论文信息 - Dark Side of the Shader: Mobile GPU-Aided Malware Delivery

Dark Side of the Shader: Mobile GPU-Aided Malware Delivery

Mobile phones are the most intimate computing devices of our time. We use them for private and business purposes. At the same time lax update habits of manufacturers make them accumulate disclosed vulnerabilities. That is why smartphones have become very attractive targets for attackers. Until today Graphics Processing Units (GPU) were not considered an interesting mean of payload delivery in mobile devices. However, in this paper, we present how the Direct Memory Access (DMA) capabilities of a mobile GPU can be abused for a privilege escalation attack. We describe a successful and real-world GPU-based attack, discuss problems that the GPU’s different programming model poses, and techniques that lead to a successful attack. We also show a proof-of-concept exploit against a very popular smartphone line. We conclude that DMA-based malware is a serious threat to mobile devices.

[1] Sotiris Ioannidis,et al. GPU-assisted malware , 2010, MALWARE.

[2] Sotiris Ioannidis,et al. You Can Type, but You Can't Hide: A Stealthy GPU-based Keylogger , 2013 .

[3] Jack J. Purdum,et al. C programming guide , 1983 .

[4] Joe Grand,et al. A hardware-based memory acquisition procedure for digital investigations , 2004, Digit. Investig..

[5] Patrick Stewin,et al. Understanding DMA Malware , 2012, DIMVA.

[6] Pavel Laskov,et al. Detection of Intrusions and Malware, and Vulnerability Assessment: 19th International Conference, DIMVA 2022, Cagliari, Italy, June 29 –July 1, 2022, Proceedings , 2022, International Conference on Detection of intrusions and malware, and vulnerability assessment.

[7] Greg Humphreys,et al. How GPUs Work , 2007, Computer.

[8] Lexi Pimenidis,et al. Targeting Physically Addressable Memory , 2007, DIMVA.