International Journal of Informatics and Communication Technology (IJ-ICT)
Vol 14, No 2: August 2025

Malware detection using Gini, Simpson diversity, and Shannon-Wiener indexes

Ling, Yeong Tyng (Unknown)
Chiew, Kang Leng (Unknown)
Phang, Piau (Unknown)
Zhang, Xiaowei (Unknown)

Article Info

Publish Date
01 Aug 2025

Abstract

The increasing number of malware attacks poses a significant challenge to cyber security. This paper proposes a methodology for static malware analysis using biodiveristy-inspired metrics that is Gini coefficient, Simpson diversity, and Shannon-Wiener index for malware detection. These metrics are used to build the structural feature representation on the raw binary file as the feature space. The effectiveness of these metrics are evaluated using multilayer perceptron (MLP) neural network and extreme gradient boosting (XGBoost) models. A deterministic algorithm is used to generate these features that represent the feature signature of the executable file. Additionally, we investigated the effectiveness of different byte sizes as the input feature for these two classifiers. According to the results, Gini coefficient with on chunk size of 128 has successfully achieved average F1 score of more than 98.7% by using XGBoost model.

Copyrights © 2025




Citation Download
RIS
EndNote, Reference Manager, ProCite
BibTex
Latex, Jabref
Original Source
Download Original
Google Scholar
Check in Google Scholar
Journal Info
International Journal of Informatics and Communication Technology (IJ-ICT)
Website

Abbrev

IJICT

Publisher

Institute of Advanced Engineering and Science

Subject

Computer Science & IT

Description

International Journal of Informatics and Communication Technology (IJ-ICT) is a common platform for publishing quality research paper as well as other intellectual outputs. This Journal is published by Institute of Advanced Engineering and Science (IAES) whose aims is to promote the dissemination of ...