Design on Android Malware Behavior Analysis System

doi:10.13190/j.jbupt.2014.s1.020

JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM ›› 2014, Vol. 37 ›› Issue (s1): 104-107.doi: 10.13190/j.jbupt.2014.s1.020

• Reports • Previous Articles Next Articles

Design on Android Malware Behavior Analysis System

LI Jing-hua, MU De-jun, YANG Ming-kun, HU Wei

School of Automation, Northwestern Polytechnical University, Xi'an 710072, China

Received:2013-11-08 Online:2014-06-28 Published:2014-06-28
Supported by:

Abstract

Abstract:

Consisting of nDroidC (client) and nDroidS(server), a behavior-based Android malware analysis system: nDroidAS is proposed. Application installation events on the Android device are monitored by nDroidC, which generates analysis requests while an application is to be installed. The target application is installed in nDroidS, by which dynamic feature vectors of the application are collected and analyzed to detect the malicious ones. Meanwhile, to pre-analyze applications, an Android package(APK) fetcher is designed in nDroidS to fetch APK samples from app markets. Some key technologies of the system such as feature vectors selection and interaction simulation are also discussed. A simplified prototype of nDroidAS is built, which is able to analyze Android malwares dynamically and fetch APK samples in the wild. Experiments show that the proposed system architecture is feasible.

Key words: Android, malware, behavior analysis

CLC Number:

TP393.08

LI Jing-hua, MU De-jun, YANG Ming-kun, HU Wei. Design on Android Malware Behavior Analysis System[J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2014, 37(s1): 104-107.

[1]	GUO Shize, Lü Renjian, HE Mingshu, ZHANG Jie, YU Saisai. Application of Flow Spectrum Theory in Network Defense [J]. Journal of Beijing University of Posts and Telecommunications, 2022, 45(3): 19-25.
[2]	TANG Yong-li, LI Xing-yu, ZHAO Zong-qu, LI Yun-feng. Detection Method for Android Payment Cracked Application [J]. Journal of Beijing University of Posts and Telecommunications, 2021, 44(4): 95-101.
[3]	XU Xiao-bo, ZHANG Wen-bo, HE Chao, LUO Yi. A Malicious Code Detection Method Based on Ensemble Learning of Behavior [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2019, 42(4): 89-95.
[4]	DONG Feng, LIU Tian-ming, XU Guo-ai, GUO Yan-hui, LI Cheng-ze. Defect Prediction Method for Android Binary Files [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2018, 41(1): 13-23.
[5]	ZHANG Hui, WANG Min. Optimal Correlation Prediction of User Behaviors Based on Mobile Social Environment [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2017, 40(6): 50-56.
[6]	XU Yan-ping, WU Chun-hua, HOU Mei-jia, ZHENG Kang-feng, YAO Shan. Android Malware Detection Technology Based on Improved Naïve Bayesian [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2016, 39(2): 43-47.
[7]	WU Bin, LIN Xing, LI Wei-dong, LU Tian-liang, ZHANG Dong-mei. Smartphone Malware Detection Model Based on Artificial Immune System in Cloud Computing [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2015, 38(4): 34-38.
[8]	ZHANG Peng, ZHANG Wen, NIU Shao-zhang, HUANG Zhen-peng. Android Software Protection Method by Enhancing Security of Native Programs [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2015, 38(1): 21-25.
[9]	DONG Hang, LI Qi, DONG Feng, PENG Yong, XU Guo-ai. A Detection Model of Malware Behaviors on Android [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2014, 37(3): 58-61,88.
[10]	. A File System for Malware Analysis and Protection [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2011, 34(3): 58-61.

Design on Android Malware Behavior Analysis System

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 10

Recommended Articles

Metrics

Comments