Research Article
A Malware Detection Scheme via Smart Memory Forensics for Windows Devices
Table 4
Comparison of proposed O-CNN model with other reference studies.
| | MalwareVariants | Before t-SNE reduction | After t-SNE reduction | | 224 × 224 | 300 × 300 | 224 × 224 | 300 × 300 | | Correct | Incorrect | Correct | Incorrect | Correct | Incorrect | Correct | Incorrect |
| | Adposhel | 0.99 | 0.01 | 1.00 | 0.00 | 1.00 | 0.00 | 1.00 | 0.00 | | Allaple | 0.95 | 0.05 | 0.94 | 0.06 | 1.00 | 0.00 | 1.00 | 0.00 | | Amonetize | 0.97 | 0.03 | 0.96 | 0.04 | 0.98 | 0.02 | 0.98 | 0.02 | | Autorun | 0.73 | 0.27 | 0.75 | 0.25 | 0.96 | 0.04 | 0.96 | 0.04 | | Browsefox | 0.91 | 0.09 | 0.85 | 0.15 | 0.99 | 0.01 | 1.00 | 0.00 | | Dinwod | 0.71 | 0.29 | 0.89 | 0.11 | 1.00 | 0.00 | 1.00 | 0.00 | | Installcore | 0.99 | 0.01 | 0.99 | 0.01 | 1.00 | 0.00 | 1.00 | 0.00 | | Multiplug | 0.84 | 0.16 | 0.84 | 0.16 | 1.00 | 0.00 | 1.00 | 0.00 | | Vba | 1.00 | 0.00 | 1.00 | 0.00 | 0.99 | 0.01 | 1.00 | 0.00 | | Vilsel | 1.00 | 0.00 | 1.00 | 0.00 | 1.00 | 0.00 | 1.00 | 0.00 | | Average (%) | 0.90 | 0.09 | 0.92 | 0.08 | 0.99 | 0.01 | 0.99 | 0.01 | | Time (s) | 117s | 119s | 30 seconds (74.3x) | 32 seconds (74.1x) |
|
|
