摘要
本文主要研究基于逆向工程的Android应用程序中恶意代码的分析方法。首先,通过逆向工程得到Android应用程序的Java源代码和资源文件,然后根据源代码分析程序的功能、结构;根据manifest资源文件分析程序组件的各种权限,再结合恶意代码的行为特征判断是否存在恶意代码及其危害。也可以据此方法研究Android系统受攻击的原因及防御办法并进一步发现恶意代码的特征。
Analysis method of malicious code in Android application based on reverse engineering is principally studied. Firstly,java source code and resource files of Android application are acquired via reverse engineering. And then in accordance with the function and structure of java source code,and with the manifest resource file,various competences of program components are analyzed. Finally,in combination with the behavior of malicious code,whether exist the malicious code and its harm is determined. This method could also be applied to studying the being-attacked cause and defense of Android system and further finding the characteristics of malicious code.
出处
《信息安全与通信保密》
2016年第4期95-98,共4页
Information Security and Communications Privacy