Answered step by step
Verified Expert Solution
Question
1 Approved Answer
(b) Malware shared code analysis. You are given a dataset of malicious binaries coming from different advanced persistent threat (APT) groups. The task you
(b) Malware shared code analysis. You are given a dataset of malicious binaries coming from different advanced persistent threat (APT) groups. The task you are given is to cluster the binaries into homogeneous groups, where each cluster should include all (and only) the binaries created from the same APT group. i. Describe a possible approach to analyse all these binaries for similarity. In your answer describe the features and metrics you would use to measure the similarity across samples, how the binaries would be represented, and pros and cons of this approach. (6 marks] i. Describe a strategy to cluster these binaries using the similarity metrics. [3 marks] Note: in your answers to 3(b)i and 3(b)ii. you are not supposed to use any machine learning technique or algorithm.
Step by Step Solution
There are 3 Steps involved in it
Step: 1
Get Instant Access to Expert-Tailored Solutions
See step-by-step solutions with expert insights and AI powered tools for academic success
Step: 2
Step: 3
Ace Your Homework with AI
Get the answers you need in no time with our AI-driven, step-by-step assistance
Get Started
Introduction to Data Mining
Authors: Pang Ning Tan, Michael Steinbach, Vipin Kumar
1st edition
321321367, 978-0321321367
