Static and Dynamic Analysis for Android Malware Detection
In this work, we perform a comparitive study on the behavior of malware and benign applications using its static and dynamic features. In static analysis, the permissions required for an application are considered. But in dynamic, we use a tool called Droidbox. Droidbox is an android sandbox which can monitor some app actions like network activities, file system activities, cryptographic activities, information leakage, etc. Here, we consider these actions as well as dynamic API calls of applications. We propose to implement an android malware detector that can detect an app whether it is malware or not, prior to installation.
KeywordsMalware Benign Static Dynamic Droidbox
- 4.Qiao, M., Sung, A.H., Liu, Q.: Merging permission and api features for android malware detection. In: 2016 5th IIAI International Congress on Advanced Applied Informatics (IIAIAAI), pp. 566–571. IEEE, (2016)Google Scholar
- 5.Wu, D.-J., Mao, C.-H., Wei, T.-E., Lee, H.-M., Wu, K.-P.: Droidmat: android malware detection through manifest and api calls tracing. In: 2012 7th Asia Joint Conference on Information Security (Asia JCIS), pp. 62–69. IEEE, (2012)Google Scholar