Malware Analysis Datasets: PE Section Headers
This dataset is part of my PhD research on malware detection and classification using Deep Learning. It contains static analysis data (PE Section Headers of the .text, .code and CODE sections) extracted from the 'pe_sections' elements of Cuckoo Sandbox reports. PE malware examples were downloaded from virusshare.com. PE goodware examples were downloaded from portableapps.com and from Windows 7 x86 directories.
* FEATURES *
Column name: hash
Description: MD5 hash of the example
Type: 32 bytes string
Column name: size_of_data
Description: The size of the section on disk
Column name: virtual_address
Description: Memory address of the first byte of the section relative to the image base
Column name: entropy
Description: Calculated entropy of the section
Column name: virtual_size
Description: The size of the section when loaded into memory
Column name: malware
Type: 0 (Goodware) or 1 (Malware)
* ACKNOWLEDGMENTS *
We would like to thank: Cuckoo Sandbox for developing such an amazing dynamic analysis environment!
VirusShare! Because sharing is caring!
Universidade Nove de Julho for supporting this research.
Coordination for the Improvement of Higher Education Personnel (CAPES) for supporting this research.
* CITATIONS *
Please refer to the dataset DOI.
Please feel free to contact me for any further information.