Location via proxy:   [ UP ]  
[Report a bug]   [Manage cookies]                
Skip to main content
SpringerLink
Log in

Characterization of Android Malware Families by a Reduced Set of Static Features

  • Conference paper
  • First Online:
International Joint Conference SOCO’16-CISIS’16-ICEUTE’16 (SOCO 2016, CISIS 2016, ICEUTE 2016)

Part of the book series: Advances in Intelligent Systems and Computing ((AISC,volume 527))

Abstract

Due to the ever increasing amount and severity of attacks aimed at compromising smartphones in general, and Android devices in particular, much effort have been devoted in recent years to deal with such incidents. However, accurate detection of bad-intentioned Android apps still is an open challenge. As a follow-up step in an ongoing research, preset paper explores the selection of features for the characterization of Android-malware families. The idea is to select those features that are most relevant for characterizing malware families. In order to do that, an evolutionary algorithm is proposed to perform feature selection on the Drebin dataset, attaining interesting results on the most informative features for the characterization of representative families of existing Android malware.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Institutional subscriptions

Similar content being viewed by others

References

  1. Statista - The Statistics Portal. http://www.statista.com/statistics/266219/global-smartphone-sales-since-1st-quarter-2009-by-operating-system/. Accessed 08 July 2016

  2. AppBrain Stats. http://www.appbrain.com/stats/stats-index. Accessed 08 July 2016

  3. Micro, T.: The Fine Line: 2016 Trend Micro Security Predictions (2015)

    Google Scholar 

  4. Mind the (Security) Gaps: The 1H 2015 Mobile Threat Landscape. http://www.trendmicro.com/vinfo/us/security/news/mobile-safety/mind-the-security-gaps-1h-2015-mobile-threat-landscape. Accessed 08 July 2016

  5. F-Secure: Q1 2014 Mobile Threat Report (2015)

    Google Scholar 

  6. Yajin, Z., Xuxian, J.: Dissecting android malware: characterization and evolution. In: 2012 IEEE Symposium on Security and Privacy, pp. 95–109 (2012)

    Google Scholar 

  7. Spreitzenbarth, M., Echtler, F., Schreck, T., Freling, F.C., Hoffmann, J.: Mobile-sandbox: having a deeper look into android applications. In: 28th International ACM Symposium on Applied Computing (SAC) (2013)

    Google Scholar 

  8. Arp, D., Spreitzenbarth, M., Hubner, M., Gascon, H., Rieck, K.: DREBIN: effective and explainable detection of android malware in your pocket. In: 21st Annual Network and Distributed System Security Symposium (2014)

    Google Scholar 

  9. Guyon, I., Elisseeff, A.: An introduction to variable and feature selection. J. Mach. Learn. Res. 3, 1157–1182 (2003)

    MATH  Google Scholar 

  10. Larrañaga, P., Calvo, B., Santana, R., Bielza, C., Galdiano, J., Inza, I., Lozano, J.A., Armañanzas, R., Santafé, G., Pérez, A.: Machine learning in bioinformatics. Briefings Bioinform. 7, 86–112 (2006)

    Article  Google Scholar 

  11. Ding, C., Peng, H.: Minimum redundancy feature selection from microarray gene expression data. J. Bioinform. Comput. Biol. 3, 185–205 (2005)

    Article  Google Scholar 

  12. Liu, H., Liu, L., Zhang, H.: Ensemble gene selection by grouping for microarray data classification. J. Biomed. Inform. 43, 81–87 (2010)

    Article  Google Scholar 

  13. Feizollah, A., Anuar, N.B., Salleh, R., Wahab, A.W.A.: A review on feature selection in mobile malware detection. Digit. Invest. 13, 22–37 (2015)

    Article  Google Scholar 

  14. Hyo-Sik, H., Mi-Jung, C.: Analysis of android malware detection performance using machine learning classifiers. In: 2013 International Conference on ICT Convergence (2013), pp. 490–495

    Google Scholar 

  15. Shabtai, A., Elovici, Y.: Applying behavioral detection on android-based devices. In: Magedanz, T., Li, M., Xia, J., Giannelli, C., Cai, Y. (eds.) Mobilware 2010. LNICST, vol. 48, pp. 235–249. Springer, Heidelberg (2010)

    Chapter  Google Scholar 

  16. Shabtai, A., Fledel, Y., Elovici, Y.: Automated static code analysis for classifying android applications using machine learning. In: 2010 International Conference on Computational Intelligence and Security, pp. 329–333 (2010)

    Google Scholar 

  17. Vinod, P., Laxmi, V., Gaur, M.S., Naval, S., Faruki, P.: MCF: multicomponent features for malware analysis. In: 27th International Conference on Advanced Information Networking and Applications Workshops (WAINA), pp. 1076–1081 (2013)

    Google Scholar 

  18. Battista, P., Mercaldo, F., Nardone, V., Santone, A., Visaggio, C.: Identification of android malware families with model checking. In: 2nd International Conference on Information Systems Security and Privacy (2016)

    Google Scholar 

  19. Sedano, J., Chira, C., González, S., Herrero, Á., Corchado, E., Villar, J.R.: On the selection of key features for android malware characterization. In: Herrero, Á., Baruque, B., Sedano, J., Quintián, H., Corchado, E. (eds.) International Joint Conference. AISC, vol. 369, pp. 167–176. Springer, Heidelberg (2015)

    Chapter  Google Scholar 

  20. Virus Total. https://www.virustotal.com. Accessed 08 July 2016

Download references

Acknowledgments

This research has been partially supported through the project of the Spanish Ministry of Economy and Competitiveness RTC-2014-3059-4. The authors would also like to thank the BIO/BU09/14 and the Spanish Ministry of Science and Innovation PID 560300-2009-11.

Author information

Authors and Affiliations

  1. Instituto Tecnológico de Castilla y León, C/López Bravo 70, Pol. Ind. Villalonquejar, 09001, Burgos, Spain

    Javier Sedano & Silvia González

  2. Department of Computer Science, University of Cluj-Napoca, Baritiu 26-28, 400027, Cluj-Napoca, Romania

    Camelia Chira

  3. Department of Civil Engineering, University of Burgos, Avenida de Cantabria s/n, 09006, Burgos, Spain

    Álvaro Herrero

  4. Department of Computer Science and Automation, University of Salamanca, Plaza de la Merced, s/n, 37008, Salamanca, Spain

    Emilio Corchado

  5. Computer Science Department, University of Oviedo, ETSIMO, 33005, Oviedo, Spain

    José Ramón Villar

Authors
  1. Javier Sedano
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Camelia Chira
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Silvia González
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Álvaro Herrero
    View author publications

    You can also search for this author in PubMed Google Scholar

  5. Emilio Corchado
    View author publications

    You can also search for this author in PubMed Google Scholar

  6. José Ramón Villar
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Álvaro Herrero .

Editor information

Editors and Affiliations

  1. Computational Intelligence Group, University of the Basque Country (UPV/EHU), San Sebastian, Spain

    Manuel Graña

  2. University of the Basque Country, Vitoria, Spain

    José Manuel López-Guede

  3. Computational Intelligence Group, University of the Basque Country (UPV/EHU), San Sebastian, Spain

    Oier Etxaniz

  4. Department of Civil Engineering, University of Burgos, Burgos, Spain

    Álvaro Herrero

  5. University of Salamanca, Salamanca, Spain

    Héctor Quintián

  6. University of Salamanca, Salamanca, Spain

    Emilio Corchado

Rights and permissions

Reprints and permissions

Copyright information

© 2017 Springer International Publishing AG

About this paper

Cite this paper

Sedano, J., Chira, C., González, S., Herrero, Á., Corchado, E., Villar, J.R. (2017). Characterization of Android Malware Families by a Reduced Set of Static Features. In: Graña, M., López-Guede, J.M., Etxaniz, O., Herrero, Á., Quintián, H., Corchado, E. (eds) International Joint Conference SOCO’16-CISIS’16-ICEUTE’16. SOCO CISIS ICEUTE 2016 2016 2016. Advances in Intelligent Systems and Computing, vol 527. Springer, Cham. https://doi.org/10.1007/978-3-319-47364-2_59

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-47364-2_59

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-47363-5

  • Online ISBN: 978-3-319-47364-2

  • eBook Packages: EngineeringEngineering (R0)

Publish with us

Policies and ethics

Search

Navigation