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5105049142"],"corresponding_institution_ids":["https://openalex.org/I138689650"],"apc_list":null,"apc_paid":null,"fwci":2.447,"has_fulltext":false,"cited_by_count":7,"citation_normalized_percentile":{"value":0.89831318,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":100},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"13"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9896000027656555,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.972000002861023,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7767965793609619},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.7669179439544678},{"id":"https://openalex.org/keywords/visualization","display_name":"Visualization","score":0.6923542022705078},{"id":"https://openalex.org/keywords/data-visualization","display_name":"Data visualization","score":0.5009171962738037},{"id":"https://openalex.org/keywords/ransomware","display_name":"Ransomware","score":0.4135354459285736},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.26779282093048096},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.2572924494743347}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7767965793609619},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.7669179439544678},{"id":"https://openalex.org/C36464697","wikidata":"https://www.wikidata.org/wiki/Q451553","display_name":"Visualization","level":2,"score":0.6923542022705078},{"id":"https://openalex.org/C172367668","wikidata":"https://www.wikidata.org/wiki/Q6504956","display_name":"Data visualization","level":3,"score":0.5009171962738037},{"id":"https://openalex.org/C2777667771","wikidata":"https://www.wikidata.org/wiki/Q926331","display_name":"Ransomware","level":3,"score":0.4135354459285736},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.26779282093048096},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.2572924494743347}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1145/3664476.3664514","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3664476.3664514","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 19th International Conference on Availability, Reliability and Security","raw_type":"proceedings-article"},{"id":"pmh:oai:www.research.unipd.it:11577/3520192","is_oa":false,"landing_page_url":"https://hdl.handle.net/11577/3520192","pdf_url":null,"source":{"id":"https://openalex.org/S4377196283","display_name":"Research Padua  Archive (University of Padua)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I138689650","host_organization_name":"University of Padua","host_organization_lineage":["https://openalex.org/I138689650"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"info:eu-repo/semantics/conferenceObject"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":82,"referenced_works":["https://openalex.org/W2010065958","https://openalex.org/W2012833704","https://openalex.org/W2044465660","https://openalex.org/W2096127742","https://openalex.org/W2796394805","https://openalex.org/W2801888526","https://openalex.org/W2889100747","https://openalex.org/W2900633536","https://openalex.org/W2905130735","https://openalex.org/W2936512185","https://openalex.org/W2940752008","https://openalex.org/W2949639282","https://openalex.org/W2950754826","https://openalex.org/W2966708309","https://openalex.org/W2968493742","https://openalex.org/W2981091784","https://openalex.org/W2990518194","https://openalex.org/W2994101726","https://openalex.org/W2994804501","https://openalex.org/W2996806689","https://openalex.org/W3004280948","https://openalex.org/W3006325478","https://openalex.org/W3006334803","https://openalex.org/W3007032623","https://openalex.org/W3008497156","https://openalex.org/W3014274353","https://openalex.org/W3016369654","https://openalex.org/W3020985685","https://openalex.org/W3025067198","https://openalex.org/W3044668093","https://openalex.org/W3045044533","https://openalex.org/W3045552883","https://openalex.org/W3089392154","https://openalex.org/W3112697340","https://openalex.org/W3118382796","https://openalex.org/W3125596609","https://openalex.org/W3132524851","https://openalex.org/W3135185324","https://openalex.org/W3153387614","https://openalex.org/W3163963286","https://openalex.org/W3174909610","https://openalex.org/W3176174600","https://openalex.org/W3186874092","https://openalex.org/W3187790458","https://openalex.org/W3189794512","https://openalex.org/W3193547153","https://openalex.org/W3196064684","https://openalex.org/W3199625283","https://openalex.org/W3208789089","https://openalex.org/W3215200159","https://openalex.org/W3215786562","https://openalex.org/W4200523179","https://openalex.org/W4205876068","https://openalex.org/W4213012150","https://openalex.org/W4213049278","https://openalex.org/W4224288244","https://openalex.org/W4226358749","https://openalex.org/W4282929420","https://openalex.org/W4284989899","https://openalex.org/W4287644588","https://openalex.org/W4292065896","https://openalex.org/W4292541930","https://openalex.org/W4292826151","https://openalex.org/W4293230792","https://openalex.org/W4299992996","https://openalex.org/W4306154842","https://openalex.org/W4311493459","https://openalex.org/W4312008223","https://openalex.org/W4312870202","https://openalex.org/W4313216189","https://openalex.org/W4313315659","https://openalex.org/W4313594499","https://openalex.org/W4315783485","https://openalex.org/W4319018800","https://openalex.org/W4323655380","https://openalex.org/W4364382428","https://openalex.org/W4366265333","https://openalex.org/W4381548520","https://openalex.org/W4381890377","https://openalex.org/W4383498433","https://openalex.org/W4388886524","https://openalex.org/W4390503182"],"related_works":["https://openalex.org/W2013728941","https://openalex.org/W4225274103","https://openalex.org/W2579659702","https://openalex.org/W2154046714","https://openalex.org/W1965329638","https://openalex.org/W1574055964","https://openalex.org/W2923661510","https://openalex.org/W2189613078","https://openalex.org/W2586219255","https://openalex.org/W2547096368"],"abstract_inverted_index":{"Cyber":[0],"attackers":[1],"leverage":[2],"malware":[3,33,43,53,62,69],"to":[4,31,44,64,95,137],"infiltrate":[5],"systems,":[6],"steal":[7],"sensitive":[8],"data,":[9],"and":[10,27,48,57,72,84,102,120,127],"extort":[11],"victims,":[12],"posing":[13],"a":[14],"significant":[15],"cybersecurity":[16],"threat.":[17],"Security":[18],"experts":[19],"address":[20],"this":[21],"challenge":[22],"by":[23],"employing":[24],"machine":[25],"learning":[26,29],"deep":[28],"approaches":[30],"detect":[32],"precisely,":[34],"using":[35],"static,":[36],"dynamic,":[37],"or":[38],"hybrid":[39],"methodologies.":[40],"They":[41],"visualize":[42],"identify":[45],"patterns,":[46],"behaviors,":[47],"common":[49],"features":[50],"across":[51],"different":[52,66],"families.":[54],"Various":[55],"methods":[56],"tools":[58],"are":[59],"used":[60],"for":[61,105,144],"visualization":[63,80],"represent":[65],"aspects":[67],"of":[68,79,109,153],"behavior,":[70],"characteristics,":[71],"relationships.":[73],"This":[74,112],"article":[75],"evaluates":[76],"the":[77,124,150,154],"effectiveness":[78],"techniques":[81,119],"in":[82,117],"detecting":[83],"classifying":[85],"malware.":[86,156],"We":[87],"methodically":[88],"categorize":[89],"studies":[90],"based":[91,148],"on":[92,123,149],"their":[93],"approach":[94],"information":[96],"retrieval,":[97],"visualization,":[98],"feature":[99],"extraction,":[100],"classification,":[101],"evaluation,":[103],"allowing":[104],"an":[106],"in-depth":[107],"review":[108],"cutting-edge":[110],"methods.":[111],"analysis":[113,132],"identifies":[114],"key":[115],"challenges":[116],"visualization-based":[118],"sheds":[121],"light":[122],"field\u2019s":[125],"progress":[126],"future":[128],"possibilities.":[129],"Our":[130],"thorough":[131],"can":[133],"provide":[134],"valuable":[135],"insights":[136],"researchers,":[138],"helping":[139],"them":[140],"establish":[141],"optimal":[142],"practices":[143],"selecting":[145],"suitable":[146],"visualizations":[147],"specific":[151],"characteristics":[152],"analyzed":[155]},"counts_by_year":[{"year":2026,"cited_by_count":4},{"year":2025,"cited_by_count":2},{"year":2024,"cited_by_count":1}],"updated_date":"2026-03-31T07:56:22.981413","created_date":"2025-10-10T00:00:00"}