Adapting Text Categorization for Manifest based Android Malware Detection

Authors

  • Onder Coban
  • Selma Ayse Ozel

DOI:

https://doi.org/10.7494/csci.2019.20.3.3285

Keywords:

Android, malware detection, text categorization, machine learning

Abstract

There are mainly three different approaches to detect malwares: i) static, ii) dynamic, and iii) hybrid. Static approach uses static source of the program without executing it. Dynamic approach, on the other hand, executes the program in a controlled environment and obtains information from operating system during runtime. Hybrid approach, as its name implies, is the combination of these two approaches. Although static approach may seem to have some disadvantages, it is highly preferred because of its lower cost. In this paper, we assume that obfuscated malware is processed by dynamic analysis and perform static malware detection based on text categorization methods. To reach our goal, we apply text mining techniques like feature extraction by using bag-of-words, n-grams, etc. from \texttt{manifest content} of programs to investigate the effectiveness of the malware detection. Our experimental results revealed that our approach is capable of detecting malicious applications with an accuracy between 94.0% and 99.3%.

Downloads

Download data is not yet available.

Downloads

Published

2019-08-25

How to Cite

Coban, O., & Ozel, S. A. (2019). Adapting Text Categorization for Manifest based Android Malware Detection. Computer Science, 20(3). https://doi.org/10.7494/csci.2019.20.3.3285

Issue

Vol. 20 No. 3

Section

Articles
Crossref
Scopus
Google Scholar
Europe PMC