Analysis of malicious and benign android applications

Proceedings - 32nd IEEE International Conference on Distributed Computing Systems Workshops, ICDCSW 2012

Volumn , Issue , 2012, Pages 608-616

  Alazab, Moutaz ^a   Monsamy, Veelasha ^a   Batten, Lynn ^a   Tian, Ronghua ^a   Lantz, Patrik ^b  

^a DEAKIN UNIVERSITY   (Australia)

^b ERICSSON RESEARCH   (Sweden)

Author keywords

Android; Behavior graph; Droidbox; Dynamic; Mobile malware; Treemap

Indexed keywords

ANDROID; BEHAVIOR GRAPH; DROIDBOX; MOBILE MALWARE; TREEMAP;

COMPUTER CRIME; DYNAMICS; VIRUSES;

ROBOTS;

EID: 84866382195     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ICDCSW.2012.13     Document Type: Conference Paper

References (33)

1. Braden. (2011, Dec 1). Google's Android Market Reaches 400,000 Applications. Available: http://www.ijailbreak.com/applications/googles-android- marketreaches-400000-apps/
2. M. Alazab, S. Venkataraman, and P. Watters, "Towards Understanding Malware Behaviour by the Extraction of API Calls," in The second Cybercrime and Trustworthy Computing Workshop, Ballarat, Vic, 2010, pp. 52-59
3. Ammar Alazab, Moutaz Alazab, Jemal Abawajy, and M. Hobbs, "Web Application Protection against SQL Injection Attack," in 7th conference on Information Technology and Applications (ICITA 2011), Sydney, Australia, 2011.
4. M.Alazab, P.Watters, S.Venkatraman, M.Alazab, and A. Alazab, "Cybercrime: Current Trends of Malware Threats," presented at the International Conference on Democracy, CCIS series from Springer, Thessaloniki, Greece., 2011.
5. C. Hsiu-Sen and T. Woei-Jiunn, "Mobile Malware Behavioral Analysis and Preventive Strategy Using Ontology," presented at the Conference on Social Computing (SocialCom), 2010.
6. M. Alazab, S. Venkatraman, P. Watters, and M. Alazab, "Zero-day Malware Detection based on Supervised Learning Algorithms of API call Signatures," in Ninth Australasian Data Mining Conference: AusDM 2011, Ballarat, Vic, 2011, pp. 171 -181.
7. P. Lantz, "An Android Application Sandbox for Dynamic Analysis," Master, lectrical and Information Technology, Lund university, . Lund, Sweden, 2011.
8. L. M. Security. (2011, Dec 27). 'Lookout Mobile Threat Report'. Available: https://www.mylookout.com/-downloads/lookoutmobile-threat-report- 2011.pdf
9. A. P. Felt, M. Finifter, E. Chin, S. Hanna, and D. Wagner, "A survey of mobile malware in the wild," in Proceedings of the 1st ACM workshop on Security and privacy in smartphones and mobile devices, Chicago, Illinois, USA, 2011, pp. 3-14.
10. Y. Zhou, X. Zhang, X. Jiang, and V. Freeh, "Taming Information-Stealing Smartphone Applications (on Android), In Trust and Trustworthy Computing." vol. 6740, J. McCune, B. Balacheff, A. Perrig, A.-R. Sadeghi, A. Sasse, and Y. Beres, Eds., ed: Springer Berlin / Heidelberg, 2011, pp. 93-107.
11. F. Di Cerbo, A. Girardello, F. Michahelles, and S. Voronkova, "Detection of Malicious Applications on Android OS." vol. 6540, H. Sako, K. Franke, and S. Saitoh, Eds., ed: 'Computational Forensics' Springer Berlin / Heidelberg, 2011, pp. 138-149.
12. A. P. Felt, E. Chin, S. Hanna, D. Song, and D. Wagner, "Android permissions demystified," in proceedings the 18th ACM conference on Computer and communications security, Chicago, Illinois, USA, 2011, pp. 627-638.
13. É. Payet and F. Spoto, "Static Analysis of Android Programs Automated Deduction." vol. 6803, N. Bjørner and V. Sofronie-Stokkermans, Eds., ed: Springer Berlin / Heidelberg, 2011, pp. 439-445.
14. I. Burguera, U. Zurutuza, and S. Nadjm-Tehrani, "Crowdroid: behavior-based malware detection system for Android," in proceeding the 1st ACM workshop on Security and privacy in smartphones and mobile devices, Chicago, USA, 2011, pp. 15-26.
15. Bla, x, T. sing, L. Batyuk, A. D. Schmidt, S. A. Camtepe, and S. Albayrak, "An Android Application Sandbox system for suspicious software detection," presented at the 5th International Conference on Malicious and Unwanted Software (MALWARE), Nancy, Lorraine 2010.
16. Android. (2011, Dec 26). Android Monkey tool, . Available: http://developer.android.com/guide/developing/tools/monkey.html,
17. Sven Bugiel, Lucas Davi, Alexandra Dmitrienko, Thomas Fischer, and Ahmad-Reza Sadeghi, "XManDroid: A New Android Evolution to Mitigate Privilege Escalation Attacks," Technical Report, Technische Universit Darmstadt2011.
18. G. Portokalidis, P. Homburg, K. Anagnostakis, and H. Bos, "Paranoid Android: versatile protection for smartphones," in 'Proceedings of the 26th Annual Computer Security Applications Conference', Austin, Texas, 2010, pp. 347-356.
19. A. Shabtai, Y. Fledel, U. Kanonov, Y. Elovici, S. Dolev, and C. Glezer, "Google Android: A Comprehensive Security Assessment," Security & Privacy, IEEE, vol. 8, pp. 35-44, 2010.
20. Mila. (2011, Nov 1). Mobile Malware Sample. Available: http://contagiominidump.blogspot.com/
21. A. Satoh and T. Inoue, "ASIC-hardware-focused comparison for hash functions MD5, RIPEMD-160, and SHS," Integration, the VLSI Journal, vol. 40, pp. 3-10, 2007.
22. Veelasha Moonsamy, Ronghua Tian, and L. Batten, "Feature Reduction to Speed up Malware Classification," in the 16th Nordic Conference in Secure IT Systems (NordSec), Springer Berlin / Heidelberg, 2012, pp. 176-188.
23. M. Alazab, A. Alazab, and L. Batten, "Smartphone Malware Based On Synchronization Vulnerabilities," in proceeding of the 7th conference on Information Technology and Applications (ICITA), Sydney, Australia, 2011.
24. P. lantz. (2011). Project 5 - DroidBox: An Android Application Sandbox for Dynamic Analysis. Available: http://www.honeynet.org/gsoc/slot5
25. William Enck, Peter Gilbert, Byung-gon Chun, Landon P. Cox, Jaeyeon Jung, Patrick McDaniel, and A. N. Sheth, "TaintDroid: An Information- Flow Tracking System for Realtime Privacy Monitoring on Smartphones," in proceeding of the 9th USENIX Symposium on Operating Systems Design and Implementation (OSDI '10), Vancouver, Canada 2010.
26. L. Davi, A. Dmitrienko, A.-R. Sadeghi, and M. Winandy, "Privilege Escalation Attacks on Android Information Security." vol. 6531, M. Burmester, G. Tsudik, S. Magliveras, and I. Ilic, Eds., ed: Springer Berlin / Heidelberg, 2011, pp. 346-360.
27. A. Lineberry, D. L. Richardson, and T. Wyatt. (2010, Dec 29). THESE AREN'T THE PERMISSIONS YOU'RE LOOKING FOR. Available: http://dtors.files. wordpress.com/2010/09/blackhat-2010-final.pdf
28. A. Shabtai, U. Kanonov, Y. Elovici, C. Glezer, and Y. Weiss, ""Andromaly": a behavioral malware detection framework for android devices," Journal of Intelligent Information Systems, pp. 1-30, 2011.
29. B. Shneiderman. (2009, Oct 25). Treemaps for space-constrained visualization of hierarchies. Available: http://www.cs.umd.edu/hcil/treemap- history/
30. P. Trinius, T. Holz, J. Gobel, and F. C. Freiling, "Visual analysis of malware behavior using treemaps and thread graphs," in prcoeeding of the 6th International Workshop on Visualization for Cyber Security Atlantic City, NJ 2009, pp. 33-38.
31. Kaspersky. (2011, Dec 15). ZeuS-in-the-Mobile for Android. Available: http://www.securelist.com/en/blog/208193029/ZeuS-in-the-Mobile-for-Android
32. C. Willems, T. Holz, and F. Freiling, "Toward Automated Dynamic Malware Analysis Using CWSandbox," IEEE Security and Privacy, vol. 5, pp. 32-39, 2007.
33. John Hunter and D. Dale. (2007). Matplotlib. Available: http://matplotlib.sourceforge.net/