Skip to main content
SpringerLink
Log in

Static and Dynamic Malware Analysis Using Machine Learning

  • Conference paper
  • First Online:
First International Conference on Sustainable Technologies for Computational Intelligence

Part of the book series: Advances in Intelligent Systems and Computing ((AISC,volume 1045))

Abstract

Malware is a section of code written with the intention of harming a device. Attacks on the Android operating system have been on the rise of late as there are plenty of applications on the Internet that possess malware. To analyze these attacks, machine learning can be used to make the process more efficient. This paper demonstrates static and dynamic analysis of Android malware. By identifying patterns from datasets created and using a myriad of classifiers, the results have been compared to infer the most optimal method of malware analysis. Various machine learning classifier algorithms are implemented, with Random Forest and Decision Tree giving the best accuracy and F1-Score of 94% in static analysis. Support Vector Machine and Neural Network have given the highest accuracies of about 99% after implementing Principal Component Analysis in dynamic analysis.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 169.00
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 219.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Similar content being viewed by others

References

  1. Tupakula, U., Varadharajan, V., Akku, N.: Intrusion detection techniques for infrastructure as a service cloud. In: Ninth IEEE International Conference on Dependable, Autonomic and Secure Computing, pp. 744–751. IEEE (2011)

    Google Scholar 

  2. Mcafee.com.: McAfee Labs Threats Report (online) (2018). Available at: https://www.mcafee.com/enterprise/en-us/assets/reports/rp-quarterly-threats-dec-2018.pdf. Accessed 3 Feb. 2019

  3. KOÇ, U.: Introduction to Android Malware Analysis. (Blog) Uceka (2013). Available at: https://uceka.com/2013/08/06/introduction-to-android-malware-analysis/. Accessed 18 Dec. 2018

  4. Sahs, J., Khan, L.: A machine learning approach to android malware detection. In: European Intelligence and Security Informatics Conference, pp. 141–147. IEEE Computer Society (2012)

    Google Scholar 

  5. Arp, D., Spreitzenbarth, M., Hubner, M., Gascon, H., Rieck, K., Siemens, C.E.R.T.: Drebin: effective and explainable detection of android malware in your pocket. In: Ndss, vol. 14, pp. 23–26 (2014)

    Google Scholar 

  6. Aafer, Y., Du, W., Yin, H.: Droidapiminer: mining api-level features for robust malware detection in android. In: International Conference on Security and Privacy in Communication Systems, pp. 86–103. Springer, Cham (2013)

    Google Scholar 

  7. Allix, K., Bissyandé, T.F., Klein, J., Le Traon, Y.: Androzoo: Collecting millions of android apps for the research community. In: 2016 IEEE/ACM 13th Working Conference on Mining Software Repositories (MSR), pp. 468–471. IEEE (2016)

    Google Scholar 

  8. Android Malware Dataset. (n.d.). Android Malware Dataset (online). Available at: http://amd.arguslab.org. Accessed 15 Jan. 2019

  9. Rana, M.S., Rahman, S.S.M.M., Sung, A.H.: Evaluation of tree based machine learning classifiers for android malware detection. In: International Conference on Computational Collective Intelligence, pp. 377–385. Springer, Cham (2018)

    Google Scholar 

  10. Urcuqui-López, C., Cadavid, A.N.: Framework for malware analysis in android. Sistemas Telemática 14(37), 45–56 (2016)

    Article  Google Scholar 

  11. Willems, C., Holz, T., Freiling, F.: Toward automated dynamic malware analysis using cwsandbox. IEEE Secur. Priv. 5(2), 32–39 (2007)

    Article  Google Scholar 

  12. Aung, Z., Zaw, W.: Permission-based android malware detection. Int. J. Sci. Technol. Res. 2(3), 228–234 (2013)

    Google Scholar 

  13. Desnos, A.: Androguard (2019)

    Google Scholar 

  14. Lashkari, A.H., Kadir, A.F.A., Gonzalez, H., Mbah, K.F., Ghorbani, A.A.: Towards a network-based framework for android malware detection and characterization. In: 2017 15th Annual Conference on Privacy, Security and Trust (PST), pp. 233–23309. IEEE (2017)

    Google Scholar 

  15. Choi, S., Bijou, M., Sun, K., Jung, E.: API tracing tool for android-based mobile devices. Int. J. Inf. Educ. Technol. 5(6), 460 (2015)

    Google Scholar 

  16. Feizollah, A., Anuar, N.B., Salleh, R., Wahab, A.W.A.: A review on feature selection in mobile malware detection. Digit. Inv. 13, 22–37 (2015)

    Article  Google Scholar 

  17. Javadecompilers.com. (n.d.). APK Decompiler (online). Available at: http://www.javadecompilers.com/apk. Accessed 5 Feb. 2019

  18. Geladi, P., Isaksson, H., Lindqvist, L., Wold, S., Esbensen, K.: Principal component analysis of multivariate images. Chemometr. Intell. Lab. Syst. 5(3), 209–220 (1989)

    Article  Google Scholar 

  19. Jolliffe, I.: Principal Component Analysis, pp. 1094–1096. Springer, Berlin (2011)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Mukesh Patel School of Technology, Management and Engineering, NMIMS University, Mumbai, India

    Chandni Raghuraman, Sandhya Suresh, Suraj Shivshankar & Radhika Chapaneri

Authors
  1. Chandni Raghuraman
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Sandhya Suresh
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Suraj Shivshankar
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Radhika Chapaneri
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Chandni Raghuraman .

Editor information

Editors and Affiliations

  1. Department of Electrical and Communication Engineering, The Papua New Guinea University of Technology, Lae, Papua New Guinea

    Ashish Kumar Luhach

  2. Neumann János University, Kecskemét, Bács-Kiskun, Hungary

    Janos Arpad Kosa

  3. Amity University, Jaipur, Rajasthan, India

    Ramesh Chandra Poonia

  4. School of Computing, University of Eastern Finland, Kuopio, Finland

    Xiao-Zhi Gao

  5. Department of Computer Science, Namibia University of Science and Technology, Windhoek, Namibia

    Dharm Singh

Rights and permissions

Reprints and permissions

Copyright information

© 2020 Springer Nature Singapore Pte Ltd.

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Raghuraman, C., Suresh, S., Shivshankar, S., Chapaneri, R. (2020). Static and Dynamic Malware Analysis Using Machine Learning. In: Luhach, A., Kosa, J., Poonia, R., Gao, XZ., Singh, D. (eds) First International Conference on Sustainable Technologies for Computational Intelligence. Advances in Intelligent Systems and Computing, vol 1045. Springer, Singapore. https://doi.org/10.1007/978-981-15-0029-9_62

Download citation

Publish with us

Policies and ethics

Search

Navigation