pe_normalized_byte_count.py

"""Extract LIEF features from PE files"""
from h2oaicore.transformer_utils import CustomTransformer
import datatable as dt
import numpy as np

class PENormalizedByteCount(CustomTransformer):

    _regression = True
    _binary = True
    _multiclass = True
    _is_reproducible = True
    _parallel_task = True  # if enabled, params_base['n_jobs'] will be >= 1 (adaptive to system), otherwise 1
    _can_use_gpu = True  # if enabled, will use special job scheduler for GPUs
    _can_use_multi_gpu = True  # if enabled, can get access to multiple GPUs for single transformer (experimental)
    _numeric_output = True

    def __init__(self, **kwargs):
        super().__init__(**kwargs)


    @staticmethod
    def get_default_properties():
        return dict(col_type="text", min_cols=1, max_cols=1, relative_importance=1)


    @staticmethod
    def do_acceptance_test():
        return False


    def fit_transform(self, X: dt.Frame, y: np.array = None):
        return self.transform(X)


    def load_pe(self, file_path):
            with open(file_path, 'rb') as f:
                bytez = bytearray(f.read())
            return(bytez)


    def get_norm_byte_count(self, file_path):
        try:
            pe_bytez = self.load_pe(file_path)
            pe_int = np.frombuffer(pe_bytez, dtype=np.uint8)
            # Calculate normalized byte counts
            counts = np.bincount(pe_int, minlength=256)
            X = counts / counts.sum()

            return X

        except:
            X = np.zeros(256, dtype=np.float32)

            return X


    def transform(self, X: dt.Frame):

        import pandas as pd
        orig_col_name = X.names[0]
        ret_df = pd.DataFrame(
                [
                    self.get_norm_byte_count(x)
                    for x in X.to_pandas().values[:,0]
                ]
            )
        self._output_feature_names = ['ByteNormCount_{}'.format(x) for x in range(ret_df.shape[1])]
        self._feature_desc = [f'Normalized Count of Byte value {x} for {orig_col_name} column' for x in range(ret_df.shape[1])]
        return ret_df
	"""Extract LIEF features from PE files"""
	from h2oaicore.transformer_utils import CustomTransformer
	import datatable as dt
	import numpy as np

	class PENormalizedByteCount(CustomTransformer):

	_regression = True
	_binary = True
	_multiclass = True
	_is_reproducible = True
	_parallel_task = True # if enabled, params_base['n_jobs'] will be >= 1 (adaptive to system), otherwise 1
	_can_use_gpu = True # if enabled, will use special job scheduler for GPUs
	_can_use_multi_gpu = True # if enabled, can get access to multiple GPUs for single transformer (experimental)
	_numeric_output = True

	def __init__(self, **kwargs):
	super().__init__(**kwargs)


	@staticmethod
	def get_default_properties():
	return dict(col_type="text", min_cols=1, max_cols=1, relative_importance=1)


	@staticmethod
	def do_acceptance_test():
	return False


	def fit_transform(self, X: dt.Frame, y: np.array = None):
	return self.transform(X)


	def load_pe(self, file_path):
	with open(file_path, 'rb') as f:
	bytez = bytearray(f.read())
	return(bytez)


	def get_norm_byte_count(self, file_path):
	try:
	pe_bytez = self.load_pe(file_path)
	pe_int = np.frombuffer(pe_bytez, dtype=np.uint8)
	# Calculate normalized byte counts
	counts = np.bincount(pe_int, minlength=256)
	X = counts / counts.sum()

	return X

	except:
	X = np.zeros(256, dtype=np.float32)

	return X


	def transform(self, X: dt.Frame):

	import pandas as pd
	orig_col_name = X.names[0]
	ret_df = pd.DataFrame(
	[
	self.get_norm_byte_count(x)
	for x in X.to_pandas().values[:,0]
	]
	)
	self._output_feature_names = ['ByteNormCount_{}'.format(x) for x in range(ret_df.shape[1])]
	self._feature_desc = [f'Normalized Count of Byte value {x} for {orig_col_name} column' for x in range(ret_df.shape[1])]
	return ret_df