Evaluation of android anti-malware techniques against dalvik bytecode obfuscation

Proceedings - 2014 IEEE 13th International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom 2014

Volumn , Issue , 2015, Pages 414-421

  Faruki, Parvez ^a   Bharmal, Ammar ^a   Laxmi, Vijay ^a   Gaur, M S ^a   Conti, Mauro ^b   Rajarajan, Muttukrishnan ^c  

^a MALAVIYA NATIONAL INSTITUTE OF TECHNOLOGY   (India)

^b UNIVERSITY OF PADOVA   (Italy)

^c CITY UNIVERSITY   (United Kingdom)

Author keywords

Android malware; Dalvik bytecode obfuscation

Indexed keywords

ANDROID (OPERATING SYSTEM); CODES (SYMBOLS); COSINE TRANSFORMS; MALWARE;

ANDROID MALWARE; BYTECODES; CODE OBFUSCATION; CODE SIMILARITIES; DETECTION METHODS; EVALUATION RESULTS; REGISTER RENAMING; STATISTICAL FEATURES;

MOBILE SECURITY;

EID: 84923005881     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/TrustCom.2014.54     Document Type: Conference Paper

References (33)

1. Android Malware Genome Project. http: //www.malgenomeproject.org/, Online; Last Accessed March 1, 2014.
2. GingerBreak. http: //forum.xdadevelopers. com/showthread.php?t=1044765, Online; Last Accessed March 1, 2014.
3. ProGuard. http: //proguard.sourceforge.net/, Online; Last Accessed March 1, 2014.
4. RageAgainstTheCage. https: //github.com/bibanon/androiddevelopment-codex/blob/master/General/Rooting/, Online; Last Accessed March 1, 2014.
5. z4Root. https: //github.com/bibanon/android-developmentcodex/ blob/master/General/Rooting/z4root.md, Online; Last Accessed March 1, 2014.
6. VirusTotal. https: //www.virustotal.com/, Online; Last Accessed March 1, 2014.
7. APKTool. Reverse Engineering with Apktool. https: // code.google.com/android/apk-tool, Online; Accessed March 1, 2014.
8. AppBrain. Number of applications available on Google Play. http: //www.appbrain.com/stats/number-of-Android-Apps, Online; Last accessed March 1, 2014.
9. AV-Test. AV-Test, The Independent IT-Security Institute. http: //www.av-test.org/en/home/, Online; Accessed March 27 2014.
10. BakSmali. Reverse Engineering with Smali/Baksmali. https: //code.google.com/smali, Online; Accessed March 20 2013.
11. BlackHat. Reverse Engineering with Androguard. https: //code.google.com/androguard, Online; Accessed March 1, 2014.
12. Carlos A. Castillo. Android Malware Past, Present, and Future. Technical report, MSWC, 2012.
13. Mihai Christodorescu and Somesh Jha. Testing Malware Detectors. SIGSOFT Softw. Eng. Notes, 29(4): 34-44, July 2004.
14. Christian Collberg and Jasvir Nagra. Surreptitious Software: Obfuscation, Watermarking, and Tamperproofing for Software Protection. Addison-Wesley Professional, 1st edition, 2009.
15. Contagiodump. Contagio Malware Dump. http: // contagiodump.blogspot.in/, Online; Accessed March 1, 2013.
16. Dimitrios Damopoulos, Georgios Kambourakis, and Georgios Portokalidis. The best of both worlds: A framework for the synergistic operation of host and cloud anomaly-based ids for smartphones. In Proceedings of the Seventh European Workshop on System Security, EuroSec '14, pages 6: 1-6: 6, New York, NY, USA, 2014. ACM.
17. Dex2Jar. Adroid Decompiling with Dex2jar. http: //code. google.com/p/dex2jar/, Online;Accessed March 1, 2014.
18. Parvez Faruki, Vijay Ganmoor, Vijay Laxmi, M. S. Gaur, and Ammar Bharmal. AndroSimilar: Robust Statistical Feature Signature for Android Malware Detection. In Proceedings of the 6th International Conference on Security of Information and Networks, SIN '13, pages 152-159, New York, NY, USA, 2013. ACM.
19. Heqing Huang, Sencun Zhu, Peng Liu, and Dinghao Wu. A Framework for Evaluating Mobile App Repackaging Detection Algorithms. In TRUST, pages 169-186, 2013.
20. Gartner Inc. Android Smartphone Sales Report, 2013. http: //www.gartner.com/newsroom/id/2482816, Online;Last Accessed March 1, 2014.
21. Aleksandrina Kovacheva. Efficient code obfuscation for android. In Borworn Papasratorn, Nipon Charoenkitkarn, Vajirasak Vanijja, and Vithida Chongsuphajaisiddhi, editors, IAIT, volume 409 of Communications in Computer and Information Science, pages 104-119. Springer, 2013.
22. ESET Latin America's Lab. Trends for 2013, Astounding growth of mobile malware. Technical report, ESET Antivirus Laboratory.
23. Glenford J. Myers. Art of Software Testing. John Wiley &Sons, Inc., New York, NY, USA, 1979.
24. Damien Octeau, Somesh Jha, and Patrick McDaniel. Retargeting Android Applications to Java Bytecode. In Proceedings of the ACM SIGSOFT 20th International Symposium on the Foundations of Software Engineering, FSE '12, pages 6: 1-6: 11, New York, NY, USA, 2012. ACM.
25. Google Play. Official Android Market. https: //market.android. com/., Online;Last Accessed March 1, 2014.
26. Vaibhav Rastogi, Yan Chen, and Xuxian Jiang. DroidChameleon: Evaluating Android Anti-malware Against Transformation Attacks. In Proceedings of the 8th ACM SIGSAC Symposium on Information, Computer and Communications Security, ASIA CCS '13, pages 329-334, New York, NY, USA, 2013. ACM.
27. Guillermo Suarez-Tangil, Mauro Conti, Juan E. Tapiador, and Pedro Peris-Lopez. Detecting targeted smartphone malware with behavior-triggering stochastic models. In In Proceedings of the European Symposium on Research in Computer Security, to appear, ESORICS 2014. ESORICS, 2014.
28. Laxmi Vijay, Gaur Manoj Singh, Faruki Parvez, and Naval Smita. PEAL-Packed Executable AnaLysis. In Proceedings of International Conference on Advanced Computing Networking and Security, ADCONS '11. SPRINGER, 2011.
29. VirusShare. VirusShare. http: //www.virusshare.com/, Online; Accessed 1st March 2014.
30. Zhou Yajin and Jiang Xuxian. Dissecting Android Malware: Characterization and Evolution. In Proceedings of the 33rd IEEE Symposium on Security and Privacy, Oakland 2012. IEEE, 2012.
31. Min Zheng, Patrick P. C. Lee, and John C. S. Lui. ADAM: An Automatic and Extensible Platform to Stress Test Android Anti-virus Systems. In DIMVA, pages 82-101, 2012.
32. Wu Zhou, Yajin Zhou, Michael Grace, Xuxian Jiang, and Shihong Zou. Fast, Scalable Detection of "Piggybacked" Mobile Applications. In Proceedings of the Third ACM Conference on Data and Application Security and Privacy, CODASPY '13, pages 185-196, New York, NY, USA, 2013. ACM.
33. Wu Zhou, Yajin Zhou, Xuxian Jiang, and Peng Ning. Detecting Repackaged Smartphone Applications in Third-party Android Marketplaces. In Proceedings of Second ACM conference on Data Application Security and Privacy, CODASPY '12, pages 317-326, New York, USA, 2012