EGAN: Evolutional GAN for Ransomware Evasion
Commey, Daniel, Appiah, Benjamin, Frimpong, Bill K., Osei, Isaac, Hammond, Ebenezer N. A., Crosby, Garth V.
–arXiv.org Artificial Intelligence
Adversarial Training is a proven defense strategy against adversarial malware. However, generating adversarial malware samples for this type of training presents a challenge because the resulting adversarial malware needs to remain evasive and functional. This work proposes an attack framework, EGAN, to address this limitation. EGAN leverages an Evolution Strategy and Generative Adversarial Network to select a sequence of attack actions that can mutate a Ransomware file while preserving its original functionality. We tested this framework on popular AI-powered commercial antivirus systems listed on VirusTotal and demonstrated that our framework is capable of bypassing the majority of these systems. Moreover, we evaluated whether the EGAN attack framework can evade other commercial non-AI antivirus solutions. Our results indicate that the adversarial ransomware generated can increase the probability of evading some of them.
arXiv.org Artificial Intelligence
May-20-2024
- Country:
- North America
- United States
- Texas > Brazos County
- College Station (0.04)
- New York > New York County
- New York City (0.04)
- Louisiana > Orleans Parish
- New Orleans (0.04)
- California
- Santa Clara County > Palo Alto (0.04)
- San Diego County > San Diego (0.04)
- Texas > Brazos County
- Puerto Rico > Fajardo
- Fajardo (0.04)
- Canada
- United States
- Europe
- Asia > Indonesia
- Bali (0.04)
- Africa > Ghana
- North America
- Genre:
- Research Report > New Finding (0.66)
- Industry:
- Information Technology > Security & Privacy (1.00)
- Technology: