Research Area:  Machine Learning
Malware detection is an important factor in the security of the smart devices. However, currently utilized signature-based methods cannot provide accurate detection of zero-day attacks and polymorphic viruses. In this context, an efficient hybrid framework is presented for detection of malware in Android Apps. The proposed framework considers both signature and heuristic-based analysis for Android Apps. We have reverse engineered the Android Apps to extract manifest files, and binaries, and employed state-of-the-art machine learning algorithms to efficiently detect malwares. For this purpose, a rigorous set of experiments are performed using various classifiers such as SVM, Decision Tree, W-J48 and KNN. It has been observed that SVM in case of binaries and KNN in case of manifest.xml files are the most suitable options in robustly detecting the malware in Android devices. The proposed framework is tested on benchmark datasets and results show improved accuracy in malware detection.
Author(s) Name:  Zahoor-UrRehman,Sidra Nasim Khan,Khan Muhammad,Jong Weon Lee,Zhihan Lv,Sung Wook Baik,Peer Azmat Shah,Irfan Mehmood and Khalid Awan
Journal name:  Computers & Electrical Engineering
Publisher name:  ELSEVIER
Volume Information:  Volume 69, July 2018, Pages 828-841
Paper Link:   https://www.sciencedirect.com/science/article/abs/pii/S0045790617320256