An Android Malicious Application Detection Method with Decision Mechanism in the Operating Environment of Blockchain

Li, Xingyu; Zhao, Zongqu; Tang, Yongli; Zhang, Jing; Wu, Cheng‐Yi; Li, Ying

doi:10.1155/2022/3111540

Cited by 3 publications

(7 citation statements)

References 23 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In [ 33 ] paper, classical machine algorithms such as Random Forest, K-nearest Neighbors, Decision Tree, Bagging, AdaBoost, and Gradient Boost were used for classification after constructing feature vectors from gray images, yielded from converting APK contents such as classes.dex to images. [ 34 ] proposed an approach to enhance blockchain user security by implementing RGB image visualization technique on three types of files in Android apps: classes.dex, AndroidManifest.xml, and Certificate. Then, train different classification models and apply a decision mechanism to detect malware versus benign.…”

Section: Related Workmentioning

confidence: 99%

“…To evaluate the performance of the resulted predictive models, several metrics were used in the literature. Common metrics were accuracy, precision, recall, and F1-score [ 30 , 31 , 34 – 36 ]. Other metrics were used such as error rate, specificity, sensitivity, MSE, and FPR [ 31 , 32 , 36 , 37 ].…”

Section: Related Workmentioning

confidence: 99%

“…This can be clearly observed in the comparison conducted among the related work and our proposed analysis model, as shown in Table 1 . For example, in terms of the employed CNN algorithms used, most of the related works examined a few models such as VGG16, ResNet, and customized CNN algorithms such as in [ 30 – 32 , 34 – 37 , 39 ]. Moreover, they did not take into consideration all different file formats of Android malware samples.…”

Section: Related Workmentioning

confidence: 99%

“…Moreover, they did not take into consideration all different file formats of Android malware samples. For instance, the authors in [ 30 – 34 ] focused on the unzipping prepossessing without considering the impact of decompiling preprocessing for the Android malware APKs. On the other hand, the authors in [ 35 – 37 ] only considered the decompiling preprocessing.…”

Section: Related Workmentioning

confidence: 99%

“…Additionally, few assessment metrics were used for performance evaluation and complexity & security analysis of the examined CNN algorithms. For example, some of the related studies used training time, prepossessing time, test time, APK file size, and RAM usage as complexity parameters, such as in [ 30 – 32 , 34 – 37 , 39 ]. However, none of these related works introduced a comprehensive analysis of all of these complexity metrics.…”

Section: Related Workmentioning

confidence: 99%

See 4 more Smart Citations

Android malware analysis in a nutshell

2022

View full text Add to dashboard Cite

This paper offers a comprehensive analysis model for android malware. The model presents the essential factors affecting the analysis results of android malware that are vision-based. Current android malware analysis and solutions might consider one or some of these factors while building their malware predictive systems. However, this paper comprehensively highlights these factors and their impacts through a deep empirical study. The study comprises 22 CNN (Convolutional Neural Network) algorithms, 21 of them are well-known, and one proposed algorithm. Additionally, several types of files are considered before converting them to images, and two benchmark android malware datasets are utilized. Finally, comprehensive evaluation metrics are measured to assess the produced predictive models from the security and complexity perspectives. Consequently, guiding researchers and developers to plan and build efficient malware analysis systems that meet their requirements and resources. The results reveal that some factors might significantly impact the performance of the malware analysis solution. For example, from a security perspective, the accuracy, F1-score, precision, and recall are improved by 131.29%, 236.44%, 192%, and 131.29%, respectively, when changing one factor and fixing all other factors under study. Similar results are observed in the case of complexity assessment, including testing time, CPU usage, storage size, and pre-processing speed, proving the importance of the proposed android malware analysis model.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

See 3 more Smart Citations

Android malware analysis in a nutshell

2022

View full text Add to dashboard Cite

show abstract

ZTA: A Novel Zero Trust Framework for Detection and Prevention of Malicious Android Applications

Nazir,

Iqbal,

Muhammad

2024

Preprint

View full text Add to dashboard Cite

The proliferation of preloaded apps and third-party applications has raised significant concerns regarding user security and privacy. This study introduces the Zero Trust Architecture (ZTA), a novel approach to addressing the issues caused by poorly designed vulnerable mobile applications. ZTA employs a comprehensive strategy to safeguard user privacy, incorporating thorough app permission analysis alongside dynamic behavior assessment. The proposed framework closely monitors real-time app behavior and leverages the MITRE ATT&CK framework to identify security threats, vulnerabilities, and essential Tactics, Techniques, and Procedures (TTPs). The ZTA empowers users to make informed choices about app usage, promote data security, and cultivate a safer environment. Through this framework, users can confidently decide on app usage, ensuring the safeguarding of their data and fostering a more secure mobile app ecosystem. This research presents a proactive approach to privacy-conscious app utilization, bolstering user trust in the continually evolving realm of Android applications.

show abstract

Detection of «Telegram Rat» virus

Dubrovina,

Alkordi

2024

Vestn. Dagest. gos. teh. univ., Teh. nauki

View full text Add to dashboard Cite

Objective. The aim of this study is to analyze the «Telegram Rat» virus, emphasizing the importance of awareness to effectively combat cyber threats and ensure security in the digital age.Methods. This paper used an analysis of the characteristics and distribution of «Telegram Rat» viruses. An example of analyzing the technical mechanisms of extortion on the example of «WAGNER GROUP» was given and the steps of virus elimination were formulated.Results. The acuality of the «Telegram Rat» virus problem and ways of its transmission are considered. Practical methods of threat detection and neutralization are stipulated. The method of «Telegram Rat» virus threat detection is based on the analysis of active processes, network activity and file system. It is revealed that the main vulnerability on devices infected with the virus is careless user behavior.Conclusion. The contents of this paper emphasize the importance of vigilance when downloading files and clicking on links. Lack of caution can lead to data loss and information leakage, emphasizing the need for conscious behavior in the digital environment.

show abstract

An Android Malicious Application Detection Method with Decision Mechanism in the Operating Environment of Blockchain

Cited by 3 publications

References 23 publications

Android malware analysis in a nutshell

Android malware analysis in a nutshell

ZTA: A Novel Zero Trust Framework for Detection and Prevention of Malicious Android Applications

Detection of «Telegram Rat» virus

Contact Info

Product

Resources

About