Please wait ...




Ransomware_Detection_Using_Features_of_PE_Imports Rows: 1831 | Cols: 9 | Reports Used: 3084

Description: A dataset of features of the imports of portable executables (PE Imports). The features extracted are: a ratio of the number of functions utilized per DLL imported, the number of functions that have additional (non-alphabetic) characters, the number of 'blacklisted functions' utilized by that PE file, the number of 'whitelisted' functions, whether all Register keys opened/ created are deleted at the end of the application, the number of native functions utilized, and how many times a function is accessed from Python.

Dataset SHA256: 3d2c04d8760adc7ea174836c158d1ce92cfbb8665419113b79aedff27139c2cc

Features (sample):



label ave_functions_utilised_from_dlls_imported bogus_functions num_blacklisted_functions num_whitelisted_functions persistent_reg_key num_of_native_functions num_of_accesses_from_python SHA256
0 M 1.115312 37 0.133333 0.333333 1 0 0 4e0d1edb76747fd945b87dd18299298f0df719edbea946119d91db59a9b6527a
1 M 24.500000 0 0.066667 0.000000 0 0 0 bfb9db791b8250ffa8ebc48295c5dbbca757a5ed3bbb01de12a871b5cd9afd5a
... ... ... ... ... ... ... ... ... ...
1829 M 2.950617 2 0.200000 0.000000 0 0 0 7d809e8c9b98c16647bbfac49854c28ecc3fe6d4345410deeaa79445cc50cf51
1830 M 0.813333 0 0.000000 0.333333 0 0 0 eb920e0fc0c360abb901e04dce172459b63bbda3ab8152350885db4b44d63ce5

1831 rows × 9 columns

Created by: Tanatswa Dendere
Downloaded 4 times
Comments Enabled: True
Comments: 0
Related Dataset: Ransomware_Detection_Using_PE_Imports

Comments

No comments to display