Improvement of malware detection and classification using API call sequence alignment and visualization

Conventional malware detection technologies have the limitation to detect malware because recent malware uses a variety of the avoidance techniques such as obfuscation, packing, anti-virtualization, anti-emulation, encapsulation technology in order to evade the detection of malware. To overcome this limitation, it is necessary to obtain new detection technology which is able to quickly analyze massive malware and its variants, and take the rapid response to cyber intrusion. Therefore in this paper, we proposed the malware detection and classification method and implementation of our system based on the dynamic analysis using the behavioral sequence of malware (API call sequence) and sequence alignment algorithm (MSA). Also we evaluated the effectiveness of our proposed method through the experiment.