Apposcopy: Semantics-Based Detection of Android Malware through Static Analysis

被引:245
|
作者
Feng, Yu [1 ]
Anand, Saswat [2 ]
Dillig, Isil [1 ]
Aiken, Alex [2 ]
机构
[1] Univ Texas Austin, Austin, TX 78712 USA
[2] Stanford Univ, Stanford, CA 94305 USA
来源
22ND ACM SIGSOFT INTERNATIONAL SYMPOSIUM ON THE FOUNDATIONS OF SOFTWARE ENGINEERING (FSE 2014) | 2014年
关键词
Android; Inter-component Call Graph; Taint Analysis;
D O I
10.1145/2635868.2635869
中图分类号
TP31 [计算机软件];
学科分类号
081202 ; 0835 ;
摘要
We present Apposcopy, a new semantics-based approach for identifying a prevalent class of Android malware that steals private user information. Apposcopy incorporates (i) a high-level language for specifying signatures that describe semantic characteristics of malware families and (ii) a static analysis for deciding if a given application matches a malware signature. The signature matching algorithm of Apposcopy uses a combination of static taint analysis and a new form of program representation called Inter-Component Call Graph to efficiently detect Android applications that have certain control- and data-flow properties. We have evaluated Apposcopy on a corpus of real-world Android applications and show that it can effectively and reliably pinpoint malicious applications that belong to certain malware families.
引用
下载
收藏
页码:576 / 587
页数:12
相关论文
共 50 条
  • [21] ANASTASIA: ANdroid mAlware detection using STAtic analySIs of Applications
    Fereidooni, Hossein
    Conti, Mauro
    Yao, Danfeng
    Sperduti, Alessandro
    2016 8TH IFIP INTERNATIONAL CONFERENCE ON NEW TECHNOLOGIES, MOBILITY AND SECURITY (NTMS), 2016,
  • [22] Detection of Android Malware: Combined with Static Analysis and. Dynamic Analysis
    Su, Ming-Yang
    Fung, Kek-Tung
    Huang, Yu-Hao
    Kang, Ming-Zhi
    Chung, Yen-Heng
    2016 INTERNATIONAL CONFERENCE ON HIGH PERFORMANCE COMPUTING & SIMULATION (HPCS 2016), 2016, : 1013 - 1018
  • [23] Static and Dynamic Analysis of Android Malware
    Kapratwar, Ankita
    Di Troia, Fabio
    Stamp, Mark
    ICISSP: PROCEEDINGS OF THE 3RD INTERNATIONAL CONFERENCE ON INFORMATION SYSTEMS SECURITY AND PRIVACY, 2017, : 653 - 662
  • [24] Malware Detection in Android based on Dynamic Analysis
    Bhatia, Taniya
    Kaushal, Rishabh
    2017 INTERNATIONAL CONFERENCE ON CYBER SECURITY AND PROTECTION OF DIGITAL SERVICES (CYBER SECURITY), 2017,
  • [25] A survey of Static Android Malware Detection Techniques
    Abu Samra, Aiman Ahmad
    Qunoo, Hasan N.
    Al-Rubaie, Fatma
    El-Talli, Haneen
    2019 IEEE 7TH PALESTINIAN INTERNATIONAL CONFERENCE ON ELECTRICAL AND COMPUTER ENGINEERING (PICECE), 2019,
  • [26] New Results on Permission Based Static Analysis for Android Malware
    Sahin, Durmus Ozkan
    Kural, Oguz Emre
    Akleylek, Sedat
    Kilic, Erdal
    2018 6TH INTERNATIONAL SYMPOSIUM ON DIGITAL FORENSIC AND SECURITY (ISDFS), 2018, : 340 - 343
  • [27] A Survey of Android Malware Static Detection Technology Based on Machine Learning
    Wu, Qing
    Zhu, Xueling
    Liu, Bo
    MOBILE INFORMATION SYSTEMS, 2021, 2021
  • [28] Static Detection of Android Malware Based on Improved Random Forest Algorithm
    Hou, Su
    Lu, Tianliang
    Du, Yanhui
    Guo, Jing
    2017 IEEE INTERNATIONAL CONFERENCE ON INTELLIGENCE AND SECURITY INFORMATICS (ISI), 2017, : 200 - 200
  • [29] What Static Analysis Can Utmost Offer for Android Malware Detection
    Kabakus, Abdullah Talha
    INFORMATION TECHNOLOGY AND CONTROL, 2019, 48 (02): : 235 - 249
  • [30] A Systematic Literature Review of Android Malware Detection Using Static Analysis
    Pan, Ya
    Ge, Xiuting
    Fang, Chunrong
    Fan, Yong
    IEEE ACCESS, 2020, 8 : 116363 - 116379
12345