论文信息 - A multi-level feature extraction technique to detect moble botnet

A multi-level feature extraction technique to detect moble botnet

Android malware detection has been heavily studied, which classical android malware detecting approaches are signature-based or behavior-based detection based on the files itself, but little attention has been directed to the network traffics generated by android malwares, known as mobile botnet. In this paper, a multi-level feature extraction technique was presented to detect the mobile botnet. It means that it's not only extract features from the TCP/IP basic info level, but also extract info from traffic level, more over from the content level such as http content, rather than using more features at the single level. Finally, these different feature sets were combined into one feature set which is used by the classifiers for training/testing. Our method is compared against other Android malware code detection and found more efficient features in mobile botnet detection.

Qiaoyan Wen | Manzhi Yang

[1] Aristide Fattori,et al. CopperDroid: Automatic Reconstruction of Android Malware Behaviors , 2015, NDSS.

[2] Konrad Rieck,et al. DREBIN: Effective and Explainable Detection of Android Malware in Your Pocket , 2014, NDSS.

[3] Juanru Li,et al. AppSpear: Bytecode Decrypting and DEX Reassembling for Packed Android Malware , 2015, RAID.

[4] Juan E. Tapiador,et al. Stegomalware: Playing Hide and Seek with Malicious Components in Smartphone Apps , 2014, Inscrypt.

[5] Mansour Ahmadi,et al. DroidScribe: Classifying Android Malware Based on Runtime Behavior , 2016, 2016 IEEE Security and Privacy Workshops (SPW).

[6] Dan Arp,et al. Drebin : � Efficient and Explainable Detection of Android Malware in Your Pocket , 2014 .

[7] M. Chuah,et al. Smartphone Dual Defense Protection Framework: Detecting Malicious Applications in Android Markets , 2012, 2012 8th International Conference on Mobile Ad-hoc and Sensor Networks (MSN).

[8] Sang Joon Kim,et al. A Mathematical Theory of Communication , 2006 .