{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,3,30]],"date-time":"2025-03-30T16:46:23Z","timestamp":1743353183405},"publisher-location":"Cham","reference-count":19,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783030268336"},{"type":"electronic","value":"9783030268343"}],"license":[{"start":{"date-parts":[[2019,1,1]],"date-time":"2019-01-01T00:00:00Z","timestamp":1546300800000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2019]]},"DOI":"10.1007\/978-3-030-26834-3_10","type":"book-chapter","created":{"date-parts":[[2019,8,6]],"date-time":"2019-08-06T23:05:29Z","timestamp":1565132729000},"page":"168-185","update-policy":"http:\/\/dx.doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":16,"title":["Towards Efficient Detection of Malicious VBA Macros with LSI"],"prefix":"10.1007","author":[{"given":"Mamoru","family":"Mimura","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Taro","family":"Ohminami","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2019,7,24]]},"reference":[{"key":"10_CR1","unstructured":"gensim topic modelling for humans. https:\/\/radimrehurek.com\/gensim\/"},{"key":"10_CR2","unstructured":"olevba. https:\/\/github.com\/decalage2\/oletools\/wiki\/olevba"},{"key":"10_CR3","unstructured":"scikit-learn machine learning in Python. https:\/\/scikit-learn.org\/"},{"key":"10_CR4","unstructured":"Virus total. https:\/\/www.virustotal.com\/"},{"key":"10_CR5","unstructured":"Windows defender antivirus. https:\/\/www.microsoft.com\/en-us\/windows\/windows-defender\/"},{"key":"10_CR6","unstructured":"Wolf in sheep\u2019s clothing: a SophosLabs investigation into delivering malware via VBA. https:\/\/nakedsecurity.sophos.com\/2017\/05\/31\/wolf-in-sheeps-clothing-a-sophoslabs-investigation-into-delivering-malware-via-vba\/"},{"key":"10_CR7","unstructured":"Bearden, R., Lo, D.C.T.: Automated microsoft office macro malware detection using machine learning. In: Nie, J.Y., et al. (eds.) 2017 IEEE International Conference on Big Data, BigData 2017, Boston, MA, USA, 11\u201314 December 2017, pp. 4448\u20134452. IEEE (2017). http:\/\/ieeexplore.ieee.org\/xpl\/mostRecentIssue.jsp?punumber=8241556"},{"key":"10_CR8","unstructured":"Boldewin, F.: Analyzing msoffice malware with officemalscanner, 30 July 2009"},{"key":"10_CR9","doi-asserted-by":"publisher","first-page":"324","DOI":"10.1016\/j.eswa.2016.07.010","volume":"63","author":"A Cohen","year":"2016","unstructured":"Cohen, A., Nissim, N., Rokach, L., Elovici, Y.: SFEM: structural feature extraction methodology for the detection of malicious office documents using machine learning methods. Expert Syst. Appl. 63, 324\u2013343 (2016)","journal-title":"Expert Syst. Appl."},{"key":"10_CR10","doi-asserted-by":"crossref","unstructured":"Kancherla, K., Mukkamala, S.: Image visualization based malware detection. In: 2013 IEEE Symposium on Computational Intelligence in Cyber Security (CICS), pp. 40\u201344, April 2013","DOI":"10.1109\/CICYBS.2013.6597204"},{"key":"10_CR11","unstructured":"Kim, S., Hong, S., Oh, J., Lee, H.: Obfuscated VBA macro detection using machine learning. In: DSN, pp. 490\u2013501. IEEE Computer Society (2018). http:\/\/ieeexplore.ieee.org\/xpl\/mostRecentIssue.jsp?punumber=8415926"},{"key":"10_CR12","unstructured":"Le, Q.V., Mikolov, T.: Distributed representations of sentences and documents. In: Proceedings of the 31th International Conference on Machine Learning, ICML 2014, Beijing, China, 21\u201326 June 2014, pp. 1188\u20131196 (2014). http:\/\/jmlr.org\/proceedings\/papers\/v32\/le14.html"},{"key":"10_CR13","doi-asserted-by":"crossref","unstructured":"Mimura, M., Miura, H.: Detecting unseen malicious VBA macros with NLP techniques. J. Inf. Process. (JIP) 27 (2019, in press)","DOI":"10.2197\/ipsjjip.27.555"},{"key":"10_CR14","unstructured":"Mimura, M., Otsubo, Y., Tanaka, H.: Evaluation of a brute forcing tool that extracts the rat from a malicious document file. In: AsiaJCIS, pp. 147\u2013154. IEEE Computer Society (2016). http:\/\/ieeexplore.ieee.org\/xpl\/mostRecentIssue.jsp?punumber=7781470"},{"key":"10_CR15","unstructured":"Mimura, M., Otsubo, Y., Tanaka, H., Goto, A.: Is emulating \u201cbinary grep in eyes\u201d possible with machine learning? In: CANDAR, pp. 337\u2013343. IEEE Computer Society (2017). http:\/\/ieeexplore.ieee.org\/xpl\/mostRecentIssue.jsp?punumber=8338657"},{"key":"10_CR16","doi-asserted-by":"crossref","unstructured":"Miura, H., Mimura, M., Tanaka, H.: Discovering new malware families using a linguistic-based macros detection method. In: 2018 Sixth International Symposium on Computing and Networking Workshops (CANDARW), pp. 431\u2013437, November 2018","DOI":"10.1109\/CANDARW.2018.00085"},{"key":"10_CR17","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"3","DOI":"10.1007\/978-3-319-99807-7_1","volume-title":"Information Security Practice and Experience","author":"H Miura","year":"2018","unstructured":"Miura, H., Mimura, M., Tanaka, H.: Macros finder: do you remember LOVELETTER? In: Su, C., Kikuchi, H. (eds.) ISPEC 2018. LNCS, vol. 11125, pp. 3\u201318. Springer, Cham (2018). https:\/\/doi.org\/10.1007\/978-3-319-99807-7_1"},{"issue":"3","key":"10_CR18","doi-asserted-by":"publisher","first-page":"631","DOI":"10.1109\/TIFS.2016.2631905","volume":"12","author":"N Nissim","year":"2017","unstructured":"Nissim, N., Cohen, A., Elovici, Y.: ALDOCX: detection of unknown malicious microsoft office documents using designated active learning methods based on new structural feature extraction methodology. IEEE Trans. Inf. Forensics Secur. 12(3), 631\u2013646 (2017)","journal-title":"IEEE Trans. Inf. Forensics Secur."},{"key":"10_CR19","unstructured":"Otsubo, Y., Mimura, M., Tanaka, H.: O-checker : detection of malicious documents through deviation from file format specifications. In: Black Hat USA (2016)"}],"container-title":["Lecture Notes in Computer Science","Advances in Information and Computer Security"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-030-26834-3_10","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,12,5]],"date-time":"2019-12-05T03:53:30Z","timestamp":1575518010000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-030-26834-3_10"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019]]},"ISBN":["9783030268336","9783030268343"],"references-count":19,"URL":"https:\/\/doi.org\/10.1007\/978-3-030-26834-3_10","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2019]]},"assertion":[{"value":"24 July 2019","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"IWSEC","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Workshop on Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Tokyo","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Japan","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2019","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"28 August 2019","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"30 August 2019","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"14","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"iwsec2019a","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/www.iwsec.org\/2019\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Double-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"EasyChair","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"61","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"18","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"5","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"30% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3.9","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"5.6","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"Yes","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"https:\/\/www.iwsec.org\/2019\/","order":10,"name":"additional_info_on_review_process","label":"Additional Info on Review Process","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}}]}}