Opcode-Based Ransomware Detection Using Random Forest and Long Short-Term Memory Neural Networks: An Automated Machine Learning Approach

preprint OA: closed CC-BY-4.0
📄 Open PDF View at publisher

Abstract

Abstract Ransomware has evolved into one of the most destructive forms of cyberattacks, causing severe financial losses and compromising critical data across various sectors. Addressing the dynamic and evasive nature of ransomware demands novel detection methods that are capable of identifying sophisticated attacks before significant damage occurs. A new approach is introduced that combines opcode sequence analysis with machine learning, specifically using Random Forest for feature selection and Long Short-Term Memory networks for capturing temporal dependencies in opcode streams. This hybrid model demonstrates high detection accuracy and precision, offering a more resilient solution against ransomware variants, including those employing obfuscation techniques. The experimental evaluation shows that the model effectively reduces false positives while maintaining computational efficiency, making it suitable for real-time ransomware detection. The integration of opcode-based feature selection and sequence analysis creates a robust detection framework capable of addressing modern ransomware challenges.

My notes (saved in your browser only)

Citation neighborhood (no data yet)

We don't have any in-corpus citations linked to this paper yet. This is a recent paper (2024) — citers typically take a year or two to land, and the OpenAlex reference graph may still be filling in.

Source provenance

europepmc
last seen: 2026-05-20T01:45:00.602351+00:00
unpaywall
last seen: 2026-05-22T02:00:06.705733+00:00
License: CC-BY-4.0