{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,18]],"date-time":"2026-02-18T22:59:42Z","timestamp":1771455582639,"version":"3.50.1"},"reference-count":42,"publisher":"Springer Science and Business Media LLC","issue":"1","license":[{"start":{"date-parts":[[2023,8,19]],"date-time":"2023-08-19T00:00:00Z","timestamp":1692403200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2023,8,19]],"date-time":"2023-08-19T00:00:00Z","timestamp":1692403200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["Evolving Systems"],"published-print":{"date-parts":[[2024,2]]},"DOI":"10.1007\/s12530-023-09534-9","type":"journal-article","created":{"date-parts":[[2023,8,19]],"date-time":"2023-08-19T10:06:59Z","timestamp":1692439619000},"page":"41-56","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":14,"title":["A deep learning approach for host-based cryptojacking malware detection"],"prefix":"10.1007","volume":"15","author":[{"given":"Olanrewaju","family":"Sanda","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-9135-2340","authenticated-orcid":false,"given":"Michalis","family":"Pavlidis","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Nikolaos","family":"Polatidis","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2023,8,19]]},"reference":[{"key":"9534_CR1","doi-asserted-by":"publisher","unstructured":"Ahmad A, Shafiuddin W, Kama MN, Saudi MM (2019) A New Cryptojacking Malware Classifier Model Based on Dendritic Cell Algorithm. ACM International Conference Proceeding Series, 0\u20134. https:\/\/doi.org\/10.1145\/3387168.3387218","DOI":"10.1145\/3387168.3387218"},{"key":"9534_CR2","unstructured":"Anderson HS, Roth P (2018) EMBER: An Open Dataset for Training Static PE Malware Machine Learning Models. http:\/\/arxiv.org\/abs\/1804.04637"},{"key":"9534_CR3","doi-asserted-by":"publisher","unstructured":"Anjum MM, Iqbal S, Hamelin B (2022) ANUBIS: A Provenance Graph-Based Framework for Advanced Persistent Threat Detection. Proceedings of the ACM Symposium on Applied Computing, 1684\u20131693. https:\/\/doi.org\/10.1145\/3477314.3507097","DOI":"10.1145\/3477314.3507097"},{"issue":"23","key":"9534_CR4","doi-asserted-by":"publisher","first-page":"1","DOI":"10.3390\/s22239219","volume":"22","author":"FA Aponte-Novoa","year":"2022","unstructured":"Aponte-Novoa FA, Povedano \u00c1lvarez D, Villanueva-Polanco R, Sandoval Orozco AL, Garc\u00eda Villalba LJ (2022) On detecting cryptojacking on websites: revisiting the use of classifiers. Sensors 22(23):1\u201315. https:\/\/doi.org\/10.3390\/s22239219","journal-title":"Sensors"},{"key":"9534_CR5","doi-asserted-by":"crossref","unstructured":"Arp D, Spreitzenbarth M, H\u00fcbner M, Gascon H, Rieck K (2014) Drebin: Effective and Explainable Detection of Android Malware in Your Pocket.","DOI":"10.14722\/ndss.2014.23247"},{"key":"9534_CR6","unstructured":"Barbhuiya S, Papazachos Z, Kilpatrick P, Nikolopoulos DS (2018) RADS: Real-time Anomaly Detection System for Cloud Data Centres. 1\u201314.\u00a0http:\/\/arxiv.org\/abs\/1811.04481"},{"key":"9534_CR7","unstructured":"Benyo M (2023) Evasive cryptojacking malware targeting macOS found lurking in pirated applications. https:\/\/www.jamf.com\/blog\/cryptojacking-macos-malware-discovered-by-jamf-threat-labs\/. Last Accessed on the 3rd March 2023."},{"key":"9534_CR8","unstructured":"Bernstein L (1997) 2022 Sonicwall Cyber Threat Report. 5(2), 105\u2013107.https:\/\/www.infopoint-security.de\/media\/2022-sonicwall-cyber-threat-report.pdf"},{"key":"9534_CR9","unstructured":"Bosco F, Shalaginov A, Office for Harmonization in the Internal Market (Trade Marks and Designs) (2018) (n.d.). Identification and analysis of malware on selected suspected copyright-infringing websites"},{"key":"9534_CR10","doi-asserted-by":"publisher","unstructured":"Caprolu M, Raponi S, Oligeri G, Di Pietro R (2019) Cryptomining makes noise: a machine learning approach for cryptojacking detection. https:\/\/doi.org\/10.1016\/j.comcom.2021.02.016","DOI":"10.1016\/j.comcom.2021.02.016"},{"issue":"2","key":"9534_CR11","doi-asserted-by":"publisher","first-page":"16","DOI":"10.1109\/MSEC.2019.2920585","volume":"18","author":"D Carlin","year":"2020","unstructured":"Carlin D, Burgess J, O\u2019Kane P, Sezer S (2020) You Could Be Mine(d): the rise of cryptojacking. IEEE Secur Priv 18(2):16\u201322. https:\/\/doi.org\/10.1109\/MSEC.2019.2920585","journal-title":"IEEE Secur Priv"},{"key":"9534_CR12","unstructured":"CICDS2017 (2020) Intrusion Detection Evaluation Dataset. Available at: https:\/\/www.kaggle.com\/datasets\/cicdataset\/cicids2017\/code. Last Accessed 16th May 2023"},{"key":"9534_CR13","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2019.101568","author":"L Connolly","year":"2019","unstructured":"Connolly L, Wall DS (2019) The rise of crypto-ransomware in a changing cybercrime landscape: taxonomising countermeasures. Comput Secur. https:\/\/doi.org\/10.1016\/j.cose.2019.101568","journal-title":"Comput Secur"},{"issue":"2","key":"9534_CR14","doi-asserted-by":"publisher","first-page":"293","DOI":"10.1007\/s10723-020-09510-6","volume":"18","author":"H Darabian","year":"2020","unstructured":"Darabian H, Homayounoot S, Dehghantanha A, Hashemi S, Karimipour H, Parizi RM, Choo KKR (2020) Detecting cryptomining malware: a deep learning approach for static and dynamic analysis. J Grid Comput 18(2):293\u2013303. https:\/\/doi.org\/10.1007\/s10723-020-09510-6","journal-title":"J Grid Comput"},{"key":"9534_CR15","unstructured":"Frinconi P (2023) The state of cryptojacking in the first three quarters of 2022. https:\/\/securelist.com\/cryptojacking-report-2022\/107898\/. Last Accessed: 23rd January 2023"},{"key":"9534_CR16","doi-asserted-by":"publisher","unstructured":"Gangwal A, Piazzetta SG, Lain G, Conti M (2020) Detecting covert cryptomining using HPC. Lecture Notes in Computer Science (Including Subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), 12579 LNCS, 344\u2013364. https:\/\/doi.org\/10.1007\/978-3-030-65411-5_17","DOI":"10.1007\/978-3-030-65411-5_17"},{"key":"9534_CR17","doi-asserted-by":"publisher","unstructured":"Gomes F, Correia M (2020) Cryptojacking Detection with CPU Usage Metrics. 2020 IEEE 19th International Symposium on Network Computing and Applications, NCA 2020. https:\/\/doi.org\/10.1109\/NCA51143.2020.9306696","DOI":"10.1109\/NCA51143.2020.9306696"},{"key":"9534_CR18","doi-asserted-by":"publisher","unstructured":"Gomes G, Dias L, Correia M (2020) CryingJackpot: Network Flows and Performance Counters against Cryptojacking. 2020 IEEE 19th International Symposium on Network Computing and Applications, NCA 2020. https:\/\/doi.org\/10.1109\/NCA51143.2020.9306698","DOI":"10.1109\/NCA51143.2020.9306698"},{"key":"9534_CR19","doi-asserted-by":"publisher","DOI":"10.3390\/app12073234","author":"A Hernandez-Suarez","year":"2022","unstructured":"Hernandez-Suarez A, Sanchez-Perez G, Toscano-Medina LK, Olivares-Mercado J, Portillo-Portilo J, Avalos JG, Villalba LJG (2022) Detecting cryptojacking web threats: an approach with autoencoders and deep dense neural networks. Appl Sci (switzerland). https:\/\/doi.org\/10.3390\/app12073234","journal-title":"Appl Sci (switzerland)"},{"key":"9534_CR20","unstructured":"ImpactCyberTrust (2019) Contagio Malware Dump. Available at: https:\/\/www.impactcybertrust.org\/dataset_view?idDataset=1273. Last Accessed 16th of May 2023."},{"key":"9534_CR21","doi-asserted-by":"publisher","first-page":"100","DOI":"10.1145\/3379310.3379323","volume":"115","author":"K Jayasinghe","year":"2020","unstructured":"Jayasinghe K, Poravi G (2020) A survey of attack instances of cryptojacking targeting cloud infrastructure. ACM Int Conf Proc Series 115:100\u2013107. https:\/\/doi.org\/10.1145\/3379310.3379323","journal-title":"ACM Int Conf Proc Series"},{"key":"9534_CR22","doi-asserted-by":"publisher","DOI":"10.3390\/app13042039","author":"MH Khan Abbasi","year":"2023","unstructured":"Khan Abbasi MH, Ullah S, Ahmad T, Buriro A (2023) A real-time hybrid approach to combat in-browser cryptojacking malware. Appl Sci (switzerland). https:\/\/doi.org\/10.3390\/app13042039","journal-title":"Appl Sci (switzerland)"},{"issue":"2","key":"9534_CR23","doi-asserted-by":"publisher","first-page":"126","DOI":"10.1109\/LCA.2020.3017457","volume":"19","author":"N Lachtar","year":"2020","unstructured":"Lachtar N, Elkhail AA, Bacha A, Malik H (2020) A cross-stack approach towards defending against cryptojacking. IEEE Comput Archit Lett 19(2):126\u2013129. https:\/\/doi.org\/10.1109\/LCA.2020.3017457","journal-title":"IEEE Comput Archit Lett"},{"issue":"1","key":"9534_CR24","doi-asserted-by":"publisher","first-page":"15","DOI":"10.1007\/s10207-014-0248-7","volume":"14","author":"A Nappa","year":"2015","unstructured":"Nappa A, Rafique MZ, Caballero J (2015) The MALICIA dataset: identification and analysis of drive-by download operations. Int J Inf Secur 14(1):15\u201333. https:\/\/doi.org\/10.1007\/s10207-014-0248-7","journal-title":"Int J Inf Secur"},{"key":"9534_CR25","doi-asserted-by":"publisher","unstructured":"Naseem F, Aris A, Babun L, Tekiner E, Uluagac AS (2021) MINOS: a Lightweight Real-Time Cryptojacking Detection System. Proceedings 2021 Network and Distributed System Security Symposium (NDSS), February, 1\u201315. https:\/\/doi.org\/10.14722\/ndss.2021.24444","DOI":"10.14722\/ndss.2021.24444"},{"key":"9534_CR26","unstructured":"Norman Xavier S, Sahni V (2020) Machine Learning Approaches to Detect Browser-Based Cryptomining MSc Internship MSc in Cyber Security Machine Learning Approaches to Detect Browser-Based Cryptomining. https:\/\/www.cyberthreatalliance.org\/wp-content\/uploads\/2018\/09\/CTA-Illicit-CryptoMining-"},{"key":"9534_CR27","unstructured":"Petrov I, Invernizzi L, Bursztein E (2020) CoinPolice: Detecting Hidden Cryptojacking Attacks with Neural Networks. http:\/\/arxiv.org\/abs\/2006.10861"},{"key":"9534_CR28","doi-asserted-by":"publisher","unstructured":"Razali MA, Mohd Shariff S (2019) CMblock: In-browser detection and prevention cryptojacking tool using blacklist and behavior-based detection method. Lecture Notes in Computer Science (Including Subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), 11870 LNCS (October 2019), 404\u2013414. https:\/\/doi.org\/10.1007\/978-3-030-34032-2_36","DOI":"10.1007\/978-3-030-34032-2_36"},{"key":"9534_CR29","doi-asserted-by":"publisher","unstructured":"Romano A, Zheng Y, Wang W (2020) MinerRay: Semantics-Aware Analysis for Ever-Evolving Cryptojacking Detection. Proceedings\u20142020 35th IEEE\/ACM International Conference on Automated Software Engineering, ASE 2020, 1129\u20131140. https:\/\/doi.org\/10.1145\/3324884.3416580","DOI":"10.1145\/3324884.3416580"},{"key":"9534_CR30","unstructured":"Saad M, Khormali A, Mohaisen A (2018) End-to-End Analysis of In-Browser Cryptojacking. http:\/\/arxiv.org\/abs\/1809.02152"},{"key":"9534_CR31","doi-asserted-by":"crossref","unstructured":"Sanda O, Pavlidis M, Polatidis N (2022) A Regulatory Readiness Assessment Framework for Blockchain Adoption in Healthcare. 65\u201387","DOI":"10.3390\/digital2010005"},{"issue":"3","key":"9534_CR32","doi-asserted-by":"publisher","first-page":"175","DOI":"10.36548\/jtcsst.2022.3.006","volume":"4","author":"SS Sivaraju","year":"2022","unstructured":"Sivaraju SS (2022) An insight into deep learning based cryptojacking detection model. J Trends Comput Sci Smart Technol 4(3):175\u2013184. https:\/\/doi.org\/10.36548\/jtcsst.2022.3.006","journal-title":"J Trends Comput Sci Smart Technol"},{"key":"9534_CR33","unstructured":"Skybox security (2021) Cryptomining is hottest new malware type, research reveals. https:\/\/www.skyboxsecurity.com\/blog\/cryptomining-hottest-new-malware-type-research-reveals\/ Last Accessed 17th Febuary 2023"},{"key":"9534_CR34","unstructured":"SonicWall (2023) Latest Threat Intelligence Reveals Rising Tide of Cryptojacking. Available at:\u00a0Latest Threat Intelligence Reveals Rising Tide of Cryptojacking (Accessed 6 April 2023)"},{"key":"9534_CR35","doi-asserted-by":"publisher","unstructured":"Tanana D (2020) Behavior-Based Detection of Cryptojacking Malware. Proceedings\u20142020 Ural Symposium on Biomedical Engineering, Radioelectronics and Information Technology, USBEREIT 2020, 543\u2013545. https:\/\/doi.org\/10.1109\/USBEREIT48449.2020.9117732","DOI":"10.1109\/USBEREIT48449.2020.9117732"},{"issue":"4","key":"9534_CR36","doi-asserted-by":"publisher","first-page":"800","DOI":"10.3390\/jcp2040041","volume":"2","author":"U-H Tayyab","year":"2022","unstructured":"Tayyab U-H, Khan FB, Durad MH, Khan A, Lee YS (2022) A survey of the recent trends in deep learning based malware detection. J Cybersecurity Privacy 2(4):800\u2013829. https:\/\/doi.org\/10.3390\/jcp2040041","journal-title":"J Cybersecurity Privacy"},{"key":"9534_CR37","doi-asserted-by":"publisher","unstructured":"Tekiner E, Acar A, Uluagac AS, Kirda E, Selcuk AA (2021) SoK: Cryptojacking malware. Proceedings\u20142021 IEEE European Symposium on Security and Privacy, Euro S and P 2021, September, 120\u2013139. https:\/\/doi.org\/10.1109\/EuroSP51992.2021.00019","DOI":"10.1109\/EuroSP51992.2021.00019"},{"key":"9534_CR38","unstructured":"Toulas B (2022) Google Chrome extension used to steal cryptocurrency and passwords. https:\/\/www.bleepingcomputer.com\/news\/security\/google-chrome-extension-used-to-steal-cryptocurrency-passwords\/. Last Accessed: 23rd January 2023"},{"key":"9534_CR39","doi-asserted-by":"publisher","unstructured":"Varlioglu S, Gonen B, Ozer M, Bastug M (2020) Is cryptojacking dead after coinhive shutdown? Proceedings\u20143rd International Conference on Information and Computer Technologies, ICICT 2020, 385\u2013389. https:\/\/doi.org\/10.1109\/ICICT50521.2020.00068","DOI":"10.1109\/ICICT50521.2020.00068"},{"key":"9534_CR40","doi-asserted-by":"publisher","unstructured":"Varlioglu S, Elsayed N, Elsayed Z, Ozer M (2022) The Dangerous Combo: Fileless Malware and Cryptojacking. Conference Proceedings\u2014IEEE SOUTHEASTCON, 2022-March, 125\u2013132. https:\/\/doi.org\/10.1109\/SoutheastCon48659.2022.9764043","DOI":"10.1109\/SoutheastCon48659.2022.9764043"},{"key":"9534_CR41","doi-asserted-by":"publisher","DOI":"10.1016\/j.dcan.2022.04.030","author":"G Xu","year":"2022","unstructured":"Xu G, Dong W, Xing J, Lei W, Liu J, Gong L, Feng M, Zheng X, Liu S (2022) Delay-CJ: a novel cryptojacking covert attack method based on delayed strategy and its detection. Digital Commun Netw. https:\/\/doi.org\/10.1016\/j.dcan.2022.04.030","journal-title":"Digital Commun Netw"},{"key":"9534_CR42","unstructured":"Zvelo (2018) Cryptojacking Infection Methods: Identification and Prevention Tips. Available at: https:\/\/zvelo.com\/cryptojacking-infection-methods-identification-prevention-tips\/ (Last Accessed: 15th June 2023)"}],"container-title":["Evolving Systems"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s12530-023-09534-9.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/article\/10.1007\/s12530-023-09534-9\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s12530-023-09534-9.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,1,31]],"date-time":"2024-01-31T12:37:16Z","timestamp":1706704636000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/s12530-023-09534-9"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,8,19]]},"references-count":42,"journal-issue":{"issue":"1","published-print":{"date-parts":[[2024,2]]}},"alternative-id":["9534"],"URL":"https:\/\/doi.org\/10.1007\/s12530-023-09534-9","relation":{},"ISSN":["1868-6478","1868-6486"],"issn-type":[{"value":"1868-6478","type":"print"},{"value":"1868-6486","type":"electronic"}],"subject":[],"published":{"date-parts":[[2023,8,19]]},"assertion":[{"value":"19 May 2023","order":1,"name":"received","label":"Received","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"1 August 2023","order":2,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"19 August 2023","order":3,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}},{"order":1,"name":"Ethics","group":{"name":"EthicsHeading","label":"Declarations"}},{"value":"The authors declare that they have no conflict of interest.","order":2,"name":"Ethics","group":{"name":"EthicsHeading","label":"Conflict of interest"}}]}}