Loading [MathJax]/extensions/MathMenu.js
A Malware Evasion Technique for Auditing Android Anti-Malware Solutions | IEEE Conference Publication | IEEE Xplore

A Malware Evasion Technique for Auditing Android Anti-Malware Solutions


Abstract:

In the past few years, Android security is enhanced and state-of-the-art anti-malware tools have been introduced to counter Android malware. These tools use both static a...Show More

Abstract:

In the past few years, Android security is enhanced and state-of-the-art anti-malware tools have been introduced to counter Android malware. These tools use both static and dynamic analysis techniques to detect malicious applications. Despite these, the attack surface against Android phones has risen exponentially and malware detection tools are failed to counter sophisticated threats. Therefore, it is a need to audit and evaluate Anti Malware Solutions (AMTs). In our research, we have analyzed various Android malware evasion techniques, along with their pros and cons. Moreover, we conducted a detailed comparison of existing anti-malware tools and measured their efficacy against the discussed evasion techniques. Finally, a more sophisticated anti-malware evasion technique is proposed that uses exhaustive obfuscation and remote code execution to audit static and dynamic detection capabilities of AMTs. The proposed technique is practically validated and results prove that it evades all known anti-malware solutions. This technique can be utilized by anti-malware solution providers for making their products more resilient and powerful.
Date of Conference: 27-29 October 2021
Date Added to IEEE Xplore: 24 January 2022
ISBN Information:

ISSN Information:

Conference Location: Bayonne, France

Funding Agency:


References

References is not available for this document.