Methods for automatic malware analysis and classification: a survey


In this survey, we try to summarise modern malware classification methods and analysis tools, and give an insight into the current research efforts that are used to build state-of-the-art malware classification systems that are used to detect the most dangerous malware families built for the operating system, Microsoft Windows. Before diving into automatic classification methods and features (malware indicators) used, we describe the accompanying analysis approaches that are the fundamental building block of every automatic classifier. This paper has the intention to summarise and categorise various efforts of researches that emerged in the last years and recognise upcoming challenges in the vibrant malware landscape.


author = {Gr\v{z}ini\'{c}, Toni and Gonz\'{a}lez, Eduardo Bl\'{a}zquez},
title = {Methods for Automatic Malware Analysis and Classification: A Survey},
year = {2022},
issue_date = {2022},
publisher = {Inderscience Publishers},
address = {Geneva 15, CHE},
volume = {17},
number = {1–2},
issn = {1744-1765},
url = {},
doi = {10.1504/ijics.2022.121297},
month = {jan},
pages = {179–203},
numpages = {24},
keywords = {survey, dynamic analysis, static analysis, malware classification}}