Sun EURASIP Journal on Information Security (2025) 2025:10 EURASIP Journal on

https://doi.org/10.1186/s13635-025-00197-4
Information Security

RESEARCH Open Access

Malicious software identification based

on deep learning algorithms and API feature
extraction
Wei Sun1*

Abstract
With the popularization of mobile Internet, the Android operating system has become the main target of malware
attacks because of its openness. Traditional malware detection methods face challenges in handling complex feature
representations, especially in utilizing the semantic information and call order of application programming interface
call sequences. Therefore, this study develops a deep learning method to identify malicious software by analyzing
the application programming interface calls and constructing heterogeneous graphs of Android applications. The
results showed that the proposed method achieved accuracies of 92.80% and 94.24% on the Drebin and Andro-
Zoo datasets, demonstrating excellent robustness and generalization ability. The ablation experiment showed
that the accuracy of the complete model was 94.71%, verifying the key role of each part of the method. In com-
parison with existing methods, the proposed method led with an average accuracy of 94.27%, while maintaining
detection time within 5–10 s, demonstrating high efficiency and practicality. This study contributes to the in-depth
exploration of semantic information and behavioral patterns of application programming interface call sequences.
The efficient malware identification method developed can cope with the constantly evolving malware threats.
Keywords Malicious software detection, Deep learning algorithms, Application programming interface, Feature
extraction techniques, Relational Graph Convolutional Network

1 Introduction million in 2021, a year-on-year increase of nearly 10% [3].

With the popularization of mobile Internet, smartphones
have become an indispensable tool in people’s daily lives.
Among them, the Android system occupies the majority
of the global mobile device market share due to its open-
ness and flexibility [1]. However, the openness of the
Android system also provides opportunities for crimi-
nals to exploit, and the number of malicious software is
increasing year by year, posing a serious threat to users’
privacy information, property security, and device per-
formance [2]. According to statistics, the number of
newly added Android malware worldwide reached 3.3706
*Correspondence:
Wei Sun
How to effectively identify and prevent Android malware
has become an important research topic of concern in
both academia and industry. Malicious Software Detec-
tion (MSD) methods are mainly divided into two catego-
ries: static analysis and dynamic analysis. In recent years,
the development of Deep Learning (DL) technology has
provided new solutions for malware detection. Convo-
lutional Neural Networks (CNNs), Recurrent Neural
Networks (RNNs), and Graph Neural Networks (GNNs)
have been extensively utilized in static and dynamic anal-
ysis, leading to substantial advancements in detection
accuracy. Dynamic analysis is a method of examining the
behavior of software by simulating its operating environ-
ment. However, this approach has certain disadvantages,

[email protected] including high resource consumption and slow detection
1
School of Information Engineering, Heilongjiang Polytechnic, speed. As a result, it is difficult to use dynamic analysis to
Heilongjiang 150070, China

© The Author(s) 2025. Open Access This article is licensed under a Creative Commons Attribution-NonCommercial-NoDerivatives 4.0
International License, which permits any non-commercial use, sharing, distribution and reproduction in any medium or format, as long
as you give appropriate credit to the original author(s) and the source, provide a link to the Creative Commons licence, and indicate if
you modified the licensed material. You do not have permission under this licence to share adapted material derived from this article or
parts of it. The images or other third party material in this article are included in the article’s Creative Commons licence, unless indicated
otherwise in a credit line to the material. If material is not included in the article’s Creative Commons licence and your intended use is not
permitted by statutory regulation or exceeds the permitted use, you will need to obtain permission directly from the copyright holder. To
view a copy of this licence, visit http://creativecommons.org/licenses/by-nc-nd/4.0/.
Sun EURASIP Journal on Information Security (2025) 2025:10
meet the need for rapid detection of large quantities of
malicious software [4]. In contrast, static analysis directly
builds detection models based on the code structure and
call characteristics of malicious software, which is effi-
cient and applicable. However, existing static analysis
methods face many challenges when dealing with com-
plex feature representations. For example, traditional
grammar feature expressions are difficult to fully char-
acterize the behavioral patterns of malicious software. In
addition, most detection methods do not fully utilize the
semantic information and call order of Application Pro-
gramming Interface (API) call sequences, making it dif-
ficult to effectively capture deep behavioral features [5].
Existing methods still have significant room for improve-
ment in terms of data dependency and model robustness.
Given this, this study proposes an MSD method based on
DL algorithms and API feature extraction. This method
involves the extraction of API call sequences and entry
functions from Android Package (APK) files, resulting
in the construction of heterogeneous graph features that
are imbued with semantic and positional information.
This method utilizes heterogeneous Graph Convolu-
tional Networks (GCN) to aggregate semantic informa-
tion and identify malicious software through classifiers.
The research objectives are to improve the semantic
understanding ability of API call sequences, optimize fea-
ture expression, and enhance the generalization ability of
malware detection. Based on the limitations of existing
static analysis methods in feature representation, API call
sequence utilization, and model robustness, a heteroge-
neous GCN-based malware detection model is proposed
for Android malware static detection tasks. In addition,
the heterogeneous graph with embedded semantic and
location information is constructed by extracting the API
call sequence and entry function to improve detection
accuracy.
The contribution of this research is to propose an
Android malware detection method based on heteroge-
neous GCNs, which can improve the recognition ability
of complex malicious behaviors by modeling the seman-
tic information and call order of API call sequences.
Location coding is introduced to enhance API call rela-
tionship modeling, capture the context features of API
call order, and improve the robustness and generalization
ability of the detection model. Experiments on Drebin
and AndroZoo datasets show that the proposed method
is superior to existing malware detection methods in
terms of detection accuracy, generalization ability, and
computational efficiency.
The rest contents of the research are organized as six
sections. The second section reviews the research pro-
gress of malware detection. The third section introduces
the proposed detection methods in detail, including
Page 2 of 15
API feature extraction, heterogeneous graph construc-
tion, and model architecture design. The fourth section
describes the experimental setup, evaluation index, and
analysis of experimental results. The fifth section dis-
cusses the limitations of the research and the direction of
future work. The sixth section summarizes the main con-
clusions of the study.
2 Related works
In recent years, the complexity and diversity of mali-
cious software have significantly increased, especially
malicious attacks targeting mobile platforms and smart
devices, posing a huge challenge to traditional signa-
ture-based detection methods. In response to this issue,
numerous studies have proposed innovative methods
based on Machine Learning (ML) and DL to enhance
detection and protection capabilities. Ban et al. inves-
tigated the current situation of new malware variants
evading ML and DL-based malware classifiers through
adversarial examples and proposed a method to bypass
classifiers using black-box attacks. It used various pertur-
bation techniques to generate adversarial examples that
were executable and retained malicious behavior. This
method achieved evasion rates of 65.6% and 99% for mul-
tiple detectors [6]. Mercaldo et al. proposed a method
for detecting Android malware and identifying its family
through audio signal processing technology. This method
converted the executable file of the application into an
audio file, extracted numerical features from it, and con-
structed multiple ML models. This method achieved an
accuracy of 0.952 in MSD and 0.922 in family identifi-
cation [7]. Tuncer et al. analyzed the threat of network
attacks to information security and proposed a malicious
software classification method based on image process-
ing technology. It utilized local binary patterns, singular
value decomposition, and local ternary pattern networks
for feature extraction, and combined principal compo-
nent analysis and linear discriminant analysis to opti-
mize classification. The classification success rate of this
method was 88.08% [8]. Ali et al. proposed a multi-task
DL method based on Long Short-Term Memory (LSTM)
models, which could simultaneously detect the benign
and malignant nature of traffic and identify malicious
software types. It utilized a large-scale dataset generated
by 18 Internet of Things (IoT) devices, extracted features
through time series analysis, and optimized model per-
formance. This method achieved the highest accuracy of
95.83% in multi-task classification [9].
The widespread application of IoT devices and the
continuous upgrading of network threats have led
to in-depth research on MSD and defense. Multiple
research focuses on exploring optimization algorithms,
feature extraction, and multi-task learning to address
Sun EURASIP Journal on Information Security (2025) 2025:10
the complex behavior and dynamic changes of mali-
cious software. Kaithal et al. proposed a decision tree
model based on African vulture optimization, aiming
to improve the accuracy and optimization efficiency of
MSD. It used static and dynamic detection methods to
train the dataset and developed a prevention and detec-
tion system to address the optimization challenges of
multidimensional problems. This model could effectively
detect and predict malicious software activity [10]. Kim
et al. proposed a detection method based on various ML
models such as gradient enhancement and Random For-
est (RF) to address the threat of adversarial malware to
smart devices and analyzed the characteristics of adver-
sarial malware in the dataset. This method improved
classification performance through data normalization
and preprocessing and generated two new datasets. The
prediction accuracy of the gradient enhancement model
reached 88% [11]. Habtor et al. proposed an ML-based
malware assessment framework to address the grow-
ing trend of ransomware. This study integrated the data
processing module and decision-making module and
optimized the MSD process through methods such as
grayscale images and Opcode n-grams. Based on mul-
tiple classifiers, this method had high accuracy in MSD
and classification [12]. Jhansi K S et al. studied the role of
API call features in Android MSD, proposed three popu-
lation optimization methods to reduce feature space, and
constructed a hybrid artificial neural classifier. By opti-
mizing and retaining only 7 key features, a high classifi-
cation accuracy could be achieved, providing an efficient
solution for improving MSD [13].
Vaiyapuri et al. proposed a network security technol-
ogy that is based on improved reptile search optimiza-
tion and integrated DL. This technology was designed
to address the network intrusion risks brought about by
automation and intelligence in the industrial IoT envi-
ronment. It also addressed the insufficient ability of tra-
ditional intrusion detection systems to detect complex
attacks. Meanwhile, the improved gray wolf optimiza-
tion algorithm was used for hyperparameter adjustment.
Therefore, the identification accuracy of network attacks
was improved [14]. The IoT is under threat of botnet
attacks, and the data set is complex. The cost of hardware
is high, and memory is limited in the IoT environment.
Manimaran et al. proposed a mixed principal compo-
nent analysis and autoencoder approach to reduce the
dimensionality and information content of IoT network
traffic data in response to these issues. The accuracy, pre-
cision, recall rate, and F1 score were increased to 96.51%,
100%, 96.51%, and 98.22%, respectively [15]. Alotaibi
et al. proposed a method combining the flamingo search
optimization algorithm based on inverse Chi-square dis-
tribution with ML to address the security threats and
Page 3 of 15
resource constraints faced by edge devices of the IoT. By
selecting features, detecting threats, and optimizing algo-
rithms to adjust hyperparameters, the detection accuracy
has been improved to 98.22%, optimizing the security
performance of IoT edge devices [16]. In response to
the increasingly serious global problem of cyber attacks,
Swaminathan A et al. proposed to use supervised ML
methods to analyze cyber crimes and predict the char-
acteristics of attack means and attackers. A compara-
tive analysis of the efficacy of these three algorithms in
various models was conducted to enhance the threat
recognition capability of the network security system.
This analysis resulted in the optimization of the system,
enabling it to proactively prevent threats and respond to
malicious behaviors in real time [17].
In summary, research in MSD has made signifi-
cant progress in recent years, but there is still room for
improvement in modeling the order of function calls and
semantic context, as well as the depth and generalization
performance of feature extraction. Therefore, based on
the DL algorithm, this study proposes an MSD method
with API feature extraction as the core. The innovation
of the research lies in introducing the encoding of API
call location information and call order into heterogene-
ous graph features, enhancing the expressive power of
semantic information. In addition, a multi-level GCN is
designed to fully explore and utilize the multi-type node
information of APIs, entry functions, and applications,
improving the efficiency and accuracy of software feature
extraction.
3 Methods and materials
This section mainly introduces the MSD method, includ-
ing two subsections. The first subsection introduces
the specific process of API feature extraction and het-
erogeneous graph construction. The second subsection
provides a detailed description of the design and imple-
mentation of a DL-based feature extraction and classifi-
cation model.
3.1 API feature extraction and heterogeneous graph
construction
In MSD, API call sequences can accurately reflect the
behavioral characteristics of programs, making them
an important means of characterizing the behavior pat-
terns of malicious software [18, 19]. However, traditional
methods often only extract static features of API calls,
but ignore the expressive power of call order and contex-
tual information, making it difficult to capture the poten-
tial complex behavioral patterns of malicious software
[20, 21]. Therefore, this study proposes an MSD method
based on the DL algorithm and API feature extrac-
tion. This method focuses on API feature extraction and
Sun EURASIP Journal on Information Security (2025) 2025:10
combines the DL algorithm to effectively identify mali-
cious software. The method framework is shown in Fig. 1.
In Fig. 1, firstly, this method parses the Android APK
file and extracts the function call sequence and entry
function from the classs.dex file, and generates the
smali file through a decompilation tool. Step 2 involves
the extraction of the API call sequence, followed by
the implementation of semantic embedding on this
sequence. This is then used to generate the location infor-
mation encoding of the API, which is achieved by com-
bining the entry function information. The next step is to
construct a heterogeneous graph containing APP nodes,
entry function nodes, and API call nodes based on the
extracted API call and location information, and embed
semantic and sequential features of edges. The final step
is to extract graph features through heterogeneous GCN,
generate high-dimensional feature representations that
can be used for classification, and use classifiers to detect
and distinguish malicious software from benign software.
The Androguard tool is used to parse APK files and
extract the information of custom methods in Dalvik exe-
cutable files. Through static analysis, the calling block of
the method is obtained, the calling instructions are ana-
lyzed, and the function name and calling relationship are
extracted. To optimize memory, functions are numbered
in order of first occurrence, and call pair relationships are
recorded. Finally, the function call graph is constructed
to support API feature extraction and behavior analysis.
The process of obtaining Android API location codes
involves three stages: extracting API call sequences,
pt = sin (ω1 · t), cos (ω1 · t), sin (ω2 · t), cos (ω2 · t), ..., sin ωd/2 · t , cos ωd/2 · t
Fig. 1 Framework of malware identification method
Page 4 of 15
generating location codes, and embedding codes into
edge features of graph structures. For each APK file, the
first step is to extract the function call sequence and
identify the entry function. Subsequently, starting from
the entry function, a depth-first search is adopted to trav-
erse the function call relationship, extract the Android
API call sequence, and disconnect the call loop to avoid
interference. Finally, each APK file is converted into an
entry function and its corresponding ordered API call
sequence. After obtaining the API call sequence, this
study adopts the sine-cosine position encoding method
to represent the information of the call location. Assum-
ing pt is the encoding vector at position t in the sequence,
the i -th dimension of the encoding is represented by
Eq. (1).
sin (ωk · t), if i = 2k
pti = (1)
cos (ωk · t), if i = 2k + 1
In Eq. (1), k is a non-negative integer and ωk is a fre-
quency parameter, as shown in Eq. (2).
1
ωk = 2k (2)
10000 d
In Eq. (2), d is the total dimension of the encoding
vector. The sine and cosine functions generate position
encoding at different frequencies, ensuring that each
position has a unique encoding representation while
keeping the Euclidean distance between adjacent posi-
tions in the sequence close. The final generated encoding
vector pt is shown in Eq. (3).
(3)
Sun EURASIP Journal on Information Security (2025) 2025:10
Position coding is applied to both node representation
and edge features. In the node representation, a unique
code is assigned to each API call through the use of sine
and cosine functions. This results in the appearance of
the same API as being semantically different at different
call locations. Consequently, the model is able to distin-
guish between normal and malicious behavior patterns.
In the edge feature, location coding not only represents
the connection relationship of API calls but also incor-
porates the call order information, thereby enabling the
model to learn the time feature of the behavior pattern.
In the process of graph convolution, position encod-
ing and edge features jointly affect the aggregation of
information, making node updates not only depend-
ent on their neighbors but also constrained by the call-
ing sequence. For example, the same API calls generate
different feature representations in different sequences,
allowing the model to more accurately identify unusual
call patterns, such as data theft and unauthorized access.
Therefore, the introduction of location coding signifi-
cantly improves the model’s ability to model the API call
sequence, thereby improving the accuracy and robust-
ness of malware detection [22].
It is worth noting that the study uses the sine-cosine
position encoding method to enhance the temporal
information modeling capability of API call sequences.
Compared with learnable position embeddings and
RNN-based encoding, sine-cosine encoding does not
require additional parameter learning, can avoid overfit-
ting problems, and encodes the relative positions of API
calls with a fixed periodicity, thereby effectively captur-
ing long-term dependencies [23, 24]. In addition, this
Fig. 2 Structure extraction of three types of features in heterogeneous graph
Page 5 of 15
method has good numerical stability and is not prone to
gradient vanishing or gradient exploding problems dur-
ing graph convolution calculations, making the model
more robust and generalizable in malware detection
tasks. After completing the API location encoding, this
study extracts the features of three types of nodes in het-
erogeneous graphs, as shown in Fig. 2.
In Fig. 2, the three types of nodes are application nodes,
starting nodes, and system function nodes. The applica-
tion nodes are abstracted from Android applications. The
initial features are set as 100-dimensional all-one vectors
to represent the global characteristics of the application.
Through the feature aggregation mechanism of hetero-
geneous GCN, application nodes collect information
from the starting node and update it to global semantic
features. The starting node extracts the custom functions
that have not been called from the function call graph,
initializes them as a 100-dimensional all-one vector, and
represents the starting point of the application logic. By
aggregating the characteristics of system function nodes,
the starting node is dynamically updated to a feature
representation with more behavioral patterns. The sys-
tem function node is based on Android API strings and
is embedded as a low dimensional dense vector using
Word2Vec’s continuous bag of words model, capturing
the semantic characteristics of the system function and
providing support for feature updates of the starting
node [25]. The final application behavior heterogeneous
graph constructed on the basis of three types of nodes is
shown in Fig. 3.
In Fig. 3, the heterogeneous behavior graph of the
application is constructed by application nodes, starting
Sun EURASIP Journal on Information Security (2025) 2025:10
Fig. 3 Schematic diagram of heterogeneous graph of application behavior
nodes, and system function nodes. By combining edge
position information and call order, it comprehensively
characterizes the global and local behavior characteris-
tics of Android applications. The application node serves
as the global core, responsible for integrating the feature
information of the starting node and dynamically updat-
ing the global behavior representation. The starting node
serves as the logical starting point, connecting the appli-
cation node and the system function node. On the one
hand, it transmits local behavioral characteristics to the
application node, and on the other hand, it aggregates
semantic information from the system function node.
System function nodes exist as function providers, and
their features are generated by embedding models to
generate low dimensional dense vectors, accurately rep-
resenting the semantics and behavioral patterns of APIs.
Through the hierarchical design and feature interaction
of three types of nodes, this heterogeneous graph focuses
on API feature extraction, which can provide key support
for modeling Android application behavior and precise
detection of malicious software.
3.2 DL‑based heterogeneous graph feature extraction
and classification
Although simple API feature extraction and the construc-
tion of heterogeneous graphs of application behavior can
provide rich behavioral and semantic information. Due
Page 6 of 15
to the lack of deep mining and dynamic association mod-
eling of multi-level features, it is difficult to fully capture
complex behavioral patterns and their semantic rela-
tionships, which is insufficient to achieve accurate iden-
tification of malicious software. Therefore, further deep
mining and semantic aggregation of multi-level features
in heterogeneous graphs are needed to comprehensively
characterize the behavioral patterns of applications [26,
27]. This study utilizes the DL algorithm to extract and
classify heterogeneous graph features, achieving precise
differentiation between malicious software and benign
software. This study chooses Relationship GCN (R-GCN)
as the fundamental algorithm for feature extraction in
heterogeneous graphs. R-GCN classifies and aggregates
node features in the graph through relationship types,
and its node update process is shown in Fig. 4.
In Fig. 4, the node update of R-GCN first calculates
the feature aggregation of its neighboring nodes sepa-
rately for each relationship type and then obtains the
feature update representation of the target node through
a specific aggregation method. Finally, the aggregated
results of different relationships are added together,
along with the updated features of the target node itself,
and the updated features of the target node are gener-
ated through an activation function. Taking relationship
r as an example, for each target node i , the features of
neighboring nodes from relationship r are first mapped
Sun EURASIP Journal on Information Security (2025) 2025:10 Page 7 of 15

Fig. 4 Node update process using R-GCN

(l)
and aggregated through weight matrix Wr , as shown in node itself. σ is the ReLU activation function. However,
Eq. (4). since the standard R-GCN model is only applicable to
  heterogeneous graphs that do not contain edge fea-
(l+1)
� � 1 (l) (l) (l) tures, the constructed heterogeneous graphs contain
hi = σ Wr(l) hj + W0 hi  (4) important features such as edge position information.
r ci,r
r∈R j∈Ni
Therefore, this study improves the process of R-GCN to
(l) adapt to the proposed application behavior heteroge-
In Eq. (4), hi is the eigenvector of the target node i
(l+1) neous graph. The feature extraction process of applica-
input at layer l , and hi is the updated eigenvector of
tion behavior heterogeneous graph based on improved
that node at layer l + 1. R is the set of all relationships
R-GCN is shown in Fig. 5.
in a heterogeneous graph. Nir is a set of neighboring
In Fig. 5, the feature extraction process includes mul-
nodes that are connected to node i and have a relation-
tiple heterogeneous graph convolution operations.
ship of r . ci,r is a normalization constant, usually equal
(l) Firstly, through the first heterogeneous graph convolu-
to the number of neighboring nodes. W0 is a weight
tion operation, the semantic and positional information
matrix used to update the characteristics of the target

Fig. 5 Feature extraction flow of application behavior heterogeneous graph based on improved R-GCN
Sun EURASIP Journal on Information Security (2025) 2025:10
of the application nodes are transmitted to the starting
node. Subsequently, the starting node convolves again
to pass the aggregated features to the system function
nodes, completing the layer-by-layer aggregation of
features between nodes. Finally, through the feature
readout module, the global features of system function
nodes are used as inputs for classification tasks. The
key to the improved R-GCN lies in the full utilization of
edge features, and the update process of node features
is shown in Eq. (5).
 
(l+1)
� � 1 �
(l)
�
(l) (l)
hi = σ Wr(l) hj + eji + W0 hi 
r ci,r
r∈R j∈Ni
(5)
In Eq. (5), eji is the edge feature, which is the posi-
tional encoding of the API. When edge features are
directly added to the features of neighboring nodes, each
edge can not only convey the relationship information
between nodes but also reflect the positional semantic
differences of the API. Therefore, even for the same API
node, its semantic contribution to the target node will
change in different applications due to different posi-
tional encodings, thereby enhancing the model’s ability
to represent complex behavioral patterns. The training
process for feature extraction of application behavior het-
erogeneous graph based on improved R-GCN is shown
in Fig. 6.
In Fig. 6, the training process is divided into two stages:
forward propagation and backward propagation. The
first step is to initialize the parameters and determine the
Fig. 6 Training process for feature extraction of heterogeneous graphs based on improved R-GCN
Page 8 of 15
input data and target label. In forward propagation, input
data are passed layer by layer to generate predicted out-
puts, which are compared with real labels to calculate loss
values. Subsequently, it enters the backpropagation stage,
where parameters are adjusted using a gradient descent
algorithm based on the loss value, and weights and biases
are updated layer by layer to minimize errors. After each
round of training, performance will be evaluated. If the
accuracy requirements are met, the parameters will be
saved and the training will end. Otherwise, iterating will
be continued until the preset goal is achieved. When the
feature extraction approaches the optimal performance
through alternating forward and reverse directions, the
extracted global features are input into the classifier to
achieve accurate classification of malicious software and
benign software. Therefore, the pseudo-code of malware
identification based on the DL algorithm and API fea-
ture extraction proposed in the final research is shown in
Fig. 7.
4 Results
To verify the superiority of the MSD method based on
the DL algorithm and API feature extraction, this study
conducts extensive experiments on this method from dif-
ferent aspects. Before starting the experiment, this study
first configures the experimental environment and sets
the experimental parameters, as shown in Table 1.
In Table 1, the research selects a three-layer R-GCN for
feature extraction to balance the expressiveness and com-
putational complexity of the model. In malware detection
tasks, API call patterns have multi-level dependencies.
Sun EURASIP Journal on Information Security (2025) 2025:10 Page 9 of 15

Fig. 7 Algorithm pseudo-code

Table 1 Experimental environment configuration and experimental parameter settings

Experimental configuration
Category Specific configuration Category Specific configuration
CPU Intel Xeon E5-2698 v4, 2.2 GHz, 16 cores GPU NVIDIA Tesla V100, 32 GB VRAM
Memory 64 GB DDR4 Storage 2 TB SSD
Operating system Ubuntu 20.04 LTS DL framework PyTorch 2.0
Graph Neural Network Library DGL 1.1.0 Programming language Python 3.9
Experimental parameter settings
Category Specific parameters Category Specific parameters
Embedding dimension 128 Number of heterogeneous 3 layers
graph convolution layers
Node feature dimension per layer 128 for the first layer, 64 for the second, 32 Learning rate 0.001
for the third
Weight decay 0.0001 Dropout 0.5
Position encoding dimension 64 Edge feature dimension 64
Batch size 64 Maximum training epochs 200

Shallow GCN (such as layers 1 and 2) can only capture to the convergence of all nodes’ characteristics and sub-
local neighborhood information, making it difficult to sequent impact on classification ability. Therefore, the
learn complex call patterns. The deep GCN (such as layer three-layer GCN can not only effectively capture the
4 and above) may lead to excessive smoothing, leading global behavior characteristics but also maintain the
Sun EURASIP Journal on Information Security (2025) 2025:10
effectiveness of information transmission, and the cal-
culation cost is relatively controllable. Furthermore, the
embedding dimension (128) and the location encod-
ing dimension (64) are balanced, ensuring a trade-off
between information richness and computational cost.
The learning rate (0.001) and weight decay (0.0001) are
tuned to promote stable convergence and prevent over-
fitting, while Dropout (0.5) is employed to enhance gen-
eralization. The batch size (64) and maximum training
rounds (200) balance training efficiency and model effec-
tiveness, while the edge feature dimension (64) is used to
enhance API call relationship modeling.
Based on Table 1, this study selects Drebin and Andro-
Zoo as experimental data sources. Among them, the
Drebin dataset contains 5,560 malicious software sam-
ples and 9,476 benign software samples, providing static
features and family annotations, suitable for malicious
software classification tasks. The AndroZoo dataset is a
large-scale repository of Android applications, contain-
ing over 13 million APK files covering multiple Android
markets. It supports complex MSD experiments by
extracting API call sequences. The Drebin dataset cov-
ers common malware families such as Trojans, Ransom-
ware, Adware, Spyware, Remote Access Tools (RATs),
and backdoors. Different families differ in their attack
targets and behavior patterns. For example, information
theft malware often calls getSubscriberId() and getSim-
SerialNumber() to obtain user identity information, while
RATs use execHttpRequest() and openSocket() to estab-
lish remote connections. In contrast, the AndroZoo data-
set, which contains large APK samples collected from
multiple Android markets, is broader in scope and con-
tains a large number of recent malware variants.
Both datasets are divided into training set, validation
set, and testing set in a ratio of 7:1.5:1.5. Firstly, this study
conducts basic performance verification experiments.
Fig. 8 Experimental results of basic performance verification
Page 10 of 15
Four common ML models, Support Vector Machine
(SVM), RF, LSTM, and CNN, are compared with DL
models, as well as traditional R-GCN and research meth-
ods. The results in the test set of two datasets are shown
in Fig. 8.
In Fig. 8a, on the Drebin dataset with a small sample
size and clear features, the accuracy and F1 score of the
research method are 92.80% and 91.30%, which are 1.30%
and 1.20% higher than traditional R-GCN. This indicates
that traditional methods have been able to better capture
the characteristics of malicious software. The research
method further enhances semantic expression ability
through edge feature modeling and API location infor-
mation, demonstrating certain advantages. In Fig. 8b, on
the AndroZoo dataset with a large sample size and com-
plex features, the accuracy and F1 score of the research
method are 94.24% and 92.76%, which are 3.28% and
3.04% higher than traditional R-GCN, demonstrating a
more significant performance advantage. This indicates
that the improved method exhibits higher robustness
and generalization ability in modeling complex behav-
ioral features and processing large-scale data. On this
basis, this study conducts experiments on the effective-
ness of heterogeneous graph models, selecting traditional
R-GCN, GCN, and LSTM as comparison methods for
improving R-GCN, as shown in Fig. 9.
In Fig. 9a, for the False Positive Rate (FPR), the
improved R-GCN achieves convergence after 10.8 s of
training, with an FPR of 1.08%. The convergence time of
the three comparison methods exceeds 20 s, and the FPR
during convergence exceeds 2%. In Fig. 9b, for the False
Negative Rate (FNR), the improved R-GCN achieves con-
vergence after 17.7 s of training, with an FPR of 0.67%.
The performance of the three comparison methods is still
inferior to the improved R-GCN. Improved R-GCN train-
ing has higher efficiency, with fewer false positives and
Sun EURASIP Journal on Information Security (2025) 2025:10
Fig. 9 Validity verification results of heterogeneous graph model
false negatives, is suitable for rapid deployment require-
ments in large-scale MSD tasks, and can perform MSD
more accurately. Furthermore, this study validates the
impact of location information in API call sequences on
MSD performance. A complete API call sequence group,
no location information group, and randomized location
encoding group are set up, named G1-G3, respectively.
The experimental results are shown in Fig. 10.
In Fig. 10a, G1 has the best accuracy performance, con-
verging to 91.16% after 200 iterations. The accuracy of
G2 is lower than G1, with a convergence rate of 86.58%,
indicating that removing positional information weak-
ens the model’s ability to model contextual logic. The
accuracy of G3 is the lowest, only converging to 83.62%,
Fig. 10 Impact of API location information on performance
Page 11 of 15
indicating that the randomization of position encoding
destroys the semantic consistency of the sequence and
has a significant impact on the performance of the model.
In Fig. 10b, the FPR of G1 decreases the fastest and even-
tually converges to 1.06%, demonstrating the strongest
false alarm control capability. The FPR of G2 is slightly
higher, converging to 2.15%, indicating that removing
location information leads to an increase in the model’s
misjudgment rate. The FPR of G3 remains at a relatively
high level, eventually converging to 2.97%, further veri-
fying that randomized positional encoding can disrupt
the model’s ability to model behavioral patterns. Table 2
presents the results of ablation experiments conducted to
Sun EURASIP Journal on Information Security (2025) 2025:10 Page 12 of 15

Table 2 Results of ablation experiment

Method Index (%)
API location Heterogeneous graph Edge features Improved R-GCN Accuracy FPR Memory usage
information node types

× √ √ √ 89.21 4.15 70.23

√ × √ √ 87.65 3.34 67.84
√ √ × √ 86.33 3.88 65.51
√ √ √ × 87.48 4.23 66.19
√ √ √ √ 94.71 1.28 72.36

validate the contributions of each module in the research
methodology.
The results in Table 2 show that API location informa-
tion, heterogeneous graph node types, edge features, and
improved R-GCN all contribute significantly to malware
detection performance. After removing the API location
information, the accuracy decreases by 5.5% and the FPR
rises to 4.15%, indicating its importance in modeling the
order of API calls. The removal of heterogeneous graph
node types and edge features reduces the accuracy to
87.65% and 86.33%, respectively, indicating that the
introduction of different node types and the modeling of
API interaction are crucial to the detection performance.
The unimproved R-GCN model only achieves 87.48%
accuracy and 4.23% FPR, indicating that the improved
R-GCN improves the detection capability by enhanc-
ing the feature propagation mechanism. The complete
method performs the best when all modules are enabled,
the accuracy rate is 94.71%, and the FPR is reduced to
1.28%, which verifies the effectiveness of the synergistic
effect of all modules. Quantitative analysis shows that
API position information contributes the most, followed
by heterogeneous graph node type, edge features, and
improvement. In addition, although the memory usage of
the complete method is the highest, reaching 72.36%, it
is still in a reasonable range, which ensures the calcula-
tion feasibility. In summary, all modules play an impor-
tant role in feature expression, temporal relationship
modeling, and structured data learning, and cooperate
with each other to significantly improve the accuracy and
robustness of malware detection.
The methods mentioned in references [10–12], and
[13] are selected as comparison methods for final veri-
fication under the same experimental environment and
data set conditions. All methods are tested on the Drebin
and AndroZoo datasets, and the same data partitioning
strategy is used to ensure the fairness and reproducibil-
ity of the experiment. In addition, to eliminate the per-
formance deviation caused by the parameter adjustment
of different methods, the hyperparameter configuration
of the comparison methods is strictly in accordance with
the original paper settings. No additional optimization is
carried out to maintain the baseline performance of the
original method. The result is shown in Fig. 11.

Fig. 11 Comparison with existing methods

Sun EURASIP Journal on Information Security (2025) 2025:10 Page 13 of 15

In Fig. 11a, the average recognition accuracy of the
method in reference [10] is 87.74%, and in reference [11]
it is 89.18%. In references [12] and [13], the recognition
accuracy of the methods is relatively high, at 91.24%
and 91.33%, but these two methods have strong volatil-
ity. The average recognition accuracy of the research
method is 94.27%, which performs the best. In Fig. 11b,
the detection time of the methods and research methods
in references [10–12], and [13] are all between 5 and 10
s. Overall, compared with existing methods, the research
method can achieve a certain level of efficiency while
improving recognition accuracy.
To assess the adaptability of the model in the Zero-day
Attack environment, the research employs the Leave-
One-Family-Out (LOFO) training strategy. This entails
the elimination of a specific type of malware during the
training process, with the remaining categories being uti-
lized for training purposes. The detection performance of
the model on the unseen malware family is tested. In the
experiment, the Drebin dataset is used to select six major
malware families to conduct LOFO training tests respec-
tively, and the methods in references [10–12], and [13]
are compared. The results are shown in Table 3.
In Table 3, the reference [10] method demonstrates
an accuracy of 85.08% in zero-day attack environments,
while the reference [11] method exhibits an accuracy of
86.96%. Notably, the reference [12] and [13] methods
exhibit notably high accuracies of 89.34% and 89.94%,
respectively. However, these methods have large per-
formance fluctuations on the non-seen malware
family. The average recognition accuracy of the pro-
posed method in all test categories is 93.67%, which is
obviously better than the existing methods, indicating
that the method in this study has stronger generaliza-
tion ability in zero-day attack environment. To evaluate
the scalability of the model, experiments are conducted
with three methods: training time, reasoning speed,
and computing resource consumption. The results are
compared with those in references [10–12], and [13], as
shown in Table 4.
From Table 4, the proposed model is superior in train-
ing time and reasoning time, indicating that it has higher
training efficiency and can improve the real-time detec-
tion of malware. In terms of memory usage, floating-
point computation, and GPU utilization, the performance
of the proposed model is inferior to that of the refer-
ences [10] and [11], but superior to that of the references
[12] and [13]. This result shows that the computational
resource consumption of the proposed model is at a good
level while ensuring optimal detection performance. In
the future, optimization strategies such as model prun-
ing, quantization, and edge computing can be combined
to further reduce computing resource consumption and
make the model more suitable for large-scale deployment
and real-time detection environments.
5 Discussion
The malware detection method based on DL and API
feature extraction proposed in this study shows advan-
tages in behavior modeling, generalization ability,

Table 3 Comparison of zero-day malware detection performance with existing methods

Test malware family Reference [10] Reference [11] Reference [12] Reference [13] Proposed Method

Trojan 84.95% 86.27% 88.91% 89.32% 92.74%

Spyware 85.12% 87.03% 89.64% 90.21% 94.01%
RAT​ 86.43% 88.29% 90.12% 90.67% 94.35%
Ransomware 83.87% 85.74% 88.56% 89.12% 93.19%
Adware 85.76% 87.92% 89.83% 90.45% 94.27%
Backdoor 84.32% 86.53% 88.95% 89.84% 93.45%
Average Accuracy 85.08% 86.96% 89.34% 89.94% 93.67%

Table 4 Experimental results of model scalability

Method Training time (s) Inference time (s) Memory usage (GB) FLOPs (× 109) GPU
utilization
(%)

Reference [10] 1420 7.6 9.3 41.2 77.4

Reference [11] 1150 5.2 6.8 31.7 68.2
Reference [12] 1600 9.1 11.7 50.6 83.9
Reference [13] 1540 8.3 12.2 48.9 85.3
Proposed method 1280 6.7 10.5 44.1 81..7
Sun EURASIP Journal on Information Security (2025) 2025:10
computational efficiency, and false alarm rate control.
Compared with the optimization method based on API
call features proposed by Jhansi et al. [13], this study
more accurately models API semantic relationships
through R-GCN and API position encoding, thereby
improving detection capabilities. In terms of adversarial
sample detection, Ban et al. [6] showed that the eva-
sion rate of existing classifiers under black-box attacks
can reach 99%, while this method effectively reduces
detection vulnerabilities by enhancing feature learning.
Compared with the detection method based on image
processing proposed by Tuncer et al. [8], this study more
deeply describes malicious behavior patterns through
heterogeneous graph modeling and improves feature
expression capabilities. At the same time, although Vai-
yapuri et al. [14] used optimization methods to improve
detection efficiency in industrial IoT environments, the
cost of parameter tuning was high, while this method
completed detection within 5 to 10 s, maintaining high
efficiency and stability. In summary, this method achieves
a balance between detection accuracy, robustness, and
efficiency, providing a more reliable and efficient solution
for malware detection.
The research method shows high accuracy and gen-
eralization ability in malware detection, but there is still
room for improvement in scalability, real-time deploy-
ment, and dynamic threat adaptability. Firstly, in terms
of scalability, as the data scale grows, the GNN comput-
ing cost may become a bottleneck. In the future, resource
allocation can be optimized through graph sampling,
model pruning, and distributed computing to improve
system scalability. Secondly, in terms of real-time deploy-
ment, on mobile terminals and IoT devices with limited
computing resources, the model computing overhead is
large. In the future, lightweight models, edge comput-
ing, and incremental learning can be explored to improve
detection speed while ensuring accuracy. Finally, in terms
of dynamic threat adaptability, malware continues to
evolve, and attackers use code obfuscation, mutation,
and evasion techniques to bypass the detection system.
In the future, online learning, transfer learning, and static
dynamic hybrid analysis can be combined to improve the
model’s ability to detect unknown threats. In response to
these challenges, the research can further optimize com-
puting efficiency, real-time detection capabilities, and
dynamic defense strategies to improve the practicality
and security of the method.
This study mainly focuses on the accuracy of malware
detection, but in network security, the interpretability of
AI models is equally crucial. The potential for the intro-
duction of feature attribution visualization methods,
Page 14 of 15
such as Shapley Additive Explanations (SHAP) and Local
Interpretable Model-agnostic Explanations (LIME),
should be explored in future research. The investigation
of the impact of API calls on malware classification could
be facilitated through the utilization of these methods.
In addition, the combination of attention-based models
such as Transformer or the Attention layer can high-
light the most critical sequence of API calls, making the
inspection decision process more transparent. Improving
model interpretability not only helps security research-
ers understand the detection logic but also improves
the reliability and acceptability of the model in practical
applications.
6 Conclusion
Aiming at the accuracy and efficiency of malware detec-
tion, this paper proposed a malware detection method
based on DL algorithm and API feature extraction. This
method extracted the API call sequence and entry func-
tion of the Android application, constructed a hetero-
geneous graph, and used improved R-GCN for feature
learning to improve the detection capability of malware.
The experimental results showed that the accuracy of the
proposed method on the Drebin and AndroZoo data-
sets reached 92.80% and 94.24%, and the F1 scores were
91.30% and 92.76%, respectively. Compared with tradi-
tional R-GCN, this method improved the detection accu-
racy and enhanced the robustness and generalization
ability of the model. The ablation experiment and API
position coding influence experiment further verified the
effectiveness of each module, indicating that API posi-
tion information, heterogeneous graph node types, and
edge characteristics all contributed significantly to the
detection performance. In the comparative experiment,
the research method outperformed the existing meth-
ods in both conventional malware detection and zero-
day attack detection. In the conventional detection tasks,
the average recognition accuracy of the research method
was 94.27%, which was significantly improved compared
with the existing methods. The detection was completed
within 5 to 10 s, ensuring the computational efficiency.
In the zero-day attack detection experiment, the aver-
age recognition accuracy of this method for all tested
malware families reached 93.67%, significantly higher
than the reference methods. Especially in the detection
of remote access Trojans and information theft software,
the accuracy rates reached 94.35% and 94.01%, respec-
tively. It shows stronger generalization ability and adapta-
bility to complex attack behavior. In contrast, the existing
methods have poor stability in zero-day attack detection,
and their performance fluctuates greatly, which further
Sun EURASIP Journal on Information Security (2025) 2025:10
validates the effectiveness of this method. In summary,
the research method combines API location information,
heterogeneous graph modeling, and improved R-GCN.
This combination improves detection accuracy and
ensures computational efficiency. It also demonstrates
stronger adaptability under zero-day attack environ-
ments. This provides a more reliable malware detection
scheme for practical applications.
Acknowledgements
Not applicable.
Author’s contributions
W.S. draft manuscript preparation; study conception and design.
Funding
This paper didn’t receive any funding support.
Data availability
The datasets used and/or analysed during the current study available from the
corresponding author on reasonable request.
Declarations
Ethics approval and consent to participate
Not applicable.
Consent for publication
Not applicable.
Competing interests
The authors declare no competing interests.
Received: 20 December 2024 Accepted: 24 February 2025
References
1. H. Mokayed, T.Z. Quan, L. Alkhaled, V. Sivakumar, Real-time human
detection and counting system using deep learning computer vision
techniques. Artificial. Intellig. Appl. 1(4), 221–229 (2023)
2. A. Al-Marghilani, Comprehensive analysis of IoT malware evasion tech-
niques. Eng. Technol. Appl. Sci. Res. 11(4), 7495–7500 (2021)
3. P. Yadav, N. Menon, V. Ravi, S. Vishvanathan, T.D. Pham, A two-stage deep
learning framework for image-based android malware detection and
variant classification. Comput. Intell. 38(5), 1748–1771 (2022)
4. S.A. Ajagbe, J.B. Awotunde, H. Florez, Ensuring intrusion detection for IOT
services through an improved CNN. SN Comput. Sci. 5(1), 49 (2023)
5. S.A. Ajagbe, M.O. Adigun, Deep learning techniques for detection and
prediction of pandemic diseases: a systematic literature review. Multime-
dia. Tools Appl. 83(2), 5893–5927 (2024)
6. X. Pei, X. Deng, S. Tian, L. Zhang, K. Xue, A knowledge transfer-based
semi-supervised federated learning for IoT malware detection. IEEE Trans.
Dependable Secure Comput. 20(3), 2127–2143 (2022)
7. F. Mercaldo, A. Santone, Audio signal processing for Android malware
detection and family identification. J. Comput. Virol. Hacking Techniq.
17(2), 139–152 (2021)
8. T. Tuncer, F. Ertam, S. Dogan, Automated malware identification method
using image descriptors and singular value decomposition. Multimedia
Tools Appl. 80(7), 10881–10900 (2021)
9. S. Ali, O. Abusabha, F. Ali, M. Imran, T. Abuhmed, Effective multitask deep
learning for iot malware detection and identification using behavioral
traffic analysis. IEEE Trans. Netw. Serv. Manage. 20(2), 1199–1209 (2022)
10. P.K. Kaithal, V. Sharma, African Vulture Optimization-Based Decision
Tree (AVO-DT): an innovative method for malware identification and
Page 15 of 15
evaluation through the application of meta-heuristic optimization algo-
rithm. Cybernet. Inform. Technol. 24(2), 142–155 (2024)
11. T. Kim, M. Krichen, M.A. Alamro, A. Mihoub, G. Avelino Sampedro, S.
Abbas, Exploiting smartphone defence: a novel adversarial malware
dataset and approach for adversarial malware detection. Peer-to-Peer
Net. Appl. 17(5), 3369–3384 (2024)
12. S.A. Habtor, A.H.H. Dahah, Machine-learning classifiers for malware detec-
tion using data features. J. ICT Res. Appl 15(3), 265–290 (2021)
13. K.S. Jhansi, P.R.K. Varma, S. Chakravarty, Swarm optimization and machine
learning for android malware detection. Comput. Mater. Continua 73(3),
6327–6345 (2022)
14. T. Vaiyapuri, K. Shankar, S. Rajendran, S. Kumar, V. Gaur, D. Gupta, M.
Alharbi, Automated cyberattack detection using optimal ensemble deep
learning model. Transact. Emerg. Telecommun. Technol. 35(4), e4899
(2024)
15. A. Manimaran, L. Kartheesan, D. Kumutha, R. Surendran, An optimized
hybrid deep learning framework for monitoring botnet attacks in IoT net-
works, 2024 International Conference on IoT Based Control Networks and
Intelligent Systems (ICICNIS). (Bengaluru, 2024 International Conference
on IoT Based Control Networks and Intelligent Systems (ICICNIS), 2024),
pp. 487–492
16. Y. Alotaibi, R. Deepa, K. Shankar, S. Rajendran, Inverse chi-square-based
flamingo search optimization with machine learning-based security solu-
tion for Internet of Things edge devices. AIMS Math 9, 22–37 (2024)
17. A. Swaminathan, B. Ramakrishnan, M. Kanishka, R. Surendran Prediction
of cyber-attacks and criminality using machine learning algorithms. 2022
International Conference on Innovation and Intelligence for Informat-
ics, Computing, and Technologies (3ICT). (Sakheer, Bahrain, 2022), pp.
547–552
18. M.E. Farfoura, A. Alkhatib, D.M. Alsekait et al., A low complexity ML-based
methods for malware classification. Comput. Mater. Continua 80(3),
4833–4857 (2024)
19. K.A. Dhanya, P. Vinod, S.Y. Yerima et al., Obfuscated malware detection
in IoT Android applications using Markov images and CNN. IEEE Syst. J.
17(2), 2756–2766 (2023)
20. X. Hu, C. Zhu, G. Cheng, R. Li, H. Wu, J. Gong, A deep subdomain adapta-
tion network with attention mechanism for malware variant traffic
identification at an IoT edge gateway. IEEE Int. Things J. 10(5), 3814–3826
(2023)
21. K.A. Dahri, M.S. Vighio, B.A. Zardari, Detection and prevention of malware
in Android operating system. Mehran Univ. Res. J. Eng. Technol. 40(4),
847–859 (2021)
22. G. Sun, Q. Qian, Deep learning and visualization for identifying malware
families. IEEE Trans. Dependable Secure Comput. 18(1), 283–295 (2021)
23. J. Kim, Y. Ban, E. Ko, H. Cho, J.H. Yi, MAPAS: a practical deep learning-based
android malware detection system. Int. J. Inf. Secur. 21(4), 725–738 (2022)
24. Y. Chai, L. Du, J. Qiu, L. Yin, Z. Tian, Dynamic prototype network based on
sample adaptation for few-shot malware detection. IEEE Trans. Knowl.
Data Eng. 35(5), 4754–4766 (2022)
25. R. Yumlembam, B. Issac, S.M. Jacob, L. Yang, Iot-based android malware
detection using graph neural network with adversarial defense. IEEE
Internet Things J. 10(10), 8432–8444 (2022)
26. S. Li, Q. Zhou, R. Zhou, Q. Lv, Intelligent malware detection based on
graph convolutional network. J. Supercomput. 78(3), 4182–4198 (2022)
27. O.J. Falana, A.S. Sodiya, S.A. Onashoga, B.S. Badmus, Mal-Detect: an intel-
ligent visualization approach for malware detection. J. King Saud Univ.
Comput. Inform. Sci. 34(5), 1968–1983 (2022)
Publisher’s Note
Springer Nature remains neutral with regard to jurisdictional claims in pub-
lished maps and institutional affiliations.