DroidMat: Android Malware Detection through Manifest and API Calls Tracing
National Taiwan University of Science and Technology · Institute for Information Industry · +1 more institution
Abstract
Recently, the threat of Android malware is spreading rapidly, especially those repackaged Android malware. Although understanding Android malware using dynamic analysis can provide a comprehensive view, it is still subjected to high cost in environment deployment and manual efforts in investigation. In this study, we propose a static feature-based mechanism to provide a static analyst paradigm for detecting the Android malware. The mechanism considers the static information including permissions, deployment of components, Intent messages passing and API calls for characterizing the Android applications behavior. In order to recognize different intentions of Android malware, different kinds of clustering…
Citation impact
- FWCI
- 28.47
- Percentile
- 100%
- References
- 34
Authors
5- DWDong-Jie WuCorresponding
National Taiwan University of Science and Technology
- CMChing-Hao Mao
Institute for Information Industry
- TWTe-En Wei
National Taiwan University of Science and Technology
- HLHahn-Ming Lee
Institute of Information Science, Academia Sinica, National Taiwan University of Science and Technology
- KWKuo-Ping Wu
National Taiwan University of Science and Technology
Topics & keywords
- Malware
- Computer science
- Android (operating system)
- Android malware
- System call
- Tracing
- Cluster analysis
- Malware analysis