Preprints‎ > ‎

How I met your mother? An empirical study about Android Malware Phylogenesis by Gerardo Canfora, Francesco Mercado, Antonio Pirozzi and Corrado Aaron Visaggio

pubblicato 31 mag 2016, 14:51 da Gerardo Canfora
New malware is often not really new: malware writers are used to add functionality to existing malware, or merge different pieces of existing malware code. This determines a proliferation of variants of the same malware, that are logically grouped in “malware families”. To be able to recognize the malware family a malware belongs to is useful for malware analysis, fast infection response, and quick incident resolution. In this paper we introduce DescentDroid, a tool that traces back the malware descendant family. We experiment our technique with a real world dataset of malicious applications labelled with the family they belong to, obtaining high precision in recognizing the malware family membership.
Proc. of 13th International Joint Conference on Security and Cryptography (SECRYPT-2016)
Gerardo Canfora,
04 giu 2016, 06:32