Research Article
Real-Time Malware Process Detection and Automated Process Killing
Table 5
F1-score, true positive rate (TPR), and true negative rates (TNR) (all
100) on test and validation sets for classification and process killing.
| | Features | Metric | Classify | Dataset | Kill |
| | Proc. Data | F1 | 97.44 | Validation set | 91.20 | | Proc. Data | tnr | 94.72 | Validation set | 85.71 | | Proc. Data | tpr | 98.64 | Validation set | 95.80 | | Proc. Data + glob. | F1 | 94.61 | Validation set | 87.69 | | Proc. Data + glob. | tnr | 90.57 | Validation set | 77.31 | | Proc. Data + glob. | tpr | 95.93 | Validation set | 95.80 | | Proc. Data | F1 | 74.91 | Test set | 72.63 | | Proc. Data | tnr | 69.41 | Test set | 59.63 | | Proc. Data | tpr | 87.52 | Test set | 91.82 | | Proc. Data + glob. | F1 | 77.66 | Test set | 71.83 | | Proc. Data + glob. | tnr | 79.70 | Test set | 59.63 | | Proc. Data + glob. | tpr | 82.91 | Test set | 90.24 |
|
|
