论文信息 - DexFus: An Android Obfuscation Technique Based on Dalvik Bytecode Translation

DexFus: An Android Obfuscation Technique Based on Dalvik Bytecode Translation

Cracking and repackaging is a severe threat to Android applications. Obfuscation increases the difficulty of reverse analysis without changing the semantics of the original code. However, current Android obfuscation techniques primarily concentrate on Dalvik bytecode obfuscation, as Dalvik bytecode contains much semantic information, obfuscation does not hinder the attacker much. We propose a new technique named DexFus for protecting Android code based on Dalvik bytecode translation. DexFus applies obfuscation on translated C code instead of the original Dalvik code, which provides a higher level protection for applications. A prototype deployment on the Android platform demonstrates that DexFus is able to protect target applications with reasonable storage and memory overhead and high stability.

Liu Bo | Lu Tong | Ma Xingkong | Hu Naitian | Fuqiang Lin

[1] Tilo Müller,et al. Anti-ProGuard: Towards Automated Deobfuscation of Android Apps , 2017, SHCIS '17.

[2] Sujuan Qin,et al. DexX: A Double Layer Unpacking Framework for Android , 2018, IEEE Access.

[3] Seong-je Cho,et al. Android Application Protection against Static Reverse Engineering based on Multidexing , 2016, J. Internet Serv. Inf. Secur..

[4] Xiapu Luo,et al. DexHunter: Toward Extracting Hidden Code from Packed Android Applications , 2015, ESORICS.

[5] Stelvio Cimato,et al. Overcoming the obfuscation of Java programs by identifier renaming , 2005, J. Syst. Softw..

[6] Onur Cinar,et al. Android Best Practices , 2014, Apress.

[7] Vrizlynn L. L. Thing,et al. Control flow obfuscation for Android applications , 2016, Comput. Secur..

[8] Pascal Junod,et al. Obfuscator-LLVM -- Software Protection for the Masses , 2015, 2015 IEEE/ACM 1st International Workshop on Software Protection.

[9] Jack W. Davidson,et al. Software Tamper Resistance: Obstructing Static Analysis of Programs , 2000 .

[10] Juanru Li,et al. AppSpear: Bytecode Decrypting and DEX Reassembling for Packed Android Malware , 2015, RAID.

[11] Zheng Wang,et al. Compile-time code virtualization for android applications , 2020, Comput. Secur..