Abstract
To devise efficient approaches and tools for detecting malicious packages in the Android ecosystem, researchers are increasingly required to have a deep understanding of malware. There is thus a need to provide a framework for dissecting malware and locating malicious program fragments within app code in order to build a comprehensive dataset of malicious samples. Towards addressing this need, we propose in this work a tool-based approach called HookRanker, which provides ranked lists of potentially malicious packages based on the way malware behaviour code is triggered. With experiments on a ground truth set of piggybacked apps, we are able to automatically locate the malicious packages from piggybacked Android apps with an accuracy of 83.6% in verifying the top five reported items.
Original language | English |
---|---|
Title of host publication | Proceedings |
Subtitle of host publication | 2017 IEEE/ACM 4th International Conference on Mobile Software Engineering and Systems - MOBILESoft 2017 |
Editors | John Grundy, William G.J. Halfond |
Place of Publication | Piscataway NJ USA |
Publisher | IEEE, Institute of Electrical and Electronics Engineers |
Pages | 170-174 |
Number of pages | 5 |
ISBN (Print) | 9781538626696 |
DOIs | |
Publication status | Published - 7 Jul 2017 |
Externally published | Yes |
Event | International Conference on Mobile Software Engineering and Systems 2017 - Buenos Aires, Argentina Duration: 22 May 2017 → 23 May 2017 Conference number: 4th http://mobilesoftconf.org/2017/ https://ieeexplore.ieee.org/xpl/conhome/7961439/proceeding (Proceedings) |
Conference
Conference | International Conference on Mobile Software Engineering and Systems 2017 |
---|---|
Abbreviated title | MOBILESoft 2017 |
Country/Territory | Argentina |
City | Buenos Aires |
Period | 22/05/17 → 23/05/17 |
Internet address |