Détails Publication
Automatically locating malicious packages in piggybacked android apps,
Lien de l'article:
Discipline: Indisponible
Auteur(s): T. BISSYANDE
Renseignée par : BISSYANDE T. François D'Assise
Résumé

To devise efficient approaches and tools for detecting malicious packages in the Android ecosystem, researchers are increasingly required to have a deep understanding of malware. There is thus a need to provide a framework for dissecting malware and locating malicious program fragments within app code in order to build a comprehensive dataset of malicious samples. Towards addressing this need, we propose in this work a tool-based approach called HookRanker, which provides ranked lists of potentially malicious packages based on the way malware behaviour code is triggered. With experiments on a ground truth set of piggybacked apps, we are able to automatically locate the malicious packages from piggybacked Android apps with an accuracy of 83.6% in verifying the top five reported items.

Mots-clés

935
Enseignants
5615
Publications
49
Laboratoires
84
Projets