Ransomware attacks are becoming a serious cyber threat to organizations and individuals around the globe. Unlike traditional
malware, ransomware attackers hijack the system and demand money to reverse the attack. A recent study, reports an immense
increase and steady growth in new ransomware samples and attacks. In order to counteract and detect malware it was created a variety
of methods implemented in the framework of the antivirus software. At first, detection was based on static analysis of compiled
signatures, identifying malicious program file.
At the moment, with the active use of the creators of malware cloaking techniques from detection such as encryption, polymorphism,
metamorphism, obfuscation and others, it is not enough to use only signature-based detection. Another important imperfection may be
the increasing with the time signature database and deceleration check for malware.
Often, new variants of malware are not distinguished from their predecessors due to the limitations of classification sy
