PhD Title " Heuristic Feature based Quantification Framework for Efficient malware detection”
The evolution of malware detection remains a challenge for the security community. Syntactic signatures have been used by antivirus and anti-malware to detect malware using known program structure. However, syntactic signatures have not proved efficient in detecting obfuscated malware and volume of malware discovered daily keeps growing exponentially. Automated analysis has become important in malware analysis and detection. The focus of this research is to suggest a new heuristic approach to malware analysis and score for more efficient malware detection..
Malware, Botnets, Malware Detection and Analysis, honeypots, Cyber Security, Network Performance, Mobile Communication Systems, Network Modelling, Cognitive Radio
I have worked with static malware analysis tools to examine PE type files to correlate indicators of compromise that I called fingerprints, which I collected to show statistically. The Work was presented at UKPEW 2015 Workshop held at the University of Leeds. Further exploration of some of the static analysis methods and signatures allowed me to propose a new approach towards combining the various file hashes used in malware classification for better detection rates and my work was presented at and published by Ficloud2016.
I am also currently working within my research group to set up a Unified Cyber Threat Analysis and Management Framework for our Cyber Security Research Centre with the assistance of the University technical support team.
- Namanya, A.P; Pagna-Disso, J (2013): Performance modelling and analysis of the delay aware routing metric in Cognitive Radio Ad Hoc networks; Wireless and Mobile Networking Conference (WMNC), 2013 6th Joint IFIP , vol., no., pp.1,8, 23-25 April 2013, Dubai, UAE.
- Namanya,A.P; Pagna-Disso, J; Awan, I (2015): Evaluation of automated static analysis tools for malware detection in Portable Executable files; UK Performance Engineering Workshop(UKPEW), 2015 31st UKPEW, pp. 81-95, 17 Sept 2015, University of Leeds, UK.
- Namanya, A.P; Mirza, Q.K.A; Al-Mohannadi, H; Pagna-Disso, J; Awan,I (2016): Detection of Malicious Portable Executables using Evidence Combinational Theory with Fuzzy Hashing; Future Internet of Things and Cloud (FiCloud2016), 2016 IEEE 4th International Conference , 22-24 August 2016, Vienna, Austria.
- Al-Mohannadi, H; Mirza, Q.K.A; Namanya, A.P; Pagna-Disso, J; Awan,I (2016): Cyber-Attack Modeling Analysis Techniques: An Overview; Future Internet of Things and Cloud Workshops (W-FiCloud2016), 2016 IEEE 4th International Conference , 22-24 August 2016, Vienna, Austria.
· Namanya,A.P; Pagna-Disso, J, Awan, I (2015): A framework for automated hybrid signature generation for Portable Executable malware detection; Poster presented at the ACM-W UK Inspire 2015 Celebration of Women in Computing. Imperial College, London, UK – Awarded 2nd Prize in Best Poster Award.