{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T23:10:02Z","timestamp":1750374602544,"version":"3.41.0"},"publisher-location":"Singapore","reference-count":18,"publisher":"Springer Singapore","isbn-type":[{"type":"print","value":"9789811054204"},{"type":"electronic","value":"9789811054211"}],"license":[{"start":{"date-parts":[[2017,1,1]],"date-time":"2017-01-01T00:00:00Z","timestamp":1483228800000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2017]]},"DOI":"10.1007\/978-981-10-5421-1_14","type":"book-chapter","created":{"date-parts":[[2017,6,22]],"date-time":"2017-06-22T12:30:04Z","timestamp":1498134604000},"page":"169-180","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":8,"title":["A Hybrid Approach for Malware Family Classification"],"prefix":"10.1007","author":[{"given":"Naqqash","family":"Aman","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yasir","family":"Saleem","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Fahim H.","family":"Abbasi","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Farrukh","family":"Shahzad","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2017,6,23]]},"reference":[{"key":"14_CR1","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"231","DOI":"10.1007\/978-3-319-05149-9_15","volume-title":"Information Security Applications","author":"A Mohaisen","year":"2014","unstructured":"Mohaisen, A., Alrawi, O., Larson, M., McPherson, D.: Towards a methodical evaluation of antivirus scans and labels. In: Kim, Y., Lee, H., Perrig, A. (eds.) WISA 2013. LNCS, vol. 8267, pp. 231\u2013241. Springer, Cham (2014). doi: 10.1007\/978-3-319-05149-9_15"},{"key":"14_CR2","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"112","DOI":"10.1007\/978-3-319-08509-8_7","volume-title":"Detection of Intrusions and Malware, and Vulnerability Assessment","author":"A Mohaisen","year":"2014","unstructured":"Mohaisen, A., Alrawi, O.: AV-meter: an evaluation of antivirus scans and labels. In: Dietrich, S. (ed.) DIMVA 2014. LNCS, vol. 8550, pp. 112\u2013131. Springer, Cham (2014). doi: 10.1007\/978-3-319-08509-8_7"},{"key":"14_CR3","unstructured":"Anubis. http:\/\/anubis.iseclab.org\/"},{"key":"14_CR4","unstructured":"AV-TEST (2016). New Malware, https:\/\/www.av-test.org\/en\/statistics\/malware\/"},{"key":"14_CR5","doi-asserted-by":"publisher","first-page":"32","DOI":"10.1109\/MSP.2007.45","volume":"5","author":"C Willems","year":"2007","unstructured":"Willems, C., Holz, T., Freiling, F.: Toward automated dynamic malware analysis using CWSandbox. IEEE Secur. Priv. 5, 32\u201339 (2007)","journal-title":"IEEE Secur. Priv."},{"key":"14_CR6","unstructured":"Guarnieri, C., Tanasi, A., Bremer, J., Schloesser, M.: The cuckoo sandbox (2012)"},{"issue":"4","key":"14_CR7","doi-asserted-by":"publisher","first-page":"639","DOI":"10.3233\/JCS-2010-0410","volume":"19","author":"K Rieck","year":"2011","unstructured":"Rieck, K., Trinius, P., Willems, C., Holz, T.: Automatic analysis of malware behavior using machine learning. J. Comput. Secur. 19(4), 639\u2013668 (2011)","journal-title":"J. Comput. Secur."},{"key":"14_CR8","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"108","DOI":"10.1007\/978-3-540-70542-0_6","volume-title":"Detection of Intrusions and Malware, and Vulnerability Assessment","author":"K Rieck","year":"2008","unstructured":"Rieck, K., Holz, T., Willems, C., D\u00fcssel, P., Laskov, P.: Learning and classification of malware behavior. In: Zamboni, D. (ed.) DIMVA 2008. LNCS, vol. 5137, pp. 108\u2013125. Springer, Heidelberg (2008). doi: 10.1007\/978-3-540-70542-0_6"},{"key":"14_CR9","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"178","DOI":"10.1007\/978-3-540-74320-0_10","volume-title":"Recent Advances in Intrusion Detection","author":"M Bailey","year":"2007","unstructured":"Bailey, M., Oberheide, J., Andersen, J., Mao, Z.M., Jahanian, F., Nazario, J.: Automated classification and analysis of internet malware. In: Kruegel, C., Lippmann, R., Clark, A. (eds.) RAID 2007. LNCS, vol. 4637, pp. 178\u2013197. Springer, Heidelberg (2007). doi: 10.1007\/978-3-540-74320-0_10"},{"key":"14_CR10","doi-asserted-by":"crossref","unstructured":"Zolkipli, M.F., Jantan, A.: An approach for malware behavior identification and classification. In: 3rd International Conference on Computer Research and Development (ICCRD), pp. 191\u2013194 (2011)","DOI":"10.1109\/ICCRD.2011.5764001"},{"key":"14_CR11","unstructured":"Gheorghescu, M.: An automated virus classification system. In: Virus Bulletin Conference, pp. 294\u2013300 (2005)"},{"key":"14_CR12","doi-asserted-by":"publisher","first-page":"51","DOI":"10.1007\/s11416-014-0224-9","volume":"11","author":"O Ferrand","year":"2015","unstructured":"Ferrand, O.: How to detect the cuckoo sandbox and to strengthen it? J. Comput. Virol. Hacking Tech. 11, 51\u201358 (2015)","journal-title":"J. Comput. Virol. Hacking Tech."},{"key":"14_CR13","doi-asserted-by":"crossref","unstructured":"Pirscoveanu, R.S., Hansen, S.S., Larsen, T.M., Stevanovic, M., Pedersen, J.M., Czech, A.: Analysis of Malware behavior: type classification using machine learning. In: International Conference on Cyber Situational Awareness, Data Analytics and Assessment (CyberSA), pp. 1\u20137 (2015)","DOI":"10.1109\/CyberSA.2015.7166115"},{"key":"14_CR14","unstructured":"Hungenberg, T., Eckert, M.: INetSim: internet services simulation suite (2013). http:\/\/www.inetsim.org"},{"key":"14_CR15","unstructured":"VirusTotal. VT Community. https:\/\/www.virustotal.com\/"},{"key":"14_CR16","unstructured":"Vulnerability & Exploit Database. https:\/\/www.rapid7.com\/db\/"},{"key":"14_CR17","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"399","DOI":"10.1007\/978-3-319-40667-1_20","volume-title":"Detection of Intrusions and Malware, and Vulnerability Assessment","author":"W Huang","year":"2016","unstructured":"Huang, W., Stokes, J.W.: MtNet: a multi-task neural network for dynamic malware classification. In: Caballero, J., Zurutuza, U., Rodr\u00edguez, R.J. (eds.) DIMVA 2016. LNCS, vol. 9721, pp. 399\u2013418. Springer, Cham (2016). doi: 10.1007\/978-3-319-40667-1_20"},{"key":"14_CR18","doi-asserted-by":"crossref","unstructured":"Salehi, Z., Ghiasi, M., Sami, A.: A miner for malware detection based on API function calls and their arguments. In: 16th CSI International Symposium on Artificial Intelligence and Signal Processing (AISP), pp. 563\u2013568 (2012)","DOI":"10.1109\/AISP.2012.6313810"}],"container-title":["Communications in Computer and Information Science","Applications and Techniques in Information Security"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-981-10-5421-1_14","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T22:50:51Z","timestamp":1750373451000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-981-10-5421-1_14"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2017]]},"ISBN":["9789811054204","9789811054211"],"references-count":18,"URL":"https:\/\/doi.org\/10.1007\/978-981-10-5421-1_14","relation":{},"ISSN":["1865-0929","1865-0937"],"issn-type":[{"type":"print","value":"1865-0929"},{"type":"electronic","value":"1865-0937"}],"subject":[],"published":{"date-parts":[[2017]]},"assertion":[{"value":"23 June 2017","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"ATIS","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Applications and Techniques in Information Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Auckland","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"New Zealand","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2017","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"6 July 2017","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"7 July 2017","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"atis2017","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"http:\/\/atis.massey.ac.nz\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}