计算机应用与软件2017,Vol.34Issue(11):321-329,9.DOI:10.3969/j.issn.1000-386x.2017.11.058
基于安卓系统的代码隐藏类规避技术检测框架
A DETECTION FRAMEWORK OF CODE-HIDING EVASION TECHNIQUE BASED ON ANDROID SYSTEM
摘要
Abstract
With the development of malware detection and analysis techniques,a large number of malwares use evasion techniques to fight against security analysis.Among these evasion techniques,code-hiding evasion techniques hide application code from static analysis,thus cause analysis results wrong or incomplete.The explosive growth of malware required automated detection of code-hiding evasion techniques.Through manual analysis of 142 malicious samples,this paper summarized an approach for detecting code-hiding evasion techniques and implemented a generic automated detection framework.We use the detection framework to do experiments on 2 278 samples in a third party applications market,and find that 34.9% samples use code-hiding evasion techniques.关键词
安卓/规避技术/静态分析/动态分析Key words
Android/Evasion technique/Static analysis/Dynamic analysis分类
信息技术与安全科学引用本文复制引用
马晓凯,杨哲慜..基于安卓系统的代码隐藏类规避技术检测框架[J].计算机应用与软件,2017,34(11):321-329,9.
