Top

Neural Computing and Applications

Published in:

04-03-2021 | Original Article

DeepVisDroid: android malware detection by hybridizing image-based features with deep learning techniques

Authors: Khaled Bakour, Halil Murat Ünver

Published in: Neural Computing and Applications | Issue 18/2021

Activate our intelligent search to find suitable subject content or patents.

search-config

AI-assisted search

Off

Abstract

In this paper, a novel hybrid deep learning model called DeepVisDroid has been suggested for detecting android malware samples based on hybridizing image-based features with deep learning techniques. To this end, four grayscale image datasets have been constructed by converting some files from the source of the android applications into grayscale images. Then, two types of image-based features, namely local features and global features, have been extracted from the constructed image datasets and used for training the proposed model. The bag of visual words representation has been used for constructing one feature vector from multiple local feature descriptors extracted from each image. After that, 1D-convolutional layers-based neural network model has been proposed and trained using the extracted local and global image-based features. To the best of our knowledge, this is the first time that a convolutional neural network model is trained based on this type of features and used in the android malware detection domain. Furthermore, two classical 2D-convolutional layers-based neural network models have been proposed and two well-known deep learning models have been tested in order to compare the results of the proposed DeepVisDroid model with the results of the traditional convolutional neural network models and the results of the state-of-the-art deep learning models. The results of the proposed DeepVisDroid model are very promising, where its classification accuracy reached more than 98% with very efficient run-time overhead ranging between 0.11 and 2.02 s for each sample.

previous article Application of neural network in prediction of temperature: a review

next article Neural network-based prediction for surface characteristics in CO2 laser micro-milling of glass fiber reinforced plastic composite

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 340 Zeitschriften

aus folgenden Fachgebieten:

Bauwesen + Immobilien
Business IT + Informatik
Finance + Banking
Management + Führung
Marketing + Vertrieb
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 390 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Maschinenbau + Werkstoffe

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

über 102.000 Bücher
über 537 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Finance + Banking
Management + Führung
Marketing + Vertrieb
Maschinenbau + Werkstoffe
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

inform now

https://apkpure.com/.

https://www.virustotal.com/.

Counterpoint (2020) Global smartphone market—Apple gained the top spot in Q4 2019 While Huawei surpassed Apple to become the second-largest brand in CY 2019. https://www.counterpointresearch.com/global-smartphone-market-apple-gained-the-top-spot-in-2019-q4-while-huawei-surpassed-apple-to-become-the-second-largest-brand-in-cy-2019/. Accessed 20 May 2020

Statcounter (2020) Mobile operating system market share worldwide. https://gs.statcounter.com/os-market-share/mobile/worldwide. Accessed 21 May 2020

Sophos (2018) When malware goes mobile. https://www.sophos.com/en-us/security-news-trends/security-trends/malware-goes-mobile.aspx. Accessed 20 May 2020

Kaspersky (2019) Mobile malware evolution 2019. https://securelist.com/mobile-malware-evolution-2019/96280/. Accessed 19 May 2020

Data G (2019) Mobile malware report—no let-up with Android malware. https://www.gdatasoftware.com/news/2019/07/35228-mobile-malware-report-no-let-up-with-android-malware Accessed 19 May 2020

Mateless R, Rejabek D, Margalit O, Moskovitch R (2020) Decompiled APK based malicious code classification. Fut Gen Comput Syst 110:135–147CrossRef

Pei X, Yu L, Tian S (2020) AMalNet: a deep learning framework based on graph convolutional networks for malware detection. Comput Secur 93:101792CrossRef

Xiao X, Zhang S, Mercaldo F, Hu G, Sangaiah AK (2019) Android malware detection based on system call sequences and LSTM. Multim Tools Appl 78(4):3979–3999CrossRef

Lee WY, Saxe J, Harang R (2019) SeqDroid: obfuscated android malware detection using stacked convolutional and recurrent neural networks. In: Deep learning applications for cyber security. Springer, pp 197–210

10.

Wang C, Xu Q, Lin X, Liu S (2019) Research on data mining of permissions mode for Android malware detection. Clust Comput 22(6):13337–13350CrossRef

11.

Pektaş A, Acarman T (2019) Learning to detect Android malware via opcode sequences. Neurocomputing 396:599–608CrossRef

12.

Roopak S, Thomas T, Emmanuel S (2019) Android malware detection mechanism based on Bayesian model averaging. In: Recent findings in intelligent computing techniques. Springer, pp 87–96

13.

Liu P, Wang W, Luo X et al (2021) NSDroid: efficient multi-classification of android malware using neighborhood signature in local function call graphs. Int J Inf Secur 20:59–71CrossRef

14.

Pektaş A, Acarman T (2020) Deep learning for effective Android malware detection using API call graph embeddings. Soft Comput 24(2):1027–1043CrossRef

15.

Zou K, Luo X, Liu P, Wang W, Wang H (2019) ByteDroid: android malware detection using deep learning on bytecode sequences. In: Chinese conference on trusted computing and information security. Springer

16.

Taheri R, Ghahramani M, Javidan R, Shojafar M, Pooranian Z, Conti M (2020) Similarity-based android malware detection using Hamming distance of static binary features. Futur Gener Comput Syst 105:230–247CrossRef

17.

Alzaylaee MK, Yerima SY, Sezer S (2020) DL-Droid: Deep learning based android malware detection using real devices. Comput Secur 89:101663CrossRef

18.

Bakour K, Ünver HM, Ghanem R (2019) The Android malware detection systems between hope and reality. SN Appl Sci 1(9):1120CrossRef

19.

Yen Y-S, Sun H-M (2019) An android mutation malware detection based on deep learning using visualization of importance from codes. Microelectron Reliab 93:109–114CrossRef

20.

Hsien-De Huang T, Kao H-Y (2018) R2-d2: color-inspired convolutional neural network (CNN)-based android malware detections. In: 2018 IEEE international conference on big data (Big Data). IEEE

21.

Bakour K, Ünver HM (2020) VisDroid: android malware classification based on local and global image features, bag of visual words and machine learning techniques. Neural Comput Appl. https://doi.org/10.1007/s00521-020-05195-wCrossRef

22.

Ünver HM, Bakour K (2020) Android malware detection based on image-based features and machine learning techniques. SN Appl Sci 2(7):1–15CrossRef

23.

Zhang H, Ji Y, Huang W, Liu L (2019) Sitcom-star-based clothing retrieval for video advertising: a deep learning framework. Neural Comput Appl 31(11):7361–7380. https://doi.org/10.1007/s00521-018-3579-xCrossRef

24.

Onwuzurike L, Mariconti E, Andriotis P, Cristofaro ED, Ross G, Stringhini G (2019) MaMaDroid: detecting android malware by building markov chains of behavioral models (extended version). ACM Trans Priv Secur (TOPS) 22(2):14

25.

Arp D, Spreitzenbarth M, Hubner M, Gascon H, Rieck K, Siemens C (2014) Drebin: effective and explainable detection of android malware in your pocket. In: Ndss

26.

Zhou Y, Jiang X (2012) Dissecting android malware: characterization and evolution. In: 2012 IEEE symposium on security and privacy. IEEE

27.

Guardsquare (2020) Optimizing android resources. https://www.guardsquare.com/en/blog/optimizing-android-resources. Accessed 26 May 2020

28.

Mallick S (2018) Shape matching using Hu moments. https://www.learnopencv.com/shape-matching-using-hu-moments-c-python/. Accessed 19 April 2019

29.

Haralick RM, Shanmugam K, Dinstein IH (1973) Textural features for image classification. IEEE Trans Syst Man Cybern 6:610–621CrossRef

30.

Lowe DG (2004) Distinctive image features from scale-invariant keypoints. Int J Comput Vis 60(2):91–110CrossRef

31.

Bay H, Tuytelaars T, Van Gool L (2006) Surf: speeded up robust features. In: European conference on computer vision. Springer

32.

Alcantarilla PF, Bartoli A, Davison AJ (2012) KAZE features. In: European conference on computer vision. Springer

33.

Rosten E, Drummond T (2006) Machine learning for high-speed corner detection. In: European conference on computer vision. Springer

34.

Calonder M, Lepetit V, Strecha C, Fua P (2010) Brief: binary robust independent elementary features. In: European conference on computer vision. Springer

35.

He K, Zhang X, Ren S, Sun J (2016) Deep residual learning for image recognition. In: Proceedings of the IEEE conference on computer vision and pattern recognition

36.

Zhang A, Lipton ZC, Li M, Smola AJ (2019) Dive into deep learning. Unpublished Draft. Retrieved 19

37.

Szegedy C, Vanhoucke V, Ioffe S, Shlens J, Wojna Z (2016) Rethinking the inception architecture for computer vision. In: Proceedings of the IEEE conference on computer vision and pattern recognition

38.

Sharma H (2019) ReLU, Leaky ReLU and Softmax basics for neural networks and deep learning. https://medium.com/@himanshuxd/activation-functions-sigmoid-relu-leaky-relu-and-softmax-basics-for-neural-networks-and-deep-8d9c70eed91e#:~:text=ReLU Accessed 19 Oct 2020

39.

Bakour K, Ünver HM, Ghanem R (2019) A deep camouflage: evaluating android’s anti-malware systems robustness against hybridization of obfuscation techniques with injection attacks. Arab J Sci Eng 44(11):9333–9347CrossRef

Title: DeepVisDroid: android malware detection by hybridizing image-based features with deep learning techniques
Authors: Khaled Bakour
Halil Murat Ünver
Publication date: 04-03-2021
Publisher: Springer London
Published in: Neural Computing and Applications / Issue 18/2021
Print ISSN: 0941-0643
Electronic ISSN: 1433-3058
DOI: https://doi.org/10.1007/s00521-021-05816-y

Springer Professional

Abstract

Please log in to get access to your license.

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft"

Springer Professional "Technik"

Springer Professional "Wirtschaft+Technik"

Other articles of this Issue 18/2021

A hybrid sperm swarm optimization and gravitational search algorithm (HSSOGSA) for global optimization

Regression and ANFIS-based models for predicting of surface roughness and thrust force during drilling of biocomposites

Neural network-based prediction for surface characteristics in CO2 laser micro-milling of glass fiber reinforced plastic composite

Reinforcement learning methods based on GPU accelerated industrial control hardware

Automatic lumbar spinal MRI image segmentation with a multi-scale attention network

A deep convolutional neural network-based pigmented skin lesion classification application and experts evaluation

Premium Partner