An Efficient Scheme of Detecting Repackaged Android Applications

Release Date:2016-09-05 Author:QIN Zhongyuan, PAN Wanpeng, XU Ying, FENG Kerong, and YANG Zhongyun Click:

[Abstract] The increasing popularity of Android devices gives birth to a large amount of feature⁃rich applications (or apps) in various Android markets. Since adversaries can easily repackage malicious code into benign apps and spread them, it is urgent to detect the repackaged apps to maintain healthy Android markets. In this paper we propose an efficient detection scheme based on twice context triggered piecewise hash (T⁃CTPH), in which CTPH process is called twice so as to generate two fingerprints for each app to detect the repackaged Android applications. We also optimize the similarity calculation algorithm to improve the matching efficiency. Experimental results show that there are about 5% repackaged apps in pre⁃collected 6438 samples of 4 different types. The proposed scheme improves the detection accuracy of the repackaged apps and has positive and practical significance for the ecological system of the Android markets.

[Keywords] Android; repackage; similarity; edit distance

Download: PDF
relative articles
Light Field Virtual View Rendering Based on EPI⁃Representations
Towards Practical Implementation of Data and Energy Integrated Networks
Vehicular Communications, Networks, and Applications
On Coexistence of Vehicular Overlay Network and H2H Terminals on PRACH in LTE
A Cooperative Forwarding Scheme for VANET Routing Protocols
Hybrid Content Distribution Framework for Large⁃Scale Vehicular Ad Hoc Networks
By Visitor
Consumer
Carrier
Query & Report
ECCN Query
Whistleblowing
Privacy Center
For Investors
Announcements
Reports
Links
SDN/NFV Site
SSP Site
About ZTE Contact Us Whistleblowing Legal Statement Cookies Policy Privacy Policy Suggestion
©1998-2024 ZTE Corporation. All rights reserved