Android malware detection method based on highly distinguishable static features and DenseNet

Jun, Yang; Zhang, Zhibo; Zhang, Heng; Fan, Jingyuan

doi:10.1371/journal.pone.0276332

Cited by 9 publications

(2 citation statements)

References 67 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…However, these works concentrated only on the requested permission (also known as declared permission) rather than real permission usage. Requested permissions are those that the app developers declare in the AndroidManifest.xml file [4], which indicates the permissions the specific Android application will use. But it didn't happen to be the real permissions the app developers may later use in the code.…”

Section: A Motivation and Major Contributionmentioning

confidence: 99%

Android Malware Detection by Correlated Real Permission Couples Using FP Growth Algorithm and Neural Networks

Banik,

Singh

2023

IEEE Access

View full text Add to dashboard Cite

In the current internet era, where mobile devices are ubiquitous and often hold sensitive personal and corporate data, Android malware analysis is crucial to protect against the increasing sophistication and prevalence of mobile-based cyberattacks. This article proposes an innovative approach to Android malware detection using real permissions features extracted from Android code. This approach is unique among existing literature because, there for most cases, the declared permissions are being used, which is different from the real permission used in Android apps. Here, step-by-step guidelines have been elaborated to perform reverse engineering in any Android application package (APK) to extract the real permission feature from the Android disassembled code. After that, the most frequent & correlated pairs of real permissions were identified using the Frequent Pattern (FP) Growth algorithm. Thereafter, the existence of those identified real permission couples was checked and fed into a multi-layered, K-fold crossvalidated neural network model to predict whether an APK is malware or benignware. Simultaneously, five other traditional machine learning models have also been applied to benchmark the results. The outcome of these models is measured with various well-known metrics like Accuracy, Precision, Recall, Loss, Specificity, F1 Score, Receiver Operating Characteristic (ROC) curve, Negative Predictive Value, and Mathew's Correlation Coefficient. The experimental evaluation of the proposed methodology shows better performance on the well-known Drebin dataset as well as on the last 5 years customized dataset with an accuracy of over 96%.

show abstract

Section: A Motivation and Major Contributionmentioning

confidence: 99%

Android Malware Detection by Correlated Real Permission Couples Using FP Growth Algorithm and Neural Networks

Banik,

Singh

2023

IEEE Access

View full text Add to dashboard Cite

show abstract

“…However, it's important to note that the results of decompilation may not be identical to the original code, as compiler optimizations and code obfuscation techniques can result in partial information loss or obfuscation. [4] (2) Dynamic Analysis and Static Analysis Techniques In reverse engineering, dynamic analysis and static analysis are two commonly used technical approaches. Dynamic analysis involves running the application and monitoring its behavior to gather information.…”

Section: Fundamentals Of Android Reverse Engineeringmentioning

confidence: 99%

Android Reverse Engineering and Defense Analysis Taking a Remote Rehabilitation Training APP as an Example

Liu

2023

ACC

View full text Add to dashboard Cite

show abstract

A new adversarial malware detection method based on enhanced lightweight neural network

Gao,

Du,

et al. 2024

Computers & Security

View full text Add to dashboard Cite

Android malware detection method based on highly distinguishable static features and DenseNet

Cited by 9 publications

References 67 publications

Android Malware Detection by Correlated Real Permission Couples Using FP Growth Algorithm and Neural Networks

Android Malware Detection by Correlated Real Permission Couples Using FP Growth Algorithm and Neural Networks

Android Reverse Engineering and Defense Analysis Taking a Remote Rehabilitation Training APP as an Example

A new adversarial malware detection method based on enhanced lightweight neural network

Contact Info

Product

Resources

About