Accurate Specification for Robust Detection of Malicious Behavior in Mobile Environments

Sufatrio,; Chua, Tong-Wei; Tan, Darell J. J.; Thing, Vrizlynn L. L.

doi:10.1007/978-3-319-24177-7_18

Cited by 1 publication

(3 citation statements)

References 21 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Table 8 represents static, dynamic, and hybrid-based Android malware detection frameworks and their robustness against metamorphism evasion detection techniques. (a) Code Obfuscation Detection: Code obfuscation consists of CRE, CIN, and DCI; we explain each evasion detection framework in the following list: – CRE - Code Reordering Evasion Detection: ResDroid ( Shao et al, 2014 ), AnDarwin ( Crussell, Gibler & Chen, 2015 ), and Seqmalspec ( Sufatrio et al, 2015a ) proposed static analysis based detection and managed to detect CRE evasion. Likewise, Q-floid ( Castellanos et al, 2016 ) detected CRE using the dynamic sandboxing methodology.…”

Section: Evaluation Of Evasion Detection Frameworkmentioning

confidence: 99%

“…ResDroid ( Shao et al, 2014 ), AnDarwin ( Crussell, Gibler & Chen, 2015 ), and Seqmalspec ( Sufatrio et al, 2015a ) proposed static analysis based detection and managed to detect CRE evasion. Likewise, Q-floid ( Castellanos et al, 2016 ) detected CRE using the dynamic sandboxing methodology.…”

Section: Evaluation Of Evasion Detection Frameworkmentioning

confidence: 99%

“…They failed to mention evasion detection methods and evaluate the currently proposed methods. Sufatrio et al (2015a) surveyed Android malware detection methods and briefly assessed a handful of related works in terms of evasion detection.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

The rise of obfuscated Android malware and impacts on detection methods

Elsersy¹,

Feizollah²,

Anuar³

2022

PeerJ Computer Science

View full text Add to dashboard Cite

The various application markets are facing an exponential growth of Android malware. Every day, thousands of new Android malware applications emerge. Android malware hackers adopt reverse engineering and repackage benign applications with their malicious code. Therefore, Android applications developers tend to use state-of-the-art obfuscation techniques to mitigate the risk of application plagiarism. The malware authors adopt the obfuscation and transformation techniques to defeat the anti-malware detections, which this paper refers to as evasions. Malware authors use obfuscation techniques to generate new malware variants from the same malicious code. The concern of encountering difficulties in malware reverse engineering motivates researchers to secure the source code of benign Android applications using evasion techniques. This study reviews the state-of-the-art evasion tools and techniques. The study criticizes the existing research gap of detection in the latest Android malware detection frameworks and challenges the classification performance against various evasion techniques. The study concludes the research gaps in evaluating the current Android malware detection framework robustness against state-of-the-art evasion techniques. The study concludes the recent Android malware detection-related issues and lessons learned which require researchers’ attention in the future.

show abstract