Security and Communication Networks

Research Article

Real-Time Malware Process Detection and Automated Process Killing

Table 3

Malware families with more than 10 samples in the dataset. 315 families were represented in the dataset, with 27 having being represented more than 10 times. Basic description provided which does not cover the wide range of behaviours carried out by some malware families but is intended to indicate the range of behaviours in the top 27 families included in the dataset.


Malware family	# Train set	# Test set	Total	Description

Startsurf	66	273	339	Adware
Fareit	33	222	255	Spyware
Vigram	23	212	235	Adware
Winwrapper	78	8	86	PUA
Downloadguide	15	59	74	Adware
Gandcrab	5	54	59	Ransomware
Emotet	12	46	58	Credstealer
Chapak	4	37	41	Installer
Virut	30	2	32	Backdoor
Installmonster	12	18	30	Installer
Noon	8	22	30	Spyware
Gamarue	11	18	29	Backdoor
Razy	7	16	23	Crypto stealer
Zeroaccess	23	0	23	Rootkit
Soft32downloader	5	22	23	Installer
Appster	7	15	22	PUA
Prepscram	1	20	21	Installer
Zusy	2	19	21	Spyware
Darkkomet	17	1	18	RAT
Adposhel	4	14	16	Adware
Swrort	13	0	13	Backdoor
Slugin	13	0	13	Installer
Vobfus	11	2	13	Installer
Speedingupmypc	1	11	12	Adware
Relevantknowledge	5	6	11	Adware
Kuaizip	4	7	11	PUA
Bladabindi	7	4	11	Backdoor

Other (10 instances)	377	260	602	—

# Other families (10 instances)	184	154	288	—

Unknown	333	291	671	—

Total	1,137	1,655	2,792	—