{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,11,24]],"date-time":"2025-11-24T21:44:19Z","timestamp":1764020659302},"reference-count":55,"publisher":"Springer Science and Business Media LLC","issue":"5","license":[{"start":{"date-parts":[[2023,5,14]],"date-time":"2023-05-14T00:00:00Z","timestamp":1684022400000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2023,5,14]],"date-time":"2023-05-14T00:00:00Z","timestamp":1684022400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"funder":[{"name":"the National Key R&D Program of China"},{"name":"2020 Special Project of Science and Technology Strengthening Police of Ministry of Public Security","award":["No.2020GABJC01"],"award-info":[{"award-number":["No.2020GABJC01"]}]},{"name":"the Fundamental Research Funds for the Central Universities","award":["No.2021JKF206"],"award-info":[{"award-number":["No.2021JKF206"]}]}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["Int. J. Inf. Secur."],"published-print":{"date-parts":[[2023,10]]},"DOI":"10.1007\/s10207-023-00699-7","type":"journal-article","created":{"date-parts":[[2023,5,15]],"date-time":"2023-05-15T12:39:16Z","timestamp":1684154356000},"page":"1423-1443","update-policy":"http:\/\/dx.doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":4,"title":["AIHGAT: A novel method of malware detection and homology analysis using assembly instruction heterogeneous graph"],"prefix":"10.1007","volume":"22","author":[{"given":"Runzheng","family":"Wang","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jian","family":"Gao","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Shuhua","family":"Huang","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2023,5,14]]},"reference":[{"key":"699_CR1","doi-asserted-by":"publisher","first-page":"64","DOI":"10.1016\/j.ins.2011.08.020","volume":"231","author":"I Santos","year":"2013","unstructured":"Santos, I., Brezo, F., Ugarte-Pedrero, X., et al.: Opcode sequences as representation of executables for data-mining-based unknown malware detection. Inf. Sci. 231, 64\u201382 (2013). https:\/\/doi.org\/10.1016\/j.ins.2011.08.020","journal-title":"Inf. Sci."},{"key":"699_CR2","doi-asserted-by":"publisher","unstructured":"Zhang F.Y., Zhao, T.Z. Malware detection and classification based on N-grams attribute similarity. In: 2017 IEEE International Conference on Computational Science and Engineering (CSE) and IEEE International Conference on Embedded and Ubiquitous Computing (EUC), IEEE, 2017, pp. 793\u2013796. https:\/\/doi.org\/10.1109\/CSE-EUC.2017.157","DOI":"10.1109\/CSE-EUC.2017.157"},{"issue":"2","key":"699_CR3","doi-asserted-by":"publisher","first-page":"59","DOI":"10.1007\/s11416-015-0244-0","volume":"12","author":"HS Galal","year":"2016","unstructured":"Galal, H.S., Mahdy, Y.B., Atiea, M.A.: Behavior-based features model for malware detection. J. Comput. Virol. Hacking Tech. 12(2), 59\u201367 (2016). https:\/\/doi.org\/10.1007\/s11416-015-0244-0","journal-title":"J. Comput. Virol. Hacking Tech."},{"key":"699_CR4","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1186\/2190-8532-1-1","volume":"1","author":"A Shabtai","year":"2012","unstructured":"Shabtai, A., Moskovitch, R., Feher, C., et al.: Detecting unknown malicious code by applying classification techniques on OpCode patterns. Secur. Inform. 1, 1\u201322 (2012). https:\/\/doi.org\/10.1186\/2190-8532-1-1","journal-title":"Secur. Inform."},{"key":"699_CR5","doi-asserted-by":"publisher","unstructured":"Lee, J., Im, C., Jeong, H.: A study of malware detection and classification by comparing extracted strings. In: Proceedings of the 5th International Conference on Ubiquitous Information Management and Communication, 2011, pp. 1\u20134. https:\/\/doi.org\/10.1145\/1968613.1968704","DOI":"10.1145\/1968613.1968704"},{"key":"699_CR6","doi-asserted-by":"publisher","unstructured":"Alazab, M., Venkataraman, S., Watters, P.: Towards understanding malware behaviour by the extraction of API calls. In: Proceedings of 2010 Second Cybercrime and Trustworthy Computing Workshop, IEEE, 2016, pp.52\u201359.doi: https:\/\/doi.org\/10.1109\/CTC.2010.8","DOI":"10.1109\/CTC.2010.8"},{"key":"699_CR7","doi-asserted-by":"publisher","first-page":"101760","DOI":"10.1016\/j.cose.2020.101760","volume":"92","author":"E Amer","year":"2020","unstructured":"Amer, E., Zelinka, I.: A dynamic Windows malware detection and prediction method based on contextual understanding of API call sequence. Comput. Secur. 92, 101760 (2020). https:\/\/doi.org\/10.1016\/j.cose.2020.101760","journal-title":"Comput. Secur."},{"key":"699_CR8","doi-asserted-by":"publisher","unstructured":"Shang, S., Zheng, N., Xu, J. et al.: Detecting malware variants via function-call graph similarity. In: Proceedings of the 5th International Conference on the Malicious and Unwanted Software, IEEE, 2010, pp.113\u2013120. https:\/\/doi.org\/10.1109\/MALWARE.2010.5665787","DOI":"10.1109\/MALWARE.2010.5665787"},{"key":"699_CR9","doi-asserted-by":"publisher","unstructured":"Kong, D., Yan, G.: Discriminant malware distance learning on structural information for automated malware classification. In: Proceedings of the 19th ACM SIGKDD international conference on Knowledge discovery and data mining, 2013, pp. 1357\u20131365. https:\/\/doi.org\/10.1145\/2487575.2488219","DOI":"10.1145\/2487575.2488219"},{"key":"699_CR10","doi-asserted-by":"publisher","unstructured":"Hassen, M., Chan, P.K.: Scalable function call graph-based malware classification. In: Proceedings of the Seventh ACM on Conference on Data and Application Security and Privacy. ACM, New York, NY, USA, 2017, pp. 239\u2013248, https:\/\/doi.org\/10.1145\/3029806.3029824","DOI":"10.1145\/3029806.3029824"},{"key":"699_CR11","doi-asserted-by":"publisher","unstructured":"Bruschi, D., Martignoni, L., Monga, M.: Detecting self-mutating malware using control-flow graph matching. In: Proceedings of the 3rd International Conference on Detection of Intrusions and Malware & Vulnerability Assessment. Berlin: Springer, 2006, pp.129\u2013143. https:\/\/doi.org\/10.1007\/11790754_8","DOI":"10.1007\/11790754_8"},{"key":"699_CR12","doi-asserted-by":"publisher","first-page":"65","DOI":"10.1016\/j.cose.2014.04.003","volume":"44","author":"YX Ding","year":"2014","unstructured":"Ding, Y.X., Dai, W., Yan, S.L., Zhang, Y.M.: Control flow-based opcode behavior analysis for Malware detection. Comput. Secur. 44, 65\u201374 (2014). https:\/\/doi.org\/10.1016\/j.cose.2014.04.003","journal-title":"Comput. Secur."},{"key":"699_CR13","unstructured":"Abou-Assaleh, T., Cercone, N., Keselj, V. et al.: Detection of new malicious code using N-grams signatures. In: Proceedings of the 2nd Annual Conference on Privacy, Security and Trust. New Brunswick, Canada, 2004, pp.193\u2013196"},{"issue":"5","key":"699_CR14","doi-asserted-by":"publisher","first-page":"59","DOI":"10.4156\/ijipm.vol4.issue5.7","volume":"4","author":"O Sornil","year":"2013","unstructured":"Sornil, O., Liangboonprakong, C.: Malware classification using N-grams sequential pattern features. Int.J. Inf. Process. Manag. 4(5), 59\u201367 (2013). https:\/\/doi.org\/10.4156\/ijipm.vol4.issue5.7","journal-title":"Int.J. Inf. Process. Manag."},{"key":"699_CR15","doi-asserted-by":"publisher","unstructured":"Moskovitch, R., Feher, C., Tzachar, N. et al.: Unknown malcode detection using OPCODE representation. In: Proceedings of the 2008 European Conference on Intelligence and Security Informatics. Berlin: Springer, 2008, pp.204\u2013215. https:\/\/doi.org\/10.1007\/978-3-540-89900-6_21","DOI":"10.1007\/978-3-540-89900-6_21"},{"key":"699_CR16","doi-asserted-by":"publisher","first-page":"708","DOI":"10.1016\/j.future.2019.09.025","volume":"110","author":"B Zhang","year":"2020","unstructured":"Zhang, B., Xiao, W.T., Xiao, X., et al.: Ransomware classification using patch-based CNN and self-attention network on embedded N-grams of opcodes. Futur. Gener. Comput. Syst. 110, 708\u2013720 (2020). https:\/\/doi.org\/10.1016\/j.future.2019.09.025","journal-title":"Futur. Gener. Comput. Syst."},{"key":"699_CR17","doi-asserted-by":"crossref","unstructured":"Baldangombo, U., Jambaljav, N., Horng, S. J.: Static malware detection system using data mining methods. Int. J.Artif. Intell. Appl. 4(4), 113\u2013126. https:\/\/arxiv.org\/abs\/1308.2831 (2013)","DOI":"10.5121\/ijaia.2013.4411"},{"key":"699_CR18","doi-asserted-by":"publisher","unstructured":"Kolosnjaji, B., Zarras, A., Webster, G., Eckert, C.: Deep learning for classification of malware system call sequences. In: Australasian Joint Conference on Artificial Intelligence. Springer, Cham, 2016, pp. 137\u2013149. https:\/\/doi.org\/10.1007\/978-3-319-50127-7_11","DOI":"10.1007\/978-3-319-50127-7_11"},{"key":"699_CR19","doi-asserted-by":"publisher","first-page":"376","DOI":"10.1016\/j.cose.2019.04.005","volume":"84","author":"JX Zhang","year":"2019","unstructured":"Zhang, J.X., Qin, Z., Yin, H., et al.: A feature-hybrid malware variants detection using CNN based opcode embedding and BPNN based API embedding. Comput. Secur. 84, 376\u2013392 (2019). https:\/\/doi.org\/10.1016\/j.cose.2019.04.005","journal-title":"Comput. Secur."},{"issue":"2","key":"699_CR20","doi-asserted-by":"publisher","first-page":"130","DOI":"10.1016\/j.jides.2016.10.009","volume":"3","author":"M Wojnowicz","year":"2016","unstructured":"Wojnowicz, M., Chisholm, G., Wolff, M., Zhao, X.: Wavelet decomposition of software entropy reveals symptoms of malicious code. J. Innov. Digit. Ecosyst. 3(2), 130\u2013140 (2016). https:\/\/doi.org\/10.1016\/j.jides.2016.10.009","journal-title":"J. Innov. Digit. Ecosyst."},{"key":"699_CR21","doi-asserted-by":"publisher","unstructured":"Pagani, F., Dell'Amico, M., Balzarotti, D.: Beyond precision and recall: understanding uses (and misuses) of similarity hashes in binary analysis. In: Proceedings of the Eighth ACM Conference on Data and Application Security and Privacy, 2018, pp. 354\u2013365. https:\/\/doi.org\/10.1145\/3176258.3176306","DOI":"10.1145\/3176258.3176306"},{"key":"699_CR22","doi-asserted-by":"publisher","first-page":"301220","DOI":"10.1016\/j.fsidi.2021.301220","volume":"38","author":"M Botacin","year":"2021","unstructured":"Botacin, M., Moia, V.H.G., Ceschin, F., et al.: Understanding uses and misuses of similarity hashing functions for malware detection and family clustering in actual scenarios. Forensic Sci. Int.: Digit. Invest. 38, 301220 (2021). https:\/\/doi.org\/10.1016\/j.fsidi.2021.301220","journal-title":"Forensic Sci. Int.: Digit. Invest."},{"key":"699_CR23","doi-asserted-by":"publisher","unstructured":"Nataraj, L., Karthikeyan, S., Jacob, G. et al.: Malware images: visualization and automatic classification. In: Proceedings of the 8th International Symposium on Visualization for Cyber Security, 2011, pp.1\u20137. https:\/\/doi.org\/10.1145\/2016904.2016908","DOI":"10.1145\/2016904.2016908"},{"key":"699_CR24","doi-asserted-by":"publisher","first-page":"14510","DOI":"10.1109\/ACCESS.2018.2805301","volume":"6","author":"JW Fu","year":"2018","unstructured":"Fu, J.W., Xue, J.F., Wang, Y., et al.: Malware visualization for fine-grained classification. IEEE Access 6, 14510\u201314523 (2018). https:\/\/doi.org\/10.1109\/ACCESS.2018.2805301","journal-title":"IEEE Access"},{"key":"699_CR25","doi-asserted-by":"publisher","first-page":"101592","DOI":"10.1016\/j.cose.2019.101592","volume":"87","author":"H Yakura","year":"2019","unstructured":"Yakura, H., Shinozaki, S., Nishimura, R., et al.: Neural malware analysis with attention mechanism. Comput. Secur. 87, 101592 (2019). https:\/\/doi.org\/10.1016\/j.cose.2019.101592","journal-title":"Comput. Secur."},{"key":"699_CR26","doi-asserted-by":"publisher","first-page":"107138","DOI":"10.1016\/j.comnet.2020.107138","volume":"171","author":"D Vasan","year":"2020","unstructured":"Vasan, D., Alazab, M., Wassan, S., et al.: IMCFN: image-based malware classification using fine-tuned convolutional neural network architecture. ComputerNet-works 171, 107138 (2020). https:\/\/doi.org\/10.1016\/j.comnet.2020.107138","journal-title":"ComputerNet-works"},{"key":"699_CR27","doi-asserted-by":"publisher","first-page":"49","DOI":"10.1016\/j.jpdc.2020.03.012","volume":"141","author":"GQ Xiao","year":"2020","unstructured":"Xiao, G.Q., Li, J.N., Chen, Y.D., et al.: MalFCS: An effective malware classification framework with automated feature extraction based on deep convolutional neural networks. J. Parallel Distrib. Comput. 141, 49\u201358 (2020). https:\/\/doi.org\/10.1016\/j.jpdc.2020.03.012","journal-title":"J. Parallel Distrib. Comput."},{"key":"699_CR28","doi-asserted-by":"publisher","first-page":"101740","DOI":"10.1016\/j.cose.2020.101740","volume":"92","author":"BG Yuan","year":"2020","unstructured":"Yuan, B.G., Wang, J.F., Liu, D., et al.: Byte-level malware classi-fication based on markov images and deep learning. Comput. Secur. 92, 101740 (2020). https:\/\/doi.org\/10.1016\/j.cose.2020.101740","journal-title":"Comput. Secur."},{"issue":"4","key":"699_CR29","doi-asserted-by":"publisher","first-page":"419","DOI":"10.1049\/iet-ifs.2019.0189","volume":"14","author":"L Ghouti","year":"2020","unstructured":"Ghouti, L.: Malware classification using compact image features and multiclass support vector machines. IET Inf. Secur. 14(4), 419\u2013429 (2020). https:\/\/doi.org\/10.1049\/iet-ifs.2019.0189","journal-title":"IET Inf. Secur."},{"issue":"3","key":"699_CR30","doi-asserted-by":"publisher","first-page":"229","DOI":"10.1007\/s11416-020-00354-y","volume":"16","author":"M Jain","year":"2020","unstructured":"Jain, M., Andreopoulos, W., Stamp, M.: Convolutional neural networks and extreme learning machines for malware classification. J. Comput. Virol.Hacking Tech. 16(3), 229\u2013244 (2020). https:\/\/doi.org\/10.1007\/s11416-020-00354-y","journal-title":"J. Comput. Virol.Hacking Tech."},{"key":"699_CR31","doi-asserted-by":"publisher","unstructured":"Kim, J., Kim, T.G., Im, E.G.: Structural information based malicious app similarity calculation and clustering. In: Proceedings of the 2015 Conference on research in adaptive and convergent systems, 2015, pp. 314\u2013318. https:\/\/doi.org\/10.1145\/2811411.2811545","DOI":"10.1145\/2811411.2811545"},{"key":"699_CR32","doi-asserted-by":"publisher","unstructured":"Schultz, M. G., Eskin, E., Zadok, E. et al.: Data mining methods for detection of new malicious executables. In: Proceedings 2001 IEEE Symposium on Security and Privacy, IEEE, 2001, pp. 38\u201349. https:\/\/doi.org\/10.1109\/SECPRI.2001.924286","DOI":"10.1109\/SECPRI.2001.924286"},{"key":"699_CR33","doi-asserted-by":"publisher","unstructured":"Nataraj, L., Karthikeyan, S., Jacob, G. et al.: Malware images: visualization and automatic classification. In: Proceedings of the 8th international symposium on visualization for cyber security, 2011, pp. 1\u20137. https:\/\/doi.org\/10.1145\/2016904.2016908","DOI":"10.1145\/2016904.2016908"},{"key":"699_CR34","doi-asserted-by":"publisher","unstructured":"Nataraj, L., Yegneswaran, V., Porras, P. et al.: A comparative assessment of malware classification using binary texture analysis and dynamic analysis. In: Proceedings of the 4th ACM Workshop on Security and Artificial Intelligence, 2011, pp. 21\u201330. https:\/\/doi.org\/10.1145\/2046684.2046689","DOI":"10.1145\/2046684.2046689"},{"key":"699_CR35","doi-asserted-by":"publisher","unstructured":"Zhao, H.L., Xu, M., Zheng, N. et al.: Malicious executables classification based on behavioral factor analysis. In: 2010 International Conference on e-Education, e-Business, e-Management and e-Learning, IEEE, 2010, pp. 502\u2013506.doi: https:\/\/doi.org\/10.1109\/IC4E.2010.78","DOI":"10.1109\/IC4E.2010.78"},{"key":"699_CR36","doi-asserted-by":"publisher","unstructured":"Uppal, D., Sinha, R., Mehra, V. et al.: Exploring behavioral aspects of API calls for malware identification and categorization. In: 2014 International Conference on Computational Intelligence and Communication Networks, IEEE, 2014, pp. 824\u2013828. https:\/\/doi.org\/10.1109\/CICN.2014.176","DOI":"10.1109\/CICN.2014.176"},{"key":"699_CR37","doi-asserted-by":"publisher","first-page":"99","DOI":"10.1016\/j.comnet.2019.04.007","volume":"157","author":"XF Lu","year":"2019","unstructured":"Lu, X.F., Jiang, F.S., Zhou, X., et al.: ASSCA: API sequence and statistics features combined architecture for malware detection. Comput. Netw. 157, 99\u2013111 (2019). https:\/\/doi.org\/10.1016\/j.comnet.2019.04.007","journal-title":"Comput. Netw."},{"key":"699_CR38","doi-asserted-by":"publisher","unstructured":"Cakir, B., Dogdu, E.: Malware classification using deep learning methods. In: Proceedings of the ACMSE 2018 Conference, 2018, pp. 1\u20135. https:\/\/doi.org\/10.1145\/3190645.3190692","DOI":"10.1145\/3190645.3190692"},{"key":"699_CR39","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1109\/SSDSE.2017.8071952","volume":"2017","author":"I Popov","year":"2017","unstructured":"Popov, I.: Malware detection using machine learning based on word2vec embeddings of machine code instructions.In 2017: Siberian symposium on data science and engineering (SSDSE). IEEE 2017, 1\u20134 (2017). https:\/\/doi.org\/10.1109\/SSDSE.2017.8071952","journal-title":"IEEE"},{"key":"699_CR40","doi-asserted-by":"publisher","unstructured":"Pascanu, R., Stokes, J. W., Sanossian, H. et al.: Malware classification with recurrent networks. In: 2015 IEEE International Conference on Acoustics, Speech and Signal Processing (ICASSP), IEEE, 2015, pp.1916\u20131920. https:\/\/doi.org\/10.1109\/ICASSP.2015.7178304.","DOI":"10.1109\/ICASSP.2015.7178304"},{"key":"699_CR41","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1016\/j.ins.2020.05.026","volume":"535","author":"S Jeon","year":"2020","unstructured":"Jeon, S., Moon, J.: Malware-detection method with a convolutional recurrent neural network using opcode sequences. Inf. Sci. 535, 1\u201315 (2020). https:\/\/doi.org\/10.1016\/j.ins.2020.05.026","journal-title":"Inf. Sci."},{"key":"699_CR42","doi-asserted-by":"publisher","unstructured":"David, O.E., Netanyahu, N.S.: DeepSign: Deep learning for automatic malware signature generation and classification. In: Proceedings of the 2015 International Joint Conference on Neural Networks, IEEE, 2015. https:\/\/doi.org\/10.1109\/IJCNN.2015.7280815","DOI":"10.1109\/IJCNN.2015.7280815"},{"key":"699_CR43","unstructured":"Hardy, W., Chen, L.W., Hou, S. F. et al.: DL4MD: A deep learning framework for intelligent malware detection.In: Proceedings of the International Conference on Data Science (ICDATA), 2016. URL:https:\/\/www.covert.io\/research-papers\/deep-learning-security\/DL4MD\u2014A Deep Learning Framework for Intelligent Malware Detection.pdf"},{"key":"699_CR44","doi-asserted-by":"publisher","first-page":"83","DOI":"10.1016\/j.ins.2018.04.092","volume":"460","author":"JY Kim","year":"2018","unstructured":"Kim, J.Y., Bu, S.J., Cho, S.B.: Zero-day malware detection using transferred generative adversarial networks based on deep autoencoders. Inf. Sci. 460, 83\u2013102 (2018). https:\/\/doi.org\/10.1016\/j.ins.2018.04.092","journal-title":"Inf. Sci."},{"key":"699_CR45","doi-asserted-by":"publisher","unstructured":"Wang, S., Philip, S.Y.: Heterogeneous graph matching networks: application to unknown malware detection. In: 2019 IEEE International Conference on Big Data (Big Data), 2019, pp. 5401\u20135408 https:\/\/doi.org\/10.1109\/BigData47090.2019.9006464.","DOI":"10.1109\/BigData47090.2019.9006464"},{"key":"699_CR46","doi-asserted-by":"publisher","unstructured":"Chen, K., Liu, P., Zhang, Y.J.: Achieving accuracy and scalability simultaneously in detecting application clones on Android markets. In: Proceedings of the 36th International Conference on Software Engineering (ICSE 2014), 2014, pp.175\u2013186. https:\/\/doi.org\/10.1145\/2568225.2568286","DOI":"10.1145\/2568225.2568286"},{"key":"699_CR47","doi-asserted-by":"publisher","first-page":"1772","DOI":"10.1109\/TIFS.2017.2687880","volume":"12","author":"M Fan","year":"2017","unstructured":"Fan, M., Liu, J., Wang, W., et al.: DAPASA: detecting android piggybacked apps through sensitive subgraph analysis. IEEE Trans. Inf. Foren. Secur. 12, 1772\u20131785 (2017). https:\/\/doi.org\/10.1109\/TIFS.2017.2687880","journal-title":"IEEE Trans. Inf. Foren. Secur."},{"key":"699_CR48","doi-asserted-by":"publisher","first-page":"1890","DOI":"10.1109\/TIFS.2018.2806891","volume":"13","author":"M Fan","year":"2018","unstructured":"Fan, M., et al.: Android malware familial classification and representative sample selection via frequent subgraph analysis. IEEE Trans. Inf. Foren. Secur. 13, 1890\u20131905 (2018). https:\/\/doi.org\/10.1109\/TIFS.2018.2806891","journal-title":"IEEE Trans. Inf. Foren. Secur."},{"key":"699_CR49","doi-asserted-by":"publisher","first-page":"646","DOI":"10.1109\/ICACCCT.2016.7831719","volume":"2016","author":"A Yewale","year":"2016","unstructured":"Yewale, A., Singh, M.: Malware detection based on opcode frequency. Int. Conf. Adv. Commun. Control Comput. Technol. (ICACCCT) 2016, 646\u2013649 (2016). https:\/\/doi.org\/10.1109\/ICACCCT.2016.7831719","journal-title":"Int. Conf. Adv. Commun. Control Comput. Technol. (ICACCCT)"},{"key":"699_CR50","doi-asserted-by":"publisher","first-page":"102264","DOI":"10.1016\/j.cose.2021.102264","volume":"106","author":"H Gao","year":"2021","unstructured":"Gao, H., Cheng, S., Zhang, W.: GDroid: Android malware detection and classification with graph convolutional network. Comput. Secur. 106, 102264 (2021). https:\/\/doi.org\/10.1016\/j.cose.2021.102264","journal-title":"Comput. Secur."},{"key":"699_CR51","doi-asserted-by":"publisher","first-page":"15","DOI":"10.1016\/j.eswa.2018.06.012","volume":"112","author":"A Khalilian","year":"2018","unstructured":"Khalilian, A., Nourazar, A., Vahidi-Asl, M., et al.: G3MD: Mining frequent opcode sub-graphs for metamorphic malware detection of existing families. Expert Syst. Appl. 112, 15\u201333 (2018). https:\/\/doi.org\/10.1016\/j.eswa.2018.06.012","journal-title":"Expert Syst. Appl."},{"key":"699_CR52","doi-asserted-by":"publisher","unstructured":"Aghakhani, H., Gritti, F., Mecca, F. et al.: When malware is Packin' heat; limits of machine learning classifiers based on static analysis features. In: Network and Distributed System Security Symposium 2020, 2020. https:\/\/doi.org\/10.14722\/ndss.2020.24310","DOI":"10.14722\/ndss.2020.24310"},{"key":"699_CR53","doi-asserted-by":"publisher","unstructured":"Sebasti\u00e1n, M., Rivera, R., Kotzias, P., Caballero, J.:. AVclass: A tool for massive malware labeling. International Symposium on Research in Attacks, Intrusions, and Defenses, 2016, pp.230\u2013253. https:\/\/doi.org\/10.1007\/978-3-319-45719-2_11","DOI":"10.1007\/978-3-319-45719-2_11"},{"key":"699_CR54","doi-asserted-by":"publisher","unstructured":"Afianian, A., Niksefat, S., Sadeghiyan, B., Baptiste, D.: Malware dynamic analysis evasion techniques: a survey. ACM Computing Surveys ,2019, pp.1\u201328 .https:\/\/doi.org\/10.1145\/3365001","DOI":"10.1145\/3365001"},{"key":"699_CR55","doi-asserted-by":"publisher","unstructured":"Kyriakos K. Ispoglou and Mathias Payer.MalWASH: washing malware to evade dynamic analysis.In: Proceedings of the 10th USENIX Conference on Offensive Technologies, 2016, pp.106\u2013117.https:\/\/dl.acm.org\/doi\/https:\/\/doi.org\/10.5555\/3027019.3027029","DOI":"10.5555\/3027019.3027029"}],"container-title":["International Journal of Information Security"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s10207-023-00699-7.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/article\/10.1007\/s10207-023-00699-7\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s10207-023-00699-7.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2023,9,26]],"date-time":"2023-09-26T02:09:11Z","timestamp":1695694151000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/s10207-023-00699-7"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,5,14]]},"references-count":55,"journal-issue":{"issue":"5","published-print":{"date-parts":[[2023,10]]}},"alternative-id":["699"],"URL":"https:\/\/doi.org\/10.1007\/s10207-023-00699-7","relation":{},"ISSN":["1615-5262","1615-5270"],"issn-type":[{"value":"1615-5262","type":"print"},{"value":"1615-5270","type":"electronic"}],"subject":[],"published":{"date-parts":[[2023,5,14]]},"assertion":[{"value":"12 April 2023","order":1,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"14 May 2023","order":2,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}},{"order":1,"name":"Ethics","group":{"name":"EthicsHeading","label":"Declarations"}},{"value":"The authors declare that they have no known competing financial interests or personal relationships that could have appeared to influence the work reported in this paper.","order":2,"name":"Ethics","group":{"name":"EthicsHeading","label":"Conflict of interest"}}]}}