Apposcopy: Semantics-Based Detection of Android Malware through Static Analysis

被引:245
|
作者
Feng, Yu [1 ]
Anand, Saswat [2 ]
Dillig, Isil [1 ]
Aiken, Alex [2 ]
机构
[1] Univ Texas Austin, Austin, TX 78712 USA
[2] Stanford Univ, Stanford, CA 94305 USA
来源
22ND ACM SIGSOFT INTERNATIONAL SYMPOSIUM ON THE FOUNDATIONS OF SOFTWARE ENGINEERING (FSE 2014) | 2014年
关键词
Android; Inter-component Call Graph; Taint Analysis;
D O I
10.1145/2635868.2635869
中图分类号
TP31 [计算机软件];
学科分类号
081202 ; 0835 ;
摘要
We present Apposcopy, a new semantics-based approach for identifying a prevalent class of Android malware that steals private user information. Apposcopy incorporates (i) a high-level language for specifying signatures that describe semantic characteristics of malware families and (ii) a static analysis for deciding if a given application matches a malware signature. The signature matching algorithm of Apposcopy uses a combination of static taint analysis and a new form of program representation called Inter-Component Call Graph to efficiently detect Android applications that have certain control- and data-flow properties. We have evaluated Apposcopy on a corpus of real-world Android applications and show that it can effectively and reliably pinpoint malicious applications that belong to certain malware families.
引用
下载
收藏
页码:576 / 587
页数:12
相关论文
共 50 条
  • [41] ANDROID MALWARE DETECTION THROUGH PERMISSION AND PACKAGE
    Ju, Xiang-Yu
    2014 INTERNATIONAL CONFERENCE ON WAVELET ANALYSIS AND PATTERN RECOGNITION (ICWAPR), 2014, : 61 - 65
  • [42] Class Semantics-based Attention for Action Detection
    Sridhar, Deepak
    Quader, Niamul
    Muralidharan, Srikanth
    Li, Yaoxin
    Dai, Peng
    Lu, Juwei
    2021 IEEE/CVF INTERNATIONAL CONFERENCE ON COMPUTER VISION (ICCV 2021), 2021, : 13719 - 13728
  • [43] MalwareHunt: semantics-based malware diffing speedup by normalized basic block memoization
    Ming J.
    Xu D.
    Wu D.
    Journal of Computer Virology and Hacking Techniques, 2017, 13 (3) : 167 - 178
  • [44] Attack Tree Based Android Malware Detection with Hybrid Analysis
    Zhao, Shuai
    Li, Xiaohong
    Xu, Guangquan
    Zhang, Lei
    Feng, Zhiyong
    2014 IEEE 13TH INTERNATIONAL CONFERENCE ON TRUST, SECURITY AND PRIVACY IN COMPUTING AND COMMUNICATIONS (TRUSTCOM), 2014, : 380 - 387
  • [45] Static and Dynamic Integrated Analysis Scheme for Android Malware
    Chun-Hao Yung
    Wen-Shenq Juang
    Journal of Electronic Science and Technology, 2017, 15 (03) : 246 - 250
  • [46] A new tool for static and dynamic Android malware analysis
    Martin, A.
    Lara-Cabrera, R.
    Camacho, D.
    DATA SCIENCE AND KNOWLEDGE ENGINEERING FOR SENSING DECISION SUPPORT, 2018, 11 : 509 - 516
  • [47] IntDroid: Android Malware Detection Based on API Intimacy Analysis
    Zou, Deqing
    Wu, Yueming
    Yang, Siru
    Chauhan, Anki
    Yang, Wei
    Zhong, Jiangying
    Dou, Shihan
    Jin, Hai
    ACM TRANSACTIONS ON SOFTWARE ENGINEERING AND METHODOLOGY, 2021, 30 (03)
  • [48] An Android Malware Detection System Based on Behavior Comparison Analysis
    Tao, Jing
    Zhang, Yan
    Cao, Pengfei
    Wang, Zheng
    Zhao, Qiqi
    ALGORITHMS AND ARCHITECTURES FOR PARALLEL PROCESSING, ICA3PP 2017, 2017, 10393 : 387 - 396
  • [49] Detection Efficiency of Static Analyzers against Obfuscated Android Malware
    Ajiri, Victor
    Butakov, Sergey
    Zavarsky, Pavol
    2020 IEEE 6TH INT CONFERENCE ON BIG DATA SECURITY ON CLOUD (BIGDATASECURITY) / 6TH IEEE INT CONFERENCE ON HIGH PERFORMANCE AND SMART COMPUTING, (HPSC) / 5TH IEEE INT CONFERENCE ON INTELLIGENT DATA AND SECURITY (IDS), 2020, : 231 - 234
  • [50] STATIC DETECTION OF ANDROID MALWARE BY USING PERMISSIONS AND API CALLS
    Chan, Patrick P. K.
    Song, Wen-Kai
    PROCEEDINGS OF 2014 INTERNATIONAL CONFERENCE ON MACHINE LEARNING AND CYBERNETICS (ICMLC), VOL 1, 2014, : 82 - 87
12345