Most existing approaches for solving the network threat problems focus on the behavioural feature analysis using association analysis and pattern filtering; it costs a lot of manpower and financial resources. However, it cannot catch up with the spread speed of new cyber threats. Essentially, Deep Learning (DL) uses deep neural networks (DNNs) through the multi-layer architecture to perform feature learning and class mapping from intrusion detection datasets. Accordingly, this study focused on DDoS detection using convolutional neuron networks (CNNs) with back propagation approach base on LeNet-5 thru behavioral feature selection, transformation, and comparison to classify the malware. The experiment results show that the expected detection accuracy cannot be achieved if the number of samples in 39 attack types for intrusion detection datasets is not uniform. To speed up the model learning with the high accuracy, the present study make suggestions on training dataset which is used to build the classification model thru use of two case studies of intrusion detection.