@inproceedings{0bffe959800e46328455a6d989fd2784,
title = "A Hybrid Machine Learning Model for Windows Malware Detection and Classification",
abstract = "This paper proposes a machine-learning model using static and dynamic features to identify Windows malware. The paper uses a new dataset of 12158 Portable Executable PE files for the Windows operating system, 5936 malicious files belonging to nine malware families, and 6,222 benign files. The main features of the files were extracted based on Application Programming Interface (API) by three main known methods: Static using Python, Dynamic by Cuckoo Sandbox, and finally, Hybrid by combining them to check which way is more effective and accurate in detecting malicious files. The proposed model performs binary and multiclass classification to classify malicious files into nine types. The experiments show that Extra-Trees outperformed other classifiers, achieving an accuracy of 100\% in binary classification and 97\% in multiclass classification.",
keywords = "API calls, Dynamic analysis, Machine learning, Malware detection, PE files",
author = "Elayan, \{Omar N.\} and Yaseen, \{Qussai M.\} and Shatnawi, \{Ahmed S.\}",
note = "Publisher Copyright: {\textcopyright} The Author(s), under exclusive license to Springer Nature Singapore Pte Ltd. 2026.; 10th International Conference on Information and Communication Technology for Intelligent Systems, ICTIS 2025 ; Conference date: 23-05-2025 Through 24-05-2025",
year = "2026",
doi = "10.1007/978-981-95-1365-9\_13",
language = "English",
isbn = "9789819513642",
series = "Smart Innovation, Systems and Technologies",
publisher = "Springer Science and Business Media Deutschland GmbH",
pages = "167--180",
editor = "Jyoti Choudrie and Eva Tuba and Thinagaran Perumal and Amit Joshi",
booktitle = "ICT for Intelligent Systems - Proceedings of ICTIS 2025",
address = "Germany",
}