Android Dynamic Malware Detection Method Based on System Call Sequences

Xiaojian Liu; Yifei Zhang; Yaoyao Duan; Beibei Hou

doi:10.1109/ICSP62122.2024.10744001

2024 9th International Conference on Intelligent Computing and Signal Processing (ICSP)

Android Dynamic Malware Detection Method Based on System Call Sequences

Year: 2024, Pages: 275-279

DOI Bookmark: 10.1109/ICSP62122.2024.10744001

Authors

Xiaojian Liu, School of Computer Science and Technology, Xi'an University of Science and Technology,Xi'an, Shaanxi,China
Yifei Zhang, School of Computer Science and Technology, Xi'an University of Science and Technology,Xi'an, Shaanxi,China
Yaoyao Duan, School of Computer Science and Technology, Xi'an University of Science and Technology,Xi'an, Shaanxi,China
Beibei Hou, School of Computer Science and Technology, Xi'an University of Science and Technology,Xi'an, Shaanxi,China

Abstract

With the continuous evolution of the types and attack strategies of Android malware, the methods for detecting them must also innovate and evolve. Although existing dynamic detection methods mostly rely on machine learning, they still face numerous challenges in accurately identifying malicious software features. In order to more efficiently detect Android malware, this paper proposes an Android malware detection method based on the CNN-LSTM model. This method uses Strace to capture system call sequence logs and selects certain function parameters from the system calls to construct feature vectors. Finally, a CNN-LSTM model is employed for training and classification. Experimental analysis shows that compared to other machine learning methods and traditional CNN and LSTM networks, the classification performance of the CNN-LSTM model shows the best performance in all evaluation indicators.

Like what you’re reading?

Already a member?

Get this article FREE with a new membership!

Composition-Malware: Building Android Malware at Run Time
2015 10th International Conference on Availability, Reliability and Security (ARES)
Classifying Android Malware with Dynamic Behavior Dependency Graphs
2016 IEEE Trustcom/BigDataSE/ISPA
API Sequences Based Malware Detection for Android
2015 IEEE 12th Intl Conf on Ubiquitous Intelligence and Computing and 2015 IEEE 12th Intl Conf on Autonomic and Trusted Computing and 2015 IEEE 15th Intl Conf on Scalable Computing and Communications and Its Associated Workshops (UIC-ATC-ScalCom)
Android Malware Detector Exploiting Convolutional Neural Network and Adaptive Classifier Selection
2018 IEEE 42nd Annual Computer Software and Applications Conference (COMPSAC)
A Malware Evasion Technique for Auditing Android Anti-Malware Solutions
2021 IEEE 30th International Conference on Enabling Technologies: Infrastructure for Collaborative Enterprises (WETICE)
ShadowDroid: Practical Black-box Attack against ML-based Android Malware Detection
2021 IEEE 27th International Conference on Parallel and Distributed Systems (ICPADS)
Deep Android Malware Classification with API-Based Feature Graph
2019 18th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/13th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE)
An Image-Inspired and CNN-Based Android Malware Detection Approach
2019 34th IEEE/ACM International Conference on Automated Software Engineering (ASE)
Android Malware Detection Based on Call Graph via Graph Neural Network
2020 International Conference on Networking and Network Applications (NaNA)
Survey of Deep Learning Techniques for Malware Detection: Insights, Challenges, and Future Directions
2024 4th International Conference on Soft Computing for Security Applications (ICSCSA)

Android Dynamic Malware Detection Method Based on System Call Sequences

Authors

Abstract

Related Articles