Top

Published in:

2021 | OriginalPaper | Chapter

Android Malware Classification Based on Static Features of an Application

Authors : S. D. Ashwini, Manisha Pai, J. Sangeetha

Published in: Advances in Computing and Network Communications

Publisher: Springer Singapore

Activate our intelligent search to find suitable subject content or patents.

search-config

AI-assisted search

Off

Abstract

Android is the most sought-after mobile platform that has changed what mobiles can do. Due to this, a continuous increase in android malware applications has been seen that poses a significant hazard to users. Thus, the detection of malware applications in the Android environment has become a trending research field for cybersecurity researchers. Android malware detection depends on characterizing the Android application’s functionalities. Over the years, malware has evolved and has become more sophisticated. Hence, it cannot be detected only using a single static feature as it might result in a high number of false negatives. We propose a detection model in this paper that accurately classifies the samples as malware or benign with fewer false positives and false negatives. We have used string features that include suspicious API calls, used permissions, requested permissions, filtered intents, hardware components, and restricted API calls. We have then employed four machine learning algorithms, namely, Ridge Classifier, XGBoost Classifier, Random Forest, and Support Vector Classifier to evaluate the effectiveness of the binary feature vector formed by the combination of these string features. It was noted that Random Forest achieved the highest score for accuracy, precision, recall, area under curve, and F1 score.

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

über 102.000 Bücher
über 537 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Finance + Banking
Management + Führung
Marketing + Vertrieb
Maschinenbau + Werkstoffe
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 390 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Maschinenbau + Werkstoffe

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 340 Zeitschriften

aus folgenden Fachgebieten:

Bauwesen + Immobilien
Business IT + Informatik
Finance + Banking
Management + Führung
Marketing + Vertrieb
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

inform now

previous chapter MIMO-Based 5G Data Communication Systems

next chapter Performance Evaluation of Cross-Layer Routing Metrics for Multi-radio Wireless Mesh Network

Damodaran, A., Di Troia, F., Visaggio, C.A., Austin, T., Stamp, M.: A comparison of static, dynamic, and hybrid analysis for malware detection. J. Comput. Virol. Hacking Tech. (2015). https://doi.org/10.1007/s11416-015-0261-z

Wang, J., Li, B., Zeng, Y.: XGBoost-based android malware detection. 13th International Conference on Computational Intelligence and Security (CIS), Hong Kong, pp. 268–272 (2017)

Koli, J.D.: RanDroid: Android malware detection using random machine learning classifiers. Technologies for Smart-City Energy Security and Power (ICSESP), Bhubaneswar, pp. 1–6 (2018). https://doi.org/10.1109/icsesp.2018.8376705.s

Cen, L., Gates, C.S., Si, L., Li, N.: A probabilistic discriminative model for android malware detection with decompiled source code. IEEE Trans. Dependable Secure Comput. 12(4), 400–412 (2015). https://doi.org/10.1109/TDSC.2014.2355839CrossRef

Xu, K., Li, Y., Deng, R.H.: ICCDetector: ICC-based malware detection on android. IEEE Trans. Inf. Forensics Secur. 11(6), 1252–1264 (2016). https://doi.org/10.1109/TIFS.2016.2523912CrossRef

Li, J., Sun, L., Yan, Q., Li, Z., Srisa-an, W., Ye, H.: Significant permission identification for machine-learning-based android malware detection. IEEE Trans. Industr. Inf. 14(7), 3216–3225 (2018). https://doi.org/10.1109/TII.2017.2789219CrossRef

Tao, G., Zheng, Z., Guo, Z., Lyu, M.R.: MalPat: Mining patterns of malicious and benign android apps via permission-related APIs. IEEE Trans. Reliab. 67(1), 355–369 (2018). https://doi.org/10.1109/TR.2017.2778147CrossRef

Wang, W., Gao, Z., Zhao, M., Li, Y., Liu, J., Zhang, X.: DroidEnsemble: Detecting android malicious applications with ensemble of string and structural static features. IEEE Access 6, 31798–31807 (2018). https://doi.org/10.1109/ACCESS.2018.2835654CrossRef

HR: Static analysis of android malware detection using deep learning. International Conference on Intelligent Computing and Control Systems (ICCS), Madurai, India, pp. 841–845 (2019) https://doi.org/10.1109/iccs45141.2019.9065765

10.

Alotaibi, A.: Identifying malicious software using deep residual long-short term memory. IEEE Access 7, 163128–163137 (2019). https://doi.org/10.1109/ACCESS.2019.2951751CrossRef

11.

Kumaran, M., Li, W.: Lightweight malware detection based on machine learning algorithms and the android manifest file. IEEE MIT Undergraduate Research Technology Conference (URTC), Cambridge, MA, pp. 1–3 (2016) https://doi.org/10.1109/urtc.2016.8284090

12.

Zhang, H., Luo, S., Zhang, Y., Pan, L.: An efficient android malware detection system based on method-level behavioral semantic analysis. IEEE Access 7, 69246–69256 (2019). https://doi.org/10.1109/ACCESS.2019.2919796CrossRef

13.

Alswaina, F., Elleithy, K.: Android malware permission-based multi-class classification using extremely randomized trees. IEEE Access 6, 76217–76227 (2018). https://doi.org/10.1109/ACCESS.2018.2883975CrossRef

14.

Qiu, J., et al.: A3CM: Automatic capability annotation for android malware. IEEE Access 7, 147156–147168 (2019). https://doi.org/10.1109/ACCESS.2019.2946392CrossRef

15.

Arp, D., Spreitzenbarth, M., Hübner, M., Gascon, H., Rieck, K.: DREBIN: Effective and explainable detection of android malware in your pocket. symposium on network and distributed system security (NDSS) (2014) https://doi.org/10.14722/ndss.2014.23247

16.

Han, W., Xue, J., Wang, Y., Zhu, S., Kong, Z.: Review: Build a roadmap for stepping into the field of anti-malware research smoothly. IEEE Access 7, 143573–143596 (2019). https://doi.org/10.1109/ACCESS.2019.2945787CrossRef

Title: Android Malware Classification Based on Static Features of an Application
Authors: S. D. Ashwini
Manisha Pai
J. Sangeetha
Publisher: Springer Singapore
Book: Advances in Computing and Network Communications
Print ISBN: 978-981-336-986-3

Electronic ISBN: 978-981-336-987-0

Copyright Year: 2021
DOI: https://doi.org/10.1007/978-981-33-6987-0_45

Springer Professional

Abstract

Please log in to get access to your license.

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft+Technik"

Springer Professional "Technik"

Springer Professional "Wirtschaft"