Ransomware Detection and Classification Strategies

Cisco Systems

Ransomware defense validated design guide

NA

Published: 2016

Safety Detectives

Ransomware facts, trends & statistics for 2022

NA

Published: 2022

Sustainability

Ransomware detection, avoidance, and mitigation scheme: A review and future directions

A. Kapoor

Published: 2021

Bloomberg Government

Senate bill to mandate cyberattack, ransomware payment reporting

NA

Published: 2021

IEEE Access

A survey on detection techniques for cryptographic ransomware

E. Berrueta, D. Morato, E. Magana, M. Izal

Published: 2019

ACM Computing Surveys

A survey on windows-based ransomware taxonomy and detection mechanisms

R. Moussaileb, N. Cuppens, J.-L. Lanet, Bouder

Published: 2022

IEEE access

A multi-classifier network-based crypto ransomware detection system: A case study of locky ransomware

Almashhadani, A. O., Kaiiali, M., Sezer, S., O’Kane, P.

Published: 2019

Dept. of Mathematics, TU Eindhoven

Network based ransomware detection on the samba protocol

D. Mulders

Published: 2017

Journal of Network and Computer Applications

Ransomware early detection by the analysis of file sharing traffic

D. Morato, E. Berrueta, E. Magana, M. Izal

Published: 2018

SDN-NFV 2018

Machine learning-based detection of ransomware using sdn

G. Cusack, O. Michel, E. Keller

Published: 2018

ICCSE 2018

R-killer: An email based ransomware protection tool

B. Lokuketagoda, M. Weerakoon, U. Kuruppu, A. Senarathne, K. Abeywardena

Published: 2018

Future Generation Computer Systems

Drthis: Deep ransomware threat hunting and intelligence system at the fog layer

S. Homayoun, A. Dehghantanha, M. Ahmadzadeh, S. Hashemi

Published: 2019

International Journal of Network Security

Detection and analysis cerber ransomware based on network forensics behavior

K. Ade, R. Imam

Published: 2018

IEEE Access

Detecting android locker-ransomware on chinese social networks

D. Su, J. Liu, X. Wang, W. Wang, P. O’Kane

Published: 2019

2018 20th International conference on advanced communication technology (ICACT)

The dynamic analysis of wannacry ransomware

Da-Yu Kao, Shou-Ching Hsiao

Published: 2018

Information Systems Frontiers

Deepran: Attention-based bilstm and crf for ransomware early detection and classification

K. C. Roy, Q. Chen

Published: 2021

Computers in Electrical Eng.

Software-defined networking-based crypto ransomware detection using http traffic characteristics

K. Cabaj, M. Gregorczyk, W. Mazurczyk

Published: 2019

arxiv

Cited by 3

Computing Research Repository (CoRR)

Leveraging Machine Learning Techniques for Windows Ransomware Network Traffic Detection

Omar M. K. Alhawi, James Baldwin, Ali Dehghantanha

Published: 7.27.2018

Ransomware has become a significant global threat with the ransomware-as-a-service model enabling easy availability and deployment, and the potential for high revenues creating a viable criminal business model. Individuals, private companies or public service providers e.g. healthcare or utilities companies can all become victims of ransomware attacks and consequently suffer severe disruption and financial loss. Although machine learning algorithms are already being used to detect ransomware, variants are being developed to specifically evade detection when using dynamic machine learning techniques. In this paper, we introduce NetConverse, a machine learning analysis of Windows ransomware network traffic to achieve a high, consistent detection rate. Using a dataset created from conversation-based network traffic features we achieved a true positive detection rate of 97.1% using the Decision Tree (J48) classifier.

Machine Learning Application Backdoor Detection Model Evaluation

USENIX Security 2016

UNVEIL: A Large-Scale, automated approach to detecting ransomware

A. Kharaz, S. Arshad, C. Mulliner, W. Robertson, E. Kirda

Published: 2016

Asia CCS 2017

Paybreak: Defense against cryptographic ransomware

K. Eugene, K. Wil, S. Gianluca, E. Manuel

Published: 2017

Annual Computer Security Applications Conference (ACSAC) 2016

Shieldfs: a self-healing, ransomware-aware filesystem

A. Continella, A. Guagnelli, G. Zingaro, G. Pasquale, A. Barenghi, S. Zanero, F. Maggi

Published: 2016

RAID 2017

Redemption: Real-time protection against ransomware at end-hosts

A. Kharraz, E. Kirda

Published: 2017

ICDCS 2018

Ssd-insider: Internal defense of solid-state drive against ransomware with perfect data recoveryquestio

S. Baek, Y. Jung, D. Mohaisen, S. Lee, D. Nyang

Published: 2018

Kangacrypt 2018

Rapper: Ransomware prevention via performance counters

S. Sinha, M. Alam, S. Bhattacharya, D. Mukhopadhyay, A. Chattopadhyay, S. Dutta

Published: 2018

IEEE Transactions on Network and Service Management

On ransomware family attribution using pre-attack paranoia activities

R. M. A. Molina, S. Torabi, K. Sarieddine, E. Bou-Harb, N. Bouguila, C. Assi

Published: 2022

IEEE ICC 2020

Exploiting ransomware paranoia for execution prevention

A. AlSabeh, H. Safa, E. Bou-Harb, J. Crichigno

Published: 2020

Rpm: Ransomware prevention and mitigation using operating systems sensing tactics

R. M. A. Molina

Published: 2022

ACM SIGSAC 2017

Leveraging intrinsic flash properties to defend against encryption ransomware

J. Huang, J. Xu, X. Xing, P. Liu, M. Qureshi

Published: 2017

2018 IEEE Symposium Series on Computational Intelligence (SSCI)

A Framework for Analyzing Ransomware using Machine Learning

S. Poudyal, K. P. Subedi, D. Dasgupta

Published: 2018

Future Generation Computer Systems

Classification of ransomware families with machine learning based onn-gram of opcodes

H. Zhang, X. Xiao, F. Mercaldo, S. Ni, F. Martinelli, A. Sangaiah

Published: 2019

USENIX Security Symposium 2017

Binsim: Trace-based semantic binary diffing via system call sliced segment equivalence checking

J. Ming, D. Xu, Y. Jiang, D. Wu, Debdeep, A. Chattopadhyay, S. Dutta

Published: 2017

RACS 2019

Automatic ransomware detection and analysis based on dynamic api calls flow graph

Z. Chen, H. Kang, S. Yin, S. Kim

Published: 2019

arXiv 1803.01598

Raptor: Ransomware attack predictor

F. Quinkert, T. Holz, K. S. M. T. Hossain, E. Ferrara, K. Lerman

Published: 2018

SADFE 2018

Forensic analysis of ransomware families using static and dynamic analysis

K. Subedi, D. R. Budhathoki, D. Dasgupta

Published: 2018

ICDF2C 2018

Digital forensic readiness framework

A. Singh, I. Adeyemi, H. Venter

Published: 2018

29th USENIX Security Symposium (USENIX Security 20)

Measuring and modeling the label dynamics of online Anti-Malware engines

S. Zhu, J. Shi, L. Yang, B. Qin, Z. Zhang, L. Song, G. Wang

Published: 2020

IEEE Symposium on Security and Privacy (SP 2018)

Tracking ransomware end-to-end

D. Y. Huang, M. M. Aliapoulios, V. G. Li, L. Invernizzi, E. Bursztein, K. McRoberts, J. Levin, K. Levchenko, A. C. Snoeren, D. McCoy

Published: 2018

GameSec 2017

On the economics of ransomware

A. Laszka, S. Farhang, J. Grossklags

Published: 2017

SOUPS 2019

“i was told to buy a software or lose my computer. i ignored it”: A study of ransomware

C. Simoiu, C. Gates, J. Bonneau, S. Goel

Published: 2019

DIMVA 2015

Cutting the gordian knot: A look under the hood of ransomware attacks

A. Kharraz, W. Robertson, D. Balzarotti, L. Bilge, E. Kirda

Published: 2015

Proceedings on Privacy Enhancing Technologies

Identifying multiple authors from source code files

M. Abuhamad, T. Abuhmed, D. Nyang, D. Mohaisen

Published: 2020

24th {USENIX} Security Symposium ({USENIX} Security 15)

De-anonymizing programmers via code stylometry

Aylin Caliskan-Islam, Richard Harang, Andrew Liu, Arvind Narayanan, Clare Voss, Fabian Yamaguchi, Rachel Greenstadt

Published: 2015

Computers and Security

Authorship analysis: identifying the author of a program

I. Krsul, E. H. Spafford

Published: 1997

Computers and Security

Software forensics: Can we track code to its authors?

E. H. Spafford, S. A. Weeber

Published: 1993

IEEE Access

Machine learning-based analysis of program binaries: A comprehensive study

H. Xue, S. Sun, G. Venkataramani, T. Lan

Published: 2019

ESORICS 2011

Who wrote this code? identifying the authors of program binaries

N. E. Rosenblum, X. Zhu, B. P. Miller

Published: 2011

ESORICS 2017

Identifying multiple authors in a binary program

X. Meng, B. P. Miller, K. Jun

Published: 2017