RansomAnalysis: The Evolution and Investigation of Android Ransomware

Sharma, Shweta; Kumar, Rakesh; Krishna, C. Rama

doi:10.1007/978-981-15-3020-3_4

Shweta Sharma¹³,
Rakesh Kumar¹³ &
C. Rama Krishna¹³

Part of the book series: Lecture Notes in Networks and Systems ((LNNS,volume 116))

571 Accesses
5 Citations

Abstract

Ransomware is not a Personal Computer (PC) problem anymore, but nowadays smartphones are also vulnerable to it. Various types of ransomware such as Android/Simplocker and Android/ Lockerpin attack Android OS to steal users’ personal information. In this paper, we present the evolution of Android ransomware and coin a term—RansomAnalysis—to perform the investigation of samples to analyze the AndroidManifest.xml file for the extraction of permissions. We perform a comparison between permissions gathered by ransomware and benign apps. Besides this, we analyze the topmost permissions used by Android ransomware.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 169.00; Price excludes VAT (USA)

Softcover Book: USD 219.99; Price excludes VAT (USA)

Hardcover Book: USD 219.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

Netmarketshare, Operating System Market Share (2019), https://www.netmarketshare.com/operating-system-market-share.aspx?qprid=9&qpcustomb=1&qpcd=1. Accessed 5 Aug 2019
R. Lipovsky, L. Stefanko, G. Branisa, The Rise of Android Ransomware (2016), https://www.welivesecurity.com/wp-content/uploads/2016/02/Rise_of_Android_Ransomware.pdf. Accessed 31 May 2019
Symantec, Internet Security Threat Report (2019), https://www.symantec.com/content/dam/symantec/docs/reports/istr-24-2019-en.pdf. Accessed 20 July2019
A.P. Felt, M. Finifter, E. Chin, S. Hanna, D. Wagner, A survey of mobile malware in the wild, in Proceedings of the 1st ACM Workshop on Security and Privacy in Smartphones and Mobile Devices (Illinois, USA, Chicago, 2011), pp. 3–14
Google Scholar
W. Enck, M. Ongtang, P. McDaniel, On lightweight mobile phone application certification, in Proceedings of the 16th ACM Conference on Computer and Communications Security (Illinois, USA, Chicago, 2009), pp. 235–245
Google Scholar
D.-J. Wu, C.-H. Mao, T.-E. Wei, H.-M. Lee, K.-P. Wu, Droidmat: android malware detection through manifest and api calls tracing, in Seventh Asia Joint IEEE Conference on Information Security (Japan, Tokyo, 2012), pp. 62–69
Google Scholar
D. Arp, M. Spreitzenbarth, M. Hubner, H. Gascon, K. Rieck, C. Siemens, Drebin: effective and explainable detection of android malware in your pocket. in Network and Distributed System Security Symposium (SanDiego, CA, USA, 2014)
Google Scholar
B. Sanz, I. Santos, C. Laorden, X. Ugarte-Pedrero, J. Nieves, P.G. Bringas, G. Álvarez Marañón, Mama: manifest analysis for malware detection in android. Cybern. Syst. 44(6–7), 469–488 (2013)
Google Scholar
M. Qiao, A.H. Sung, Q. Liu, Merging permission and api features for android malware detection, in International Congress on Advanced Applied Informatics (IEEE, 2016), pp. 566–571
Google Scholar
J. Li, L. Sun, Q. Yan, Z. Li, W. Srisa-an, H. Ye, Significant permission identification for machine-learning-based android malware detection. IEEE Trans. Ind. Inform. 14(7), 3216–3225 (2018)
Article Google Scholar
M. Diamantaris, E.P. Papadopoulos, E.P. Markatos, S. Ioannidis, J. Polakis, Reaper: real-time app analysis for augmenting the android permission system, in Proceedings of the Ninth ACM Conference on Data and Application Security and Privacy (ACM, 2019), pp. 37–48
Google Scholar
J. Chen, C. Wang, Z. Zhao, K. Chen, R. Du, G.-J. Ahn, Uncovering the face of android ransomware: characterization and real-time detection. IEEE Trans. Inf. Forensics Secur. 13(5), 1286–1300 (2018)
Article Google Scholar
K. Allix, T.F. Bissyandé, J. Klein, Y. Le Traon, Androzoo: collecting millions of android apps for the research community, in Proceedings of the 13th International Conference on Mining Software Repositories (ACM, 2016), pp. 468–471
Google Scholar
Kali, apktool (2019), https://tools.kali.org/reverse-engineering/apktool. Accessed 12 July 2019

Download references

Author information

Authors and Affiliations

Department of CSE, NITTTR, Chandigarh, India
Shweta Sharma, Rakesh Kumar & C. Rama Krishna

Authors

Shweta Sharma
View author publications
You can also search for this author in PubMed Google Scholar
Rakesh Kumar
View author publications
You can also search for this author in PubMed Google Scholar
C. Rama Krishna
View author publications
You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Shweta Sharma .

Editor information

Editors and Affiliations

Department of IMCO, National Institute of Technical Teachers Training and Research, Chandigarh, India
Maitreyee Dutta
Department of CSE, National Institute of Technical Teachers Training and Research, Chandigarh, India
C. Rama Krishna
Department of CSE, National Institute of Technical Teachers Training and Research, Chandigarh, India
Rakesh Kumar
Department of CSE, National Institute of Technical Teachers Training and Research, Chandigarh, India
Mala Kalra

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Sharma, S., Kumar, R., Krishna, C.R. (2020). RansomAnalysis: The Evolution and Investigation of Android Ransomware. In: Dutta, M., Krishna, C., Kumar, R., Kalra, M. (eds) Proceedings of International Conference on IoT Inclusive Life (ICIIL 2019), NITTTR Chandigarh, India. Lecture Notes in Networks and Systems, vol 116. Springer, Singapore. https://doi.org/10.1007/978-981-15-3020-3_4

Download citation

DOI: https://doi.org/10.1007/978-981-15-3020-3_4
Published: 09 April 2020
Publisher Name: Springer, Singapore
Print ISBN: 978-981-15-3019-7
Online ISBN: 978-981-15-3020-3
eBook Packages: EngineeringEngineering (R0)

Publish with us

Policies and ethics