Testing Android Anti-Malware against Malware Obfuscations

Gunjan Kapse; Aruna Gupta

Call for Paper

June Edition

IJCA solicits high quality original research papers for the upcoming June edition of the journal. The last date of research paper submission is 20 May 2024

Submit your paper

Know more

The week's pick

Enhancing Privacy Preservation: Multi-Attribute Protection with P-Sensitive K-Anonymity

Twinkle Patel Kiran Amin

Random Articles

A Novel Hidden Markov Model for Credit Card Fraud Detection

December

2012

An Efficient Approach Based on Trust to Purge the Weakness of Recommendation System

February

2010

Performance Enhancement of Database Driven Technique using Cynosure Method in Cloud

October

2014

Performance Analysis of Controlled Scalability in Unstructured Peer-to-Peer Networks

February

2012

Reseach Article

Testing Android Anti-Malware against Malware Obfuscations

by Gunjan Kapse, Aruna Gupta

International Journal of Computer Applications

Foundation of Computer Science (FCS), NY, USA

Volume 111 - Number 17

Year of Publication: 2015

Authors: Gunjan Kapse, Aruna Gupta

10.5120/19755-1140

Gunjan Kapse, Aruna Gupta . Testing Android Anti-Malware against Malware Obfuscations. International Journal of Computer Applications. 111, 17 ( February 2015), 6-9. DOI=10.5120/19755-1140

@article{ 10.5120/19755-1140,

author = { Gunjan Kapse, Aruna Gupta },

title = { Testing Android Anti-Malware against Malware Obfuscations },

journal = { International Journal of Computer Applications },

issue_date = { February 2015 },

volume = { 111 },

number = { 17 },

month = { February },

year = { 2015 },

issn = { 0975-8887 },

pages = { 6-9 },

numpages = {9},

url = { https://ijcaonline.org/archives/volume111/number17/19755-1140/ },

doi = { 10.5120/19755-1140 },

publisher = {Foundation of Computer Science (FCS), NY, USA},

address = {New York, USA}

}

%0 Journal Article

%1 2024-02-06T22:48:08.403575+05:30

%A Gunjan Kapse

%A Aruna Gupta

%T Testing Android Anti-Malware against Malware Obfuscations

%J International Journal of Computer Applications

%@ 0975-8887

%V 111

%N 17

%P 6-9

%D 2015

%I Foundation of Computer Science (FCS), NY, USA

Abstract

There is an increasing threat of malware on mobile. Since Android is the most popular and maximum sold mobile phone, the malware attack on Android mobile is increasing day by day. The commercial antimalware products available in the market can detect common and old malwares easily. Different types of transformations can be applied to a malware which make it difficult for antimalware to detect. The different transformations can be majorly classified into 1. Trivial transformations, 2. DSA (Detectable by static analysis) transformation, and 3. NSA (Not detectable by static analysis). Researchers have evaluated the strength of different commercial antimalware tools by passing the transformed malware samples to them and found that all the antimalware tools can be evaded by applying either a single transformation or combination of transformations. We propose to add more malware samples in the framework namely KMIN, PJAPPS, ROOTEXPLOIT, and YZHC. These are Android malware samples. We shall apply Trivial, DSA and combination of DSA transformations to them. After transformation, we pass them to Android mobile antimalware products Aegis Lab, Bkav Security, CM Security, Rinix, and Hornet and systematically evaluate them regarding their resistance against various transformations.

References

V. Rastogi, Y. Chen, and X. Jiang, "DroidChameleon: Evaluating Android anti-malware against transformation attacks", Proc. ACM ASIACCS, May 2013, pp. 329–334.
D. Arp, M. Spreitzenbarth, M. Hubner, H. Gascon, K. Rieck, and C. Siemens, "Drebin: Effective and explainable detection of android malware in your pocket", NDSS, Internet Society, February 2014, USA
Yu Feng, Saswat Anand, Isil Dillig, Alex Aiken, "Apposcopy: Semantics-Based Detection of Android Malware through Static Analysis," in ACM SIGSOFT Int. Symp, November, 2014
Zarni Aung, Win Zaw, "Permission-Based Android Malware Detection," in IJSTR Vol 2, Mar 2013
M. Christodorescu, S. Jha, S. Seshia, D. Song, and R. Bryant,"Semantics-aware malware detection," in Proc. IEEE Symp. Security Privacy, May 2005, pp. 32–46.
(2013, Feb. ). CNET [Online]. Available: http://news. cnet. com/8301-1035_3-57569402-94/android-ios-combine-for-91-percent-of-market/
Symantec, Mountain View, CA, USA. (2013, Dec. 3). Server-Side Polymorphic Android Applications [Online]. Available: http://www. symantec. com/connect/blogs/server-side-polymorphicandroid-applications
(2013, Dec. 3). Smali: An Assembler/Disassembler for Android's Dex Format [Online]. Available: http://code. google. com/p/smali/
(2013, Dec. 3). Android-Apktool: A Tool for Reengineering Android APK Files [Online]. Available: http://code. google. com/p/android-apktool/

Index Terms

Computer Science

Information Sciences

Keywords

Malware DSA NSA Mobile Android.