I. Introduction
There is currently no effective method to detect the infection from polymorphic malicious software (malware) across the enterprise. The ability to detect the infection and propagation of polymorphic malware across the enterprise through network, email, and host is a major challenge for system-owners and cyber-security professionals. Polymorphic and metamorphic malware change their signatures as they spread across the enterprise rendering signature-based detection practically useless. The growth of polymorphic malware threats continues to far exceed the security industry's projections and estimates. McAfee Labs collected over 200 million malware samples in Q1 2014 (January through March) [1]. The majority of these samples were polymorphic malware detected and collected due to the “suspicious” nature of the signature or behavioral issues with network protection devices or security appliances.