Microsoft Project Ire: AI for Reverse Engineering Malware

Microsoft has introduced a new artificial intelligence agent called Project Ire, capable of classifying malware globally with high accuracy. The project, unveiled at Black Hat USA 2025, can fully reverse-engineer software files — even without any prior information about their origin or purpose.

How Project Ire Works

Project Ire uses decompilers, reverse engineering tools, and advanced language models to analyze and classify files. This system can even identify files that standard automated systems fail to classify.

Performance and Accuracy

In tests, Project Ire achieved an accuracy of 0.98 and a recall of 0.83 on public Windows driver datasets. It can revalidate initial findings using a verification tool and produce a final report classifying a file as malware or clean.

Availability and Applications

The prototype of Project Ire is already being used within Microsoft Defender as a binary analyst to detect threats. The ultimate goal is for the system to accurately classify files from any source, even on first encounter, and reduce security analysts’ fatigue.

 

Source: MedadPress
www.medadpress.ir