Research Article
PBDT: Python Backdoor Detection Model Based on Combined Features
| | Feature set | Old features | New features and improvements |
| | Call features | | Malicious module feature | | | | Malicious function feature | | | | Line opcode feature |
| | Text statistical features | Information entropy | | | | The longest string | | | | Index of coincidence | | | | Compression ratio | | | | | IP/URL information | | | | Dangerous keywords |
| | Opcode features | | All opcode features | | | TF-IDF feature | 5-gram | | | FastText feature | 5-gram |
|
|
