Article (Scientific journals)
On Locating Malicious Code in Piggybacked Android Apps
Li, Li; Li, Daoyuan; Bissyande, Tegawendé François D Assise et al.
2017In Journal of Computer Science and Technology
Peer reviewed
 

Files


Full Text
li2017locating.pdf
Author preprint (652.6 kB)
Download

All documents in ORBilu are protected by a user license.

Send to



Details



Keywords :
Android; piggybacked app; malicious code
Abstract :
[en] To devise efficient approaches and tools for detecting malicious packages in the Android ecosystem, researchers are increasingly required to have a deep understanding of malware. There is thus a need to provide a framework for dissecting malware and locating malicious program fragments within app code in order to build a comprehensive dataset of malicious samples. Towards addressing this need, we propose in this work a tool-based approach called HookRanker, which provides ranked lists of potentially malicious packages based on the way malware behaviour code is triggered. With experiments on a ground truth of piggybacked apps, we are able to automatically locate the malicious packages from piggybacked Android apps with an accuracy@5 of 83.6% for such packages that are triggered through method invocations and an accuracy@5 of 82.2% for such packages that are triggered independently.
Disciplines :
Computer science
Author, co-author :
Li, Li ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
Li, Daoyuan ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
Bissyande, Tegawendé François D Assise  ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
Klein, Jacques ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > Computer Science and Communications Research Unit (CSC)
Cai, Haipeng;  Washington State University > School of Electrical Engineering and Computer Science
Lo, David;  Singapore Management University > School of Information Systems
Le Traon, Yves ;  University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC)
External co-authors :
yes
Language :
English
Title :
On Locating Malicious Code in Piggybacked Android Apps
Publication date :
November 2017
Journal title :
Journal of Computer Science and Technology
ISSN :
1000-9000
Publisher :
Springer Science & Business Media B.V.
Peer reviewed :
Peer reviewed
Focus Area :
Security, Reliability and Trust
Available on ORBilu :
since 04 December 2017

Statistics


Number of views
161 (11 by Unilu)
Number of downloads
292 (6 by Unilu)

Scopus citations®
 
17
Scopus citations®
without self-citations
11
OpenCitations
 
18
WoS citations
 
12

Bibliography


Similar publications



Contact ORBilu