PPT-RiskRanker : Scalable and Accurate Zero-day Android Malware Detection

Grace M Zhou Y Shilong Z Jiang X RiskRanker analyses the paths within an android application Potentially malicious security risks are flagged for investigation Summary This application showcases how reverse engineering. edu St ephane Glondu ENS de Cachan France stephglondunet Abstract Detecting code clones has many software engineering applications Existing approaches either do not scale to large code bases or are not robust against minor code modi 64257cations In t Android Malware Classification . Using Weighted . Contextual API Dependency . Graphs. Mu Zhang. Yue. . Duan. Heng. Yin. Zhiruo. Zhao. Department . of Electrical Engineering and . Computer Science. MSc Information Security . Project 2013/2014. Author: Nicholas . Aquilina. Supervisor: . Dr. Konstantinos . Markantonakis. Aims and . Objectives of Project. Understand and . analyse. . current malware strategies. : Evaluating Android Anti-malware against Transformation . A. ttacks. Vaibhav . Rastogi. , . Yan Chen. , and . Xuxian. Jiang. 1. Lab for Internet and Security Technology, Northwestern University. †. Author : . Yajin. Zhou, . Xuxuan. Jiang. TJ. Index of this paper. Introduction. Malware Timeline. Malware Characterization. Malware Installation. Repackaging. Update Attack. Drive-by Download. Others. Connor Schnaith, Taiyo Sogawa. 9 April 2012. Motivation. “. 5. 000 . new. malware samples per day”. --David Perry of Trend Micro. Large variance between attacks. Polymorphic attacks . Perform the same function. : Evaluating Android Anti-malware against Transformation . A. ttacks. Vaibhav . Rastogi. , . Yan Chen. , and . Xuxian. Jiang. 1. Lab for Internet and Security Technology, Northwestern University. †. Our Focus. Victim. Attacker. Malicious. Web. Exploit. browser. Phishing. Exploit. vulnerability. Code Repo. Database. Malware . propagation. Initial Compromise. Gaining Foothold. Lateral Movement. High Value Asset Acquisition. with . DroidRide. : And How Not To. Min Huang, Kai Bu, . Hanlin. Wang, . Kaiwen. Zhu. Zhejiang University. CyberC. 2016. Reviving Android Malware. with . DroidRide. : And How Not To. ?. Reviving Android Malware. . malware. . detection. . mechanisms. in online banking. Jakub Kałużny. Mateusz Olejarka. CONFidence. , 25.05.2015. Pentesters. @ SecuRing. Ex-. developers. Experience. with:. E-banking and mobile banking . o. ‐day. . Android Malware Detection. Introduction/Motivation:. What was the main problem. . addressed?. . . . Mobile. . devices. . have become popular. . targets for malware. authors, threatening privacy, security, and finances.. Meltem Ozsoy. *. , Caleb . Donovick. *. , . Iakov. . Gorelik. *. ,. Nael. Abu-. Ghazaleh. **. and Dmitry . Ponomarev. *. *. Binghamton University, . **. University of California, Riverside. HPCA 2015 - San Francisco, CA. A. ttacks. Vaibhav . Rastogi. , . Yan Chen. , and . Xuxian. Jiang. 1. Lab for Internet and Security Technology, Northwestern University. †. North Carolina State University. Android Dominance. Smartphone sales already exceed PC sales. Lucky ONWUZURIKE. November 15, 2018. Motivation. 2. Why Apps?. They often handle and transmit sensitive information. Some have been shown to contain vulnerabilities (e.g., accepting invalid TLS certificate, permission abuse etc.).