Testing a Multi-Model Artificial Intelligence System to Detect Ransomware Activity

Veach, Alexander; Abualkibash, Munther

doi:10.46254/EU08.20250413

Back

8th European Industrial Engineering and Operations Management Conference

Testing a Multi-Model Artificial Intelligence System to Detect Ransomware Activity

Download PDF

Alexander Veach & Munther Abualkibash

Publisher: IEOM Society International

3 Views

11 Downloads

Ransomware is a major threat in the modern cybersecurity field, causing billions of United States Dollars in damages each year. To combat this issue, there has been research and the application of machine learning and artificial intelligence techniques as a defensive measure. In current literature, there is a focus on using a singular model to detect ransomware in general. However, this method has an issue of accuracy decay due to the shifting methods of attack used by ransomware. While some works focus on using deep learning methods and optimization algorithms, this article investigates another method of mitigating performance decay that is less process intensive. The goal of this article is to propose a multi-model system that uses specialized models trained on specific families of ransomware to reduce decay over time. This works by reducing the amount of variance represented in each model. To test the comparative performance of this model against the common general models, a dataset is created for training using hybrid analysis of ransomware samples. A testing dataset was also created using the same methods but contained ransomware families not represented in the training dataset to test the comparative accuracy decay. The proposed system outperformed the general models at a threshold of one vote, had less decay compared to the general models, and performed comparatively to other similar works. This system, however, needs further fine-tuning to increase performance as it did not outperform all similar works, alongside rigorous testing to ensure the reduction in decay will be consistent over time.

Published in: 8th European Industrial Engineering and Operations Management Conference, Paris, France

Publisher: IEOM Society International
Date of Conference: July 2 -4 , 2025

ISBN: 979-8-3507-4449-1
ISSN/E-ISSN: 2169-8767

https://doi.org/10.46254/EU08.20250413

Related Research

The Impact of Intrusion Detection Systems Upon Healthcare Environments: A Research Review

11th Annual International Conference on Industrial Engineering and Operations Management

Published: 2021

Achieving Smart Mobility: A Review

1st International Conference on Smart Mobility and Vehicle Electrification

Published: 2023

User acceptance of smart mobile resources in vehicular technologies based upon user experience and comfortability: A research review

6th Industrial Engineering and Operations Management Bangladesh Conference

Published: 2023