On Locating Malicious Code in Piggybacked Android Apps

LI, Li; LI, Daoyuan; BISSYANDE, Tegawendé François D Assise; KLEIN, Jacques; Cai, Haipeng; Lo, David; LE TRAON, Yves

doi:10.1007/s11390-017-1786-z

Download

Article (Scientific journals)

On Locating Malicious Code in Piggybacked Android Apps

LI, Li; LI, Daoyuan; BISSYANDE, Tegawendé François D Assise et al.

2017 • In Journal of Computer Science and Technology

Peer Reviewed verified by ORBi

Permalink
https://hdl.handle.net/10993/33426

DOI
10.1007/s11390-017-1786-z

Files (1)Send to Details Statistics Bibliography Similar publications

Files

Full Text

li2017locating.pdf

Author preprint (652.6 kB)

Download

All documents in ORBilu are protected by a user license.

Send to

RIS BibTex APA Chicago Permalink X Linkedin

Details

Keywords :

Android; piggybacked app; malicious code

Abstract :

[en] To devise efficient approaches and tools for detecting malicious packages in the Android ecosystem, researchers are increasingly required to have a deep understanding of malware. There is thus a need to provide a framework for dissecting malware and locating malicious program fragments within app code in order to build a comprehensive dataset of malicious samples. Towards addressing this need, we propose in this work a tool-based approach called HookRanker, which provides ranked lists of potentially malicious packages based on the way malware behaviour code is triggered. With experiments on a ground truth of piggybacked apps, we are able to automatically locate the malicious packages from piggybacked Android apps with an accuracy@5 of 83.6% for such packages that are triggered through method invocations and an accuracy@5 of 82.2% for such packages that are triggered independently.

Disciplines :

Computer science

Author, co-author :

LI, Li ; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)

LI, Daoyuan ; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)

BISSYANDE, Tegawendé François D Assise ; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)

KLEIN, Jacques ; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > Computer Science and Communications Research Unit (CSC)

Cai, Haipeng; Washington State University > School of Electrical Engineering and Computer Science

Lo, David; Singapore Management University > School of Information Systems

LE TRAON, Yves ; University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC)

External co-authors :

yes

Language :

English

Title :

On Locating Malicious Code in Piggybacked Android Apps

Publication date :

November 2017

Journal title :

Journal of Computer Science and Technology

ISSN :

1000-9000

eISSN :

1860-4749

Publisher :

Springer Science & Business Media B.V.

Peer reviewed :

Peer Reviewed verified by ORBi

Focus Area :

Security, Reliability and Trust

Available on ORBilu :

since 04 December 2017

Statistics

Number of views

270 (12 by Unilu)

Number of downloads

327 (7 by Unilu)

More statistics

Scopus citations^®

Scopus citations^®
without self-citations

OpenCitations

OpenAlex citations

WoS citations^™