论文信息 - An Android Malware Detection Method Based on Native Libraries

An Android Malware Detection Method Based on Native Libraries

According to the problem that few existing Android malware detection studies focus on the malicious code in native libraries, an Android malware detection method based on native libraries is proposed in this paper. Firstly, ARM assembly instructions and grayscale images are extracted from native libraries. Secondly, N-gram features, GLCM, and fusion features are extracted from ARM assembly instructions and grayscale images. Finally, different types of machine learning algorithms are trained with these features to establish the best malware detection classifier. The experimental results show that the proposed method achieves accuracy of 86.3% and can detect malicious code in native libraries effectively.

Qian Zhu | Chenyang Jiang | Wenling Xie | Yuanqi Xu

[1] Qinghua Zheng,et al. Android Malware Familial Classification and Representative Sample Selection via Frequent Subgraph Analysis , 2018, IEEE Transactions on Information Forensics and Security.

[2] Vijay Laxmi,et al. AndroSimilar: Robust signature for detecting variants of Android malware , 2015, J. Inf. Secur. Appl..

[3] Abdelouahid Derhab,et al. MalDozer: Automatic framework for android malware detection using deep learning , 2018, Digit. Investig..

[4] Richard E. Harang,et al. SeqDroid: Obfuscated Android Malware Detection Using Stacked Convolutional and Recurrent Neural Networks , 2019, Deep Learning Applications for Cyber Security.