Static Analysis for Android Malware detection with Document Vectors

Utkarsh Raghav; Elisa Martinez-Marroquin; Wanli Ma

doi:10.1109/ICDMW53433.2021.00104

Static Analysis for Android Malware detection with Document Vectors

Utkarsh Raghav
, Elisa Martinez-Marroquin
, Wanli Ma

Producción científica: Capítulo del libro › Contribución a congreso/conferencia › revisión exhaustiva

4 Citas (Scopus)

Resumen

With the increase of smart mobile devices in use, the number of malware targeting the mobile platforms has been increasing. As the major market player in the industry, Android OS has been the favourite target of perpetrators targeting mobile platforms. The current machine learning and deep learning approaches for android malware detection utilize various feature creation methods. The majority of these feature creation methods use frequency-based vectors created from different files present in the android application package (APK). These frequency-based feature creation methods fail to preserve the semantic information that is present in those files. In this paper we propose a method that utilises the static analysis and natural language processing (NLP) technique of document embeddings to generate feature vectors that can represent the information contained in android manifests and dalvik executables files present inside an APK. These embeddings are then used to train binary classifiers which can effectively differentiate between a benign or malicious android application. Our proposed method in the experiments has outperformed the other related works on the test datasets.

Idioma original	Inglés
Título de la publicación alojada	Proceedings - 21st IEEE International Conference on Data Mining Workshops, ICDMW 2021
Editores	Bing Xue, Mykola Pechenizkiy, Yun Sing Koh
Editorial	IEEE Computer Society
Páginas	805-812
Número de páginas	8
ISBN (versión digital)	9781665424271
DOI	https://doi.org/10.1109/ICDMW53433.2021.00104
Estado	Publicada - 2021
Publicado de forma externa	Sí
Evento	21st IEEE International Conference on Data Mining Workshops, ICDMW 2021 - Virtual, Online, Nueva Zelanda Duración: 7 dic 2021 → 10 dic 2021

Serie de la publicación

Nombre	IEEE International Conference on Data Mining Workshops, ICDMW
Volumen	2021-December
ISSN (versión impresa)	2375-9232
ISSN (versión digital)	2375-9259

Conferencia

Conferencia	21st IEEE International Conference on Data Mining Workshops, ICDMW 2021
País/Territorio	Nueva Zelanda
Ciudad	Virtual, Online
Período	7/12/21 → 10/12/21

Acceder al documento

10.1109/ICDMW53433.2021.00104

Otros archivos y enlaces

Enlace a la publicación en Scopus

Cómo citar

Raghav, U., Martinez-Marroquin, E., & Ma, W. (2021). Static Analysis for Android Malware detection with Document Vectors. En B. Xue, M. Pechenizkiy, & Y. S. Koh (Eds.), Proceedings - 21st IEEE International Conference on Data Mining Workshops, ICDMW 2021 (pp. 805-812). (IEEE International Conference on Data Mining Workshops, ICDMW; Vol. 2021-December). IEEE Computer Society. https://doi.org/10.1109/ICDMW53433.2021.00104

Raghav, Utkarsh ; Martinez-Marroquin, Elisa ; Ma, Wanli. / Static Analysis for Android Malware detection with Document Vectors. Proceedings - 21st IEEE International Conference on Data Mining Workshops, ICDMW 2021. editor / Bing Xue ; Mykola Pechenizkiy ; Yun Sing Koh. IEEE Computer Society, 2021. pp. 805-812 (IEEE International Conference on Data Mining Workshops, ICDMW).

@inproceedings{5994d0c44da94c54a4e78863ddc7e941,

title = "Static Analysis for Android Malware detection with Document Vectors",

abstract = "With the increase of smart mobile devices in use, the number of malware targeting the mobile platforms has been increasing. As the major market player in the industry, Android OS has been the favourite target of perpetrators targeting mobile platforms. The current machine learning and deep learning approaches for android malware detection utilize various feature creation methods. The majority of these feature creation methods use frequency-based vectors created from different files present in the android application package (APK). These frequency-based feature creation methods fail to preserve the semantic information that is present in those files. In this paper we propose a method that utilises the static analysis and natural language processing (NLP) technique of document embeddings to generate feature vectors that can represent the information contained in android manifests and dalvik executables files present inside an APK. These embeddings are then used to train binary classifiers which can effectively differentiate between a benign or malicious android application. Our proposed method in the experiments has outperformed the other related works on the test datasets.",

keywords = "android, android malware detection, cybersecurity, document embeddings, malwares",

author = "Utkarsh Raghav and Elisa Martinez-Marroquin and Wanli Ma",

note = "Publisher Copyright: {\textcopyright} 2021 IEEE.; 21st IEEE International Conference on Data Mining Workshops, ICDMW 2021 ; Conference date: 07-12-2021 Through 10-12-2021",

year = "2021",

doi = "10.1109/ICDMW53433.2021.00104",

language = "English",

series = "IEEE International Conference on Data Mining Workshops, ICDMW",

publisher = "IEEE Computer Society",

pages = "805--812",

editor = "Bing Xue and Mykola Pechenizkiy and Koh, \{Yun Sing\}",

booktitle = "Proceedings - 21st IEEE International Conference on Data Mining Workshops, ICDMW 2021",

address = "United States",

}

Raghav, U, Martinez-Marroquin, E & Ma, W 2021, Static Analysis for Android Malware detection with Document Vectors. En B Xue, M Pechenizkiy & YS Koh (eds.), Proceedings - 21st IEEE International Conference on Data Mining Workshops, ICDMW 2021. IEEE International Conference on Data Mining Workshops, ICDMW, vol. 2021-December, IEEE Computer Society, pp. 805-812, 21st IEEE International Conference on Data Mining Workshops, ICDMW 2021, Virtual, Online, Nueva Zelanda, 7/12/21. https://doi.org/10.1109/ICDMW53433.2021.00104

Static Analysis for Android Malware detection with Document Vectors. / Raghav, Utkarsh; Martinez-Marroquin, Elisa; Ma, Wanli.
Proceedings - 21st IEEE International Conference on Data Mining Workshops, ICDMW 2021. ed. / Bing Xue; Mykola Pechenizkiy; Yun Sing Koh. IEEE Computer Society, 2021. p. 805-812 (IEEE International Conference on Data Mining Workshops, ICDMW; Vol. 2021-December).

Producción científica: Capítulo del libro › Contribución a congreso/conferencia › revisión exhaustiva

TY - GEN

T1 - Static Analysis for Android Malware detection with Document Vectors

AU - Raghav, Utkarsh

AU - Martinez-Marroquin, Elisa

AU - Ma, Wanli

PY - 2021

Y1 - 2021

N2 - With the increase of smart mobile devices in use, the number of malware targeting the mobile platforms has been increasing. As the major market player in the industry, Android OS has been the favourite target of perpetrators targeting mobile platforms. The current machine learning and deep learning approaches for android malware detection utilize various feature creation methods. The majority of these feature creation methods use frequency-based vectors created from different files present in the android application package (APK). These frequency-based feature creation methods fail to preserve the semantic information that is present in those files. In this paper we propose a method that utilises the static analysis and natural language processing (NLP) technique of document embeddings to generate feature vectors that can represent the information contained in android manifests and dalvik executables files present inside an APK. These embeddings are then used to train binary classifiers which can effectively differentiate between a benign or malicious android application. Our proposed method in the experiments has outperformed the other related works on the test datasets.

AB - With the increase of smart mobile devices in use, the number of malware targeting the mobile platforms has been increasing. As the major market player in the industry, Android OS has been the favourite target of perpetrators targeting mobile platforms. The current machine learning and deep learning approaches for android malware detection utilize various feature creation methods. The majority of these feature creation methods use frequency-based vectors created from different files present in the android application package (APK). These frequency-based feature creation methods fail to preserve the semantic information that is present in those files. In this paper we propose a method that utilises the static analysis and natural language processing (NLP) technique of document embeddings to generate feature vectors that can represent the information contained in android manifests and dalvik executables files present inside an APK. These embeddings are then used to train binary classifiers which can effectively differentiate between a benign or malicious android application. Our proposed method in the experiments has outperformed the other related works on the test datasets.

KW - android

KW - android malware detection

KW - cybersecurity

KW - document embeddings

KW - malwares

UR - https://www.scopus.com/pages/publications/85125292101

U2 - 10.1109/ICDMW53433.2021.00104

DO - 10.1109/ICDMW53433.2021.00104

M3 - Conference contribution

AN - SCOPUS:85125292101

T3 - IEEE International Conference on Data Mining Workshops, ICDMW

SP - 805

EP - 812

BT - Proceedings - 21st IEEE International Conference on Data Mining Workshops, ICDMW 2021

A2 - Xue, Bing

A2 - Pechenizkiy, Mykola

A2 - Koh, Yun Sing

PB - IEEE Computer Society

T2 - 21st IEEE International Conference on Data Mining Workshops, ICDMW 2021

Y2 - 7 December 2021 through 10 December 2021

ER -

Raghav U, Martinez-Marroquin E, Ma W. Static Analysis for Android Malware detection with Document Vectors. En Xue B, Pechenizkiy M, Koh YS, editores, Proceedings - 21st IEEE International Conference on Data Mining Workshops, ICDMW 2021. IEEE Computer Society. 2021. p. 805-812. (IEEE International Conference on Data Mining Workshops, ICDMW). doi: 10.1109/ICDMW53433.2021.00104

Static Analysis for Android Malware detection with Document Vectors

Resumen

Serie de la publicación

Conferencia

Acceder al documento

Otros archivos y enlaces

Huella

Cómo citar