An Android Malware Detection Approach Based on SIMGRU

With the rapid development of the Internet era, the number of malware has reached an unprecedented peak, and therefore malware is threatening global network security seriously. In this article, we propose an Android malware detection approach based on SIMGRU, which belongs to the static detection approach. The similarity of clustering is widely used in static analysis of android malware, so we introduce the similarity to improve Gated Recurrent Unit (GRU), and obtain three different structures of SimGRU: InputSimGRU, HiddenSimGRU, and InputHiddenSimGRU. The InputHiddenSimGRU is the combination of InputSimGRU and HiddenSimGRU. The experiment shows that InputSimGRU, HiddenSimGRU, and InputHiddenSimGRU outperform the conventional GRU model and other methods.

[1]  Ali A. Ghorbani,et al.  Toward Developing a Systematic Approach to Generate Benchmark Android Malware Datasets and Classification , 2018, 2018 International Carnahan Conference on Security Technology (ICCST).

[2]  Jian Xu,et al.  Detecting malware variants via function-call graph similarity , 2010, 2010 5th International Conference on Malicious and Unwanted Software.

[3]  Xun Li,et al.  Effective detection of android malware based on the usage of data flow APIs and machine learning , 2016, Inf. Softw. Technol..

[4]  Xiaolin Deng,et al.  Android malware detection method based on naive Bayes and permission correlation algorithm , 2017, Cluster Computing.

[5]  Xiangliang Zhang,et al.  Characterizing Android apps' behavior for effective detection of malapps at large scale , 2017, Future Gener. Comput. Syst..

[6]  Ming Fan,et al.  DAPASA: Detecting Android Piggybacked Apps Through Sensitive Subgraph Analysis , 2017, IEEE Transactions on Information Forensics and Security.

[7]  Senlin Luo,et al.  An Efficient Android Malware Detection System Based on Method-Level Behavioral Semantic Analysis , 2019, IEEE Access.

[8]  Kabakus Abdullah Talha,et al.  APK Auditor: Permission-based Android malware detection system , 2015 .

[9]  Qinghua Zheng,et al.  Android Malware Familial Classification and Representative Sample Selection via Frequent Subgraph Analysis , 2018, IEEE Transactions on Information Forensics and Security.

[10]  Brij B. Gupta,et al.  Android Applications Repackaging Detection Techniques for Smartphone Devices , 2016 .

[11]  Abdullah Talha Kabakus,et al.  APK Auditor: Permission-based Android malware detection system , 2015, Digit. Investig..

[12]  Jacques Klein,et al.  Empirical assessment of machine learning-based malware detectors for Android , 2014, Empirical Software Engineering.

[13]  Yoshua Bengio,et al.  Learning Phrase Representations using RNN Encoder–Decoder for Statistical Machine Translation , 2014, EMNLP.

[14]  Heng Yin,et al.  DroidAPIMiner: Mining API-Level Features for Robust Malware Detection in Android , 2013, SecureComm.

[15]  Jian Xu,et al.  A similarity metric method of obfuscated malware using function-call graph , 2012, Journal of Computer Virology and Hacking Techniques.

[16]  Fehmi Jaafar,et al.  An Analysis of Android Malware Behavior , 2018, 2018 IEEE International Conference on Software Quality, Reliability and Security Companion (QRS-C).

[17]  Tao Wang,et al.  An Android Malware Detection System Based on Feature Fusion , 2018 .

[18]  Chunlei Yang,et al.  Malware detection on android smartphones using keywords vector and SVM , 2017, 2017 IEEE/ACIS 16th International Conference on Computer and Information Science (ICIS).

[19]  Yanfang Ye,et al.  Deep4MalDroid: A Deep Learning Framework for Android Malware Detection Based on Linux Kernel System Call Graphs , 2016, 2016 IEEE/WIC/ACM International Conference on Web Intelligence Workshops (WIW).

[20]  Chao Wang,et al.  Research on data mining of permissions mode for Android malware detection , 2018, Cluster Computing.

[21]  Ibrahim Alper Dogru,et al.  Malware detection system based on machine learning methods for Android operating systems , 2017, 2017 25th Signal Processing and Communications Applications Conference (SIU).

[22]  David Chenho Kung,et al.  Dexteroid: Detecting malicious behaviors in Android apps using reverse-engineered life cycle models , 2015, Comput. Secur..

[23]  Konrad Rieck,et al.  DREBIN: Effective and Explainable Detection of Android Malware in Your Pocket , 2014, NDSS.

[24]  Rajiv Ranjan,et al.  An integrated static detection and analysis framework for android , 2016, Pervasive Mob. Comput..