Mobile Family Detection through Audio Signals Classification

Nowadays smartphones, and generically speaking mobile devices, allow users a plethora of tasks in total mobility for instance, from checking the balance on the bank account to distance learning. In this context it is really critical the detection of malicious behaviours, considering the weaknesses of the current antimalware mechanisms. In this paper we propose a method for malicious family detection exploiting audio signal processing: in fact, an application is converted into an audio file and then is processed to generate a feature vector to input several classifiers. We perform a real-world experimental analysis by considering a set of malware targeting the Android platform i.e., 4746 malware belonging to 10 families, showing the effectiveness of the proposed approach for Android malicious family detection.

[1]  Ali Hamzeh,et al.  Music classification as a new approach for malware detection , 2018, Journal of Computer Virology and Hacking Techniques.

[2]  Gerardo Canfora,et al.  LEILA: Formal Tool for Identifying Mobile Malicious Behaviour , 2019, IEEE Transactions on Software Engineering.

[3]  Antonella Santone,et al.  Evaluating Deep Learning Classification Reliability in Android Malware Family Detection , 2020, 2020 IEEE International Symposium on Software Reliability Engineering Workshops (ISSREW).

[4]  Mahmoud Khasawneh,et al.  MSIC: Malware Spectrogram Image Classification , 2020, IEEE Access.

[5]  Yajin Zhou,et al.  Dissecting Android Malware: Characterization and Evolution , 2012, 2012 IEEE Symposium on Security and Privacy.

[6]  Antonella Santone,et al.  Towards an interpretable deep learning model for mobile malware detection and family identification , 2021, Comput. Secur..

[7]  Qin Zheng,et al.  IMCFN: Image-based malware classification using fine-tuned convolutional neural network architecture , 2020, Comput. Networks.

[8]  Anup Girdhar,et al.  Behavioural Analysis of Recent Ransomwares and Prediction of Future Attacks by Polymorphic and Metamorphic Ransomware , 2018, Advances in Intelligent Systems and Computing.

[9]  Ali Hamzeh,et al.  A new compression based method for android malware detection using opcodes , 2017, 2017 Artificial Intelligence and Signal Processing Conference (AISP).

[10]  B. S. Manjunath,et al.  Malware images: visualization and automatic classification , 2011, VizSec '11.

[11]  Konrad Rieck,et al.  DREBIN: Effective and Explainable Detection of Android Malware in Your Pocket , 2014, NDSS.

[12]  Byung-Gon Chun,et al.  TaintDroid: An Information-Flow Tracking System for Realtime Privacy Monitoring on Smartphones , 2010, OSDI.

[13]  Huy Kang Kim,et al.  Andro-Simnet: Android Malware Family Classification using Social Network Analysis , 2018, 2018 16th Annual Conference on Privacy, Security and Trust (PST).

[14]  Radu State,et al.  Using opcode-sequences to detect malicious Android applications , 2014, 2014 IEEE International Conference on Communications (ICC).

[15]  Todd R. Andel,et al.  Detecting Repackaged Android Applications Using Perceptual Hashing , 2020, HICSS.