{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,11]],"date-time":"2026-06-11T15:51:20Z","timestamp":1781193080343,"version":"3.54.1"},"reference-count":58,"publisher":"Springer Science and Business Media LLC","issue":"5","license":[{"start":{"date-parts":[[2024,8,28]],"date-time":"2024-08-28T00:00:00Z","timestamp":1724803200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/2.zoppoz.workers.dev:443\/https\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2024,8,28]],"date-time":"2024-08-28T00:00:00Z","timestamp":1724803200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/2.zoppoz.workers.dev:443\/https\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"funder":[{"DOI":"10.13039\/501100012166","name":"National Key R&D Program of China","doi-asserted-by":"crossref","award":["Grant No.2017YFB0802804"],"award-info":[{"award-number":["Grant No.2017YFB0802804"]}],"id":[{"id":"10.13039\/501100012166","id-type":"DOI","asserted-by":"crossref"}]},{"name":"Key Program of National Natural Science Foundation of China","award":["Grant No.U1766215"],"award-info":[{"award-number":["Grant No.U1766215"]}]},{"DOI":"10.13039\/501100012166","name":"National Key R&D Program of China","doi-asserted-by":"crossref","award":["2018YFC1201102"],"award-info":[{"award-number":["2018YFC1201102"]}],"id":[{"id":"10.13039\/501100012166","id-type":"DOI","asserted-by":"crossref"}]}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["Mobile Netw Appl"],"published-print":{"date-parts":[[2024,10]]},"DOI":"10.1007\/s11036-024-02383-z","type":"journal-article","created":{"date-parts":[[2024,8,28]],"date-time":"2024-08-28T11:02:20Z","timestamp":1724842940000},"page":"1690-1704","update-policy":"https:\/\/2.zoppoz.workers.dev:443\/https\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":2,"title":["Few-Shot Malware Classification via Attention-Based Transductive Learning Network"],"prefix":"10.1007","volume":"29","author":[{"given":"Liting","family":"Deng","sequence":"first","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Chengli","family":"Yu","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/2.zoppoz.workers.dev:443\/https\/orcid.org\/0000-0002-3786-3358","authenticated-orcid":false,"given":"Hui","family":"Wen","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Mingfeng","family":"Xin","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Yue","family":"Sun","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Limin","family":"Sun","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Hongsong","family":"Zhu","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"297","published-online":{"date-parts":[[2024,8,28]]},"reference":[{"key":"2383_CR1","unstructured":"Symantec internet security threat report (2019). https:\/\/2.zoppoz.workers.dev:443\/https\/docs.broadcom.com\/docs\/istr-24-2019-en\/"},{"key":"2383_CR2","unstructured":"Av-test institute (2020). https:\/\/2.zoppoz.workers.dev:443\/https\/www.av-test.org\/en\/statistics\/malware\/ Accessed 20 Sept 2020"},{"key":"2383_CR3","doi-asserted-by":"crossref","unstructured":"Bazrafshan Z, Hashemi H, Fard SMH, Hamzeh A (2013) A survey on heuristic malware detection techniques. In: Proceedings of the international conference on information and knowledge technology, IEEE, pp 113\u2013120","DOI":"10.1109\/IKT.2013.6620049"},{"key":"2383_CR4","doi-asserted-by":"crossref","unstructured":"Christodorescu M, Jha S, Kruegel C (2008) Mining specifications of malicious behavior. In: Proceedings of the joint meeting of the European software engineering conference and the ACM SIGSOFT symposium on the foundations of software engineering, pp 5\u201314","DOI":"10.1145\/1342211.1342215"},{"key":"2383_CR5","doi-asserted-by":"crossref","unstructured":"Cui Z, Xue F, Cai X, Cao Y, Wang Gg, Chen J (2018) Detection of malicious code variants based on deep learning. IEEE Trans Industrial Inform 14(7):3187\u20133196","DOI":"10.1109\/TII.2018.2822680"},{"key":"2383_CR6","doi-asserted-by":"crossref","unstructured":"David OE, Netanyahu NS (2015) Deepsign: deep learning for automatic malware signature generation and classification. In: Proceedings of the international Joint Conference on Neural Networks (IJCNN), pp 1\u20138","DOI":"10.1109\/IJCNN.2015.7280815"},{"key":"2383_CR7","doi-asserted-by":"crossref","unstructured":"Deng L, Wen H, Xin M, Sun Y, Sun L, Zhu H (2020) Malware classification using attention-based transductive learning network. In: International conference on security and privacy in communication systems, Springer, pp 403\u2013418","DOI":"10.1007\/978-3-030-63095-9_26"},{"key":"2383_CR8","doi-asserted-by":"crossref","unstructured":"Fan Y, Ju M, Hou S, Ye Y, Wan W, Wang K, Mei Y, Xiong Q (2021) Heterogeneous temporal graph transformer: an intelligent system for evolving android malware detection. In: Proceedings of the 27th ACM SIGKDD conference on knowledge discovery & data mining, pp 2831\u20132839","DOI":"10.1145\/3447548.3467168"},{"issue":"4","key":"2383_CR9","doi-asserted-by":"publisher","first-page":"594","DOI":"10.1109\/TPAMI.2006.79","volume":"28","author":"L Fei-Fei","year":"2006","unstructured":"Fei-Fei L, Fergus R, Perona P (2006) One-shot learning of object categories. IEEE Trans Pattern Anal Mach Intell 28(4):594\u2013611","journal-title":"IEEE Trans Pattern Anal Mach Intell"},{"key":"2383_CR10","doi-asserted-by":"publisher","first-page":"14510","DOI":"10.1109\/ACCESS.2018.2805301","volume":"6","author":"J Fu","year":"2018","unstructured":"Fu J, Xue J, Wang Y, Liu Z, Shan C (2018) Malware visualization for fine-grained classification. IEEE Access 6:14510\u201314523","journal-title":"IEEE Access"},{"key":"2383_CR11","doi-asserted-by":"crossref","unstructured":"Gibert D, Mateu C, Planes J (2019) A hierarchical convolutional neural network for malware classification. In: 2019 International Joint Conference on Neural Networks (IJCNN), IEEE, pp 1\u20138","DOI":"10.1109\/IJCNN.2019.8852469"},{"key":"2383_CR12","doi-asserted-by":"publisher","first-page":"102526","DOI":"10.1016\/j.jnca.2019.102526","volume":"153","author":"D Gibert","year":"2020","unstructured":"Gibert D, Mateu C, Planes J (2020) The rise of machine learning for detection and classification of malware: Research developments, trends and challenges. J Netw Comput Appl 153:102526","journal-title":"J Netw Comput Appl"},{"key":"2383_CR13","doi-asserted-by":"crossref","unstructured":"Griffin K, Schneider S, Hu X, Chiueh TC (2009) Automatic generation of string signatures for malware detection. In: International workshop on recent advances in intrusion detection, Springer , pp 101\u2013120","DOI":"10.1007\/978-3-642-04342-0_6"},{"key":"2383_CR14","doi-asserted-by":"crossref","unstructured":"Han K, Lim JH, Im EG (2013) Malware analysis method using visualization of binary files. In: Proceedings of the international conference on research in adaptive and convergent systems, pp 317\u2013321","DOI":"10.1145\/2513228.2513294"},{"issue":"8","key":"2383_CR15","doi-asserted-by":"publisher","first-page":"1735","DOI":"10.1162\/neco.1997.9.8.1735","volume":"9","author":"S Hochreiter","year":"1997","unstructured":"Hochreiter S, Schmidhuber J (1997) Long short-term memory. Neural Comput 9(8):1735\u20131780","journal-title":"Neural Comput"},{"key":"2383_CR16","doi-asserted-by":"crossref","unstructured":"Huang W, Stokes JW (2016) Mtnet: a multi-task neural network for dynamic malware classification. In: Proceedings of the international conference on Detection of Intrusions and Malware, and Vulnerability Assessment (DIMVA), pp 399\u2013418","DOI":"10.1007\/978-3-319-40667-1_20"},{"key":"2383_CR17","doi-asserted-by":"crossref","unstructured":"Ji Y, Bowman B, Huang HH (2019) Securing malware cognitive systems against adversarial attacks. In: 2019 IEEE International Conference on Cognitive Computing (ICCC), IEEE, pp 1\u20139","DOI":"10.1109\/ICCC.2019.00014"},{"key":"2383_CR18","unstructured":"Jordaney R, Sharad K, Dash SK, Wang Z, Papini D, Nouretdinov I, Cavallaro L (2017) Transcend: detecting concept drift in malware classification models. In: 26th USENIX Security Symposium (USENIX Security 17), pp 625\u2013642"},{"issue":"1","key":"2383_CR19","doi-asserted-by":"publisher","first-page":"153","DOI":"10.4236\/jcc.2018.61016","volume":"6","author":"EK Kabanga","year":"2017","unstructured":"Kabanga EK, Kim CH (2017) Malware images classification using convolutional neural network. J Comput Commun 6(1):153\u2013158","journal-title":"J Comput Commun"},{"key":"2383_CR20","unstructured":"Krizhevsky A, Sutskever I, Hinton GE (2012) Imagenet classification with deep convolutional neural networks. In: Advances in neural information processing systems, pp 1097\u20131105"},{"key":"2383_CR21","doi-asserted-by":"publisher","first-page":"S118","DOI":"10.1016\/j.diin.2018.04.024","volume":"26","author":"Q Le","year":"2018","unstructured":"Le Q, Boydell O, Mac Namee B, Scanlon M (2018) Deep learning at the shallow end: Malware classification for non-domain experts. Digit Investig 26:S118\u2013S126","journal-title":"Digit Investig"},{"key":"2383_CR22","unstructured":"LeCun Y, et\u00a0al (2015) Lenet-5, convolutional neural networks. https:\/\/2.zoppoz.workers.dev:443\/http\/yann.lecun.com\/exdb\/lenet"},{"key":"2383_CR23","unstructured":"Liu Y, Lee J, Park M, Kim S, Yang E, Hwang SJ, Yang Y (2018) Learning to propagate labels: Transductive propagation network for few-shot learning. arXiv:1805.10002"},{"key":"2383_CR24","doi-asserted-by":"crossref","unstructured":"Liu Y, Tantithamthavorn C, Li L, Liu Y (2021) Deep learning for android malware defenses: a systematic literature review. arXiv:2103.05292","DOI":"10.1145\/3544968"},{"key":"2383_CR25","doi-asserted-by":"crossref","unstructured":"Nataraj L, Karthikeyan S, Jacob G, Manjunath B (2011) Malware images: visualization and automatic classification. In: Proceedings of the 8th international symposium on visualization for cyber security, ACM, pp 1\u20137","DOI":"10.1145\/2016904.2016908"},{"key":"2383_CR26","doi-asserted-by":"crossref","unstructured":"Nataraj L, Yegneswaran V, Porras P, Zhang J (2011) A comparative assessment of malware classification using binary texture analysis and dynamic analysis. In: Proceedings of the ACM workshop on security and artificial intelligence, pp 21\u201330","DOI":"10.1145\/2046684.2046689"},{"key":"2383_CR27","doi-asserted-by":"crossref","unstructured":"Pascanu R, Stokes JW, Sanossian H, Marinescu M, Thomas A (2015) Malware classification with recurrent networks. In: Proceedings of international conference on Acoustics, Speech and Signal Processing (ICASSP), pp 1916\u20131920","DOI":"10.1109\/ICASSP.2015.7178304"},{"key":"2383_CR28","unstructured":"Pendlebury F, Pierazzi F, Jordaney R, Kinder J, Cavallaro L (2019) $$\\{$$TESSERACT$$\\}$$: eliminating experimental bias in malware classification across space and time. In: 28th USENIX Security Symposium (USENIX Security 19), pp 729\u2013746"},{"key":"2383_CR29","unstructured":"Prabha APM, Kavitha P (2012) Malware classification through hex conversion and mining. In: Proceedings of international conference on E-governance & cloud computing services, Citeseer, pp 6\u201312"},{"key":"2383_CR30","unstructured":"Raff E, Barker J, Sylvester J, Brandon R, Catanzaro B, Nicholas CK (2018) Malware detection by eating a whole exe. In: Workshops at the thirty-second AAAI conference on artificial intelligence"},{"key":"2383_CR31","unstructured":"Ravi S, Larochelle H (2017) Optimization as a model for few-shot learning. In: Proceedings of the international conference on Learning Representations (ICLR)"},{"key":"2383_CR32","unstructured":"Ren M, Triantafillou E, Ravi S, Snell J, Swersky K, Tenenbaum JB, Larochelle H, Zemel RS (2018) Meta-learning for semi-supervised few-shot classification. arXiv:1803.00676"},{"key":"2383_CR33","doi-asserted-by":"crossref","unstructured":"Rieck K, Holz T, Willems C, D\u00fcssel P, Laskov P (2008) Learning and classification of malware behavior. In: Proceedings of the international conference on Detection of Intrusions and Malware, and Vulnerability Assessment (DIMVA), pp 108\u2013125","DOI":"10.1007\/978-3-540-70542-0_6"},{"key":"2383_CR34","doi-asserted-by":"crossref","unstructured":"Saleh M, Ratazzi EP, Xu S (2014) Instructions-based detection of sophisticated obfuscation and packing. In: 2014 IEEE military communications conference, IEEE, pp 1\u20136","DOI":"10.1109\/MILCOM.2014.9"},{"key":"2383_CR35","doi-asserted-by":"crossref","unstructured":"Schultz MG, Eskin E, Zadok F, Stolfo SJ (2002) Data mining methods for detection of new malicious executables. In: Proceedings of the IEEE Symposium on Security and Privacy (S &P), pp 38\u201349","DOI":"10.1109\/SECPRI.2001.924286"},{"key":"2383_CR36","doi-asserted-by":"crossref","unstructured":"Sharma GA, Singh KJ, Singh MD (2020) A deep learning approach to image-based malware analysis. In: Progress in computing, analytics and networking, Springer, pp 327\u2013339","DOI":"10.1007\/978-981-15-2414-1_33"},{"key":"2383_CR37","unstructured":"Snell J, Swersky K, Zemel R (2017) Prototypical networks for few-shot learning. In: Advances in neural information processing systems, pp 4077\u20134087"},{"key":"2383_CR38","doi-asserted-by":"crossref","unstructured":"Su J, Vasconcellos VD, Prasad S, Daniele S, Feng Y, Sakurai K (2018) Lightweight classification of iot malware based on image recognition. In: 2018 IEEE 42Nd Annual Computer Software and Applications Conference (COMPSAC), IEEE, vol\u00a02, pp 664\u2013669","DOI":"10.1109\/COMPSAC.2018.10315"},{"key":"2383_CR39","doi-asserted-by":"crossref","unstructured":"Sung F, Yang Y, Zhang L, Xiang T, Torr PH, Hospedales TM (2018) Learning to compare: Relation network for few-shot learning. In: Proceedings of the IEEE conference on computer vision and pattern recognition, pp 1199\u20131208","DOI":"10.1109\/CVPR.2018.00131"},{"key":"2383_CR40","doi-asserted-by":"crossref","unstructured":"Tran K, Sato H, Kubo M (2020) Mannware: A malware classification approach with a few samples using a memory augmented neural network. Information 11(1)","DOI":"10.3390\/info11010051"},{"key":"2383_CR41","doi-asserted-by":"crossref","unstructured":"Tran TK, Sato H, Kubo M (2018) One-shot learning approach for unknown malware classification. In: 2018 5th Asian Conference on Defense Technology (ACDT), IEEE, pp 8\u201313","DOI":"10.1109\/ACDT.2018.8593203"},{"key":"2383_CR42","doi-asserted-by":"crossref","unstructured":"Tran TK, Sato H, Kubo M (2019) Image-based unknown malware classification with few-shot learning models. In: 2019 Seventh International Symposium on Computing and Networking Workshops (CANDARW), IEEE, pp 401\u2013407","DOI":"10.1109\/CANDARW.2019.00075"},{"key":"2383_CR43","doi-asserted-by":"crossref","unstructured":"Trinius P, Holz T, G\u00f6bel J, Freiling FC (2009) Visual analysis of malware behavior using treemaps and thread graphs. In: 6th international workshop on visualization for cyber security, IEEE, pp 33\u201338","DOI":"10.1109\/VIZSEC.2009.5375540"},{"key":"2383_CR44","doi-asserted-by":"crossref","unstructured":"T\u00fcrker S, Can AB (2019) Andmfc: android malware family classification framework. In: 2019 IEEE 30th International Symposium on Personal, Indoor and Mobile Radio Communications (PIMRC Workshops), IEEE, pp 1\u20136","DOI":"10.1109\/PIMRCW.2019.8880840"},{"key":"2383_CR45","first-page":"377","volume":"47","author":"S Venkatraman","year":"2019","unstructured":"Venkatraman S, Alazab M, Vinayakumar R (2019) A hybrid deep learning image-based analysis for effective malware detection. J Inform Secur Appl 47:377\u2013389","journal-title":"J Inform Secur Appl"},{"key":"2383_CR46","unstructured":"Vinod P, Jaipur R, Laxmi V, Gaur M (2009) Survey on malware detection methods. In: Proceedings of the 3rd Hackers\u2019 Workshop on Computer and Internet Security (IITKHACK\u201909), pp 74\u201379"},{"key":"2383_CR47","unstructured":"Vinyals O, Blundell C, Lillicrap T, Wierstra D, et\u00a0al (2016) Matching networks for one shot learning. In: Advances in neural information processing systems, pp 3630\u20133638"},{"key":"2383_CR48","unstructured":"Wagner M, Fischer F, Luh R, Haberson A, Rind A, Keim DA, Aigner W (2015) A survey of visualization systems for malware analysis. In: Proceedings of the Eurographics Conference on Visualization (EuroVis), pp 105\u2013125"},{"key":"2383_CR49","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1016\/j.cose.2017.02.003","volume":"67","author":"M Wagner","year":"2017","unstructured":"Wagner M, Rind A, Th\u00fcr N, Aigner W (2017) A knowledge-assisted visual malware analysis system: Design, validation, and reflection of kamas. Comput Secur 67:1\u201315","journal-title":"Comput Secur"},{"key":"2383_CR50","doi-asserted-by":"crossref","unstructured":"Wang X, Girshick R, Gupta A, He K (2018) Non-local neural networks. In: Proceedings of the IEEE conference on computer vision and pattern recognition, pp 7794\u20137803","DOI":"10.1109\/CVPR.2018.00813"},{"key":"2383_CR51","doi-asserted-by":"crossref","unstructured":"Wang Y, Yao Q, Kwok J, Ni LM (2020) Generalizing from a few examples: a survey on few-shot learning. ACM Computing Surveys","DOI":"10.1145\/3386252"},{"key":"2383_CR52","doi-asserted-by":"crossref","unstructured":"Woo S, Park J, Lee JY, So\u00a0Kweon I (2018) Cbam: convolutional block attention module. In: Proceedings of the European Conference on Computer Vision (ECCV), pp 3\u201319","DOI":"10.1007\/978-3-030-01234-2_1"},{"key":"2383_CR53","doi-asserted-by":"crossref","unstructured":"Yakura H, Shinozaki S, Nishimura R, Oyama Y, Sakuma J (2017) Malware analysis of imaged binary samples by convolutional neural network with attention mechanism. In: Proceedings of the ACM Conference on Data and Application Security and Privacy (CODASPY), pp 127\u2013134","DOI":"10.1145\/3176258.3176335"},{"key":"2383_CR54","unstructured":"Yang L, Guo W, Hao Q, Ciptadi A, Ahmadzadeh A, Xing X, Wang G (2021) $$\\{$$CADE$$\\}$$: Detecting and explaining concept drift samples for security applications. In: 30th USENIX Security Symposium (USENIX Security 21), pp 2327\u20132344"},{"key":"2383_CR55","doi-asserted-by":"crossref","unstructured":"Yoo I (2004) Visualizing windows executable viruses using self-organizing maps. In: Proceedings of the ACM workshop on visualization and data mining for computer security, pp 82\u201389","DOI":"10.1145\/1029208.1029222"},{"key":"2383_CR56","doi-asserted-by":"publisher","first-page":"49418","DOI":"10.1109\/ACCESS.2018.2864871","volume":"6","author":"M Yousefi-Azar","year":"2018","unstructured":"Yousefi-Azar M, Hamey LG, Varadharajan V, Chen S (2018) Malytics: a malware detection scheme. IEEE Access 6:49418\u201349431","journal-title":"IEEE Access"},{"key":"2383_CR57","doi-asserted-by":"crossref","unstructured":"Zhang X, Zhang Y, Zhong M, Ding D, Cao Y, Zhang Y, Zhang M, Yang M (2020) Enhancing state-of-the-art classifiers with api semantics to detect evolved android malware. In: Proceedings of the 2020 ACM SIGSAC conference on computer and communications security, pp 757\u2013770","DOI":"10.1145\/3372297.3417291"},{"key":"2383_CR58","unstructured":"Zhou D, Bousquet O, Lal TN, Weston J, Sch\u00f6lkopf B (2004) Learning with local and global consistency. In: Advances in neural information processing systems, pp 321\u2013328"}],"container-title":["Mobile Networks and Applications"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/2.zoppoz.workers.dev:443\/https\/link.springer.com\/content\/pdf\/10.1007\/s11036-024-02383-z.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/2.zoppoz.workers.dev:443\/https\/link.springer.com\/article\/10.1007\/s11036-024-02383-z\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/2.zoppoz.workers.dev:443\/https\/link.springer.com\/content\/pdf\/10.1007\/s11036-024-02383-z.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,4,9]],"date-time":"2025-04-09T13:21:35Z","timestamp":1744204895000},"score":1,"resource":{"primary":{"URL":"https:\/\/2.zoppoz.workers.dev:443\/https\/link.springer.com\/10.1007\/s11036-024-02383-z"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,8,28]]},"references-count":58,"journal-issue":{"issue":"5","published-print":{"date-parts":[[2024,10]]}},"alternative-id":["2383"],"URL":"https:\/\/2.zoppoz.workers.dev:443\/https\/doi.org\/10.1007\/s11036-024-02383-z","relation":{},"ISSN":["1383-469X","1572-8153"],"issn-type":[{"value":"1383-469X","type":"print"},{"value":"1572-8153","type":"electronic"}],"subject":[],"published":{"date-parts":[[2024,8,28]]},"assertion":[{"value":"5 August 2024","order":1,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"28 August 2024","order":2,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}}]}}