%0 Journal Article
%A HU Wei
%A LI Jing-hua
%A MU De-jun
%A YANG Ming-kun
%T Design on Android Malware Behavior Analysis System
%D 2014
%R 10.13190/j.jbupt.2014.s1.020
%J Journal of Beijing University of Posts and Telecommunications
%P 104-107
%V 37
%N s1
%X <p>Consisting of nDroidC (client) and nDroidS(server), a behavior-based Android malware analysis system: nDroidAS is proposed. Application installation events on the Android device are monitored by nDroidC, which generates analysis requests while an application is to be installed. The target application is installed in nDroidS, by which dynamic feature vectors of the application are collected and analyzed to detect the malicious ones. Meanwhile, to pre-analyze applications, an Android package(APK) fetcher is designed in nDroidS to fetch APK samples from app markets. Some key technologies of the system such as feature vectors selection and interaction simulation are also discussed. A simplified prototype of nDroidAS is built, which is able to analyze Android malwares dynamically and fetch APK samples in the wild. Experiments show that the proposed system architecture is feasible.</p>
%U https://journal.bupt.edu.cn/EN/10.13190/j.jbupt.2014.s1.020