Demystifying the Role of Rule-based Detection in AI Systems for Windows Malware Detection

Malware detection increasingly relies on AI systems that integrate signature-based detection with machine learning. However, these components are typically developed and combined in isolation, missing opportunities to reduce data complexity and strengthen defenses against adversarial EXEmples, carefully crafted programs designed to evade detection. Hence, in this work we investigate the influence that signature-based detection exerts on model training, when they are included inside the training pipeline. Specifically, we compare models trained on a comprehensive dataset with an AI system whose machine learning component is trained solely on samples not already flagged by signatures. Our results demonstrate improved robustness to both adversarial EXEmples and temporal data drift, although this comes at the cost of a fixed lower bound on false positives, driven by suboptimal rule selection. We conclude by discussing these limitations and outlining how future research could extend AI-based malware detection to include dynamic analysis, thereby further enhancing system resilience.

Key Contributions

• First empirical analysis of how YARA signature-based pre-filtering in the training pipeline affects ML model robustness and data complexity for Windows malware detection
• Demonstrates that training only on YARA-undetected samples improves robustness to adversarial EXEmples and temporal data drift while matching overall detection performance at low FPR (1%)
• Identifies a key trade-off: YARA-filtered AI systems introduce a fixed false-positive floor due to non-adaptive rule selection, highlighting a limitation for future work

🛡️ Threat Analysis

Details

Similar Papers