Abstract

Java vulnerabilities correspond to 91% of all exploits observed on the worldwide web. The present work aims to create antivirus software with machine learning and artificial intelligence and master in Java malware detection. Within the proposed methodology, the suspected JAR sample is executed to intentionally infect the Windows OS monitored in a controlled environment. In all, our antivirus monitors and considers, statistically, 6824 actions that the suspected JAR file can perform when executed. Our antivirus achieved an average performance of 91.58% in the distinction between benign and malware JAR files. Different initial conditions, learning functions and architectures of our antivirus are investigated. The limitations of commercial antiviruses can be supplied by intelligent antiviruses. Instead of blacklist-based models, our antivirus allows JAR malware detection preventively and not reactively as Oracle’s Java and traditional antivirus modus operandi.

Details

Title
Antivirus applied to JAR malware detection based on runtime behaviors
Author
Pinheiro, Ricardo P 1   VIAFID ORCID Logo  ; Lima Sidney M L 2   VIAFID ORCID Logo  ; Souza, Danilo M 1 ; Silva Sthéfano H M T 1 ; Lopes, Petrônio G 1 ; de Lima Rafael D T 1 ; de Oliveira Jemerson R 1 ; Monteiro Thyago de A 1 ; Fernandes Sérgio M M 1 ; Albuquerque Edison de Q 1 ; Silva Washington W A da 3 ; Santos Wellington P dos 3 

 University of Pernambuco, Department of Computing, Recife, Brazil (GRID:grid.411227.3) (ISNI:0000 0001 0670 7996) 
 Federal University of Pernambuco, Electronics and Systems Department, Recife, Brazil (GRID:grid.411227.3) (ISNI:0000 0001 0670 7996) 
 Federal University of Pernambuco, Biomedical Engineering Department, Recife, Brazil (GRID:grid.411227.3) (ISNI:0000 0001 0670 7996) 
Publication year
2022
Publication date
2022
Publisher
Nature Publishing Group
e-ISSN
20452322
Source type
Scholarly Journal
Language of publication
English
DOI
https://doi.org/10.1038/s41598-022-05921-5
ProQuest document ID
2625419272
Copyright
© The Author(s) 2022. This work is published under http://creativecommons.org/licenses/by/4.0/ (the “License”). Notwithstanding the ProQuest Terms and Conditions, you may use this content in accordance with the terms of the License.