摘要
Android应用的运行时行为是检测恶意应用的重要特征。研究Android恶意软件的动态检测技术,提出一种Android应用行为的分析方法。用静态分析的方法生成动态测试用例,用于提高动态分析效率。针对恶意应用的多层行为特征,设计多层行为分析系统,跟踪应用的多层行为特征。最后用多个应用样本验证上述方法的有效性,对其局限性进行了探讨。
The runtime behavior of application is an important feature in Android malware detection.This paper studies the dynamic detection technology of malware on Android, and proposes an analysis method for runtime behavior of android application.The static analysis is used to generate dynamic test cases, which improves the efficiency of dynamic analysis.A multi-layer behavior analysis system is designed to track the multi-layer behavior characteristics of malicious applications.Finally, the effectiveness of the proposed method is verified by several application samples, and its limitations are discussed as well.
作者
吴迪
颜峻
张勇
吴灏
WU Di;YAN Jun;ZHANG Yong;WU Hao(State Key Laboratory of Mathematical Engineering and Advanced Computing, Zhengzhou 450001, China;Information Engineering University,Zhengzhou 450001,China;Zhengzhou Campus,Army Artillery and Air Defense Forces Academy, Zhengzhou 450052, China)
出处
《信息工程大学学报》
2018年第4期503-508,共6页
Journal of Information Engineering University
