Portal de Periódicos da CAPES

Using Dalvik Opcodes for Malware Detection on Android

2015; Springer Science+Business Media; Linguagem: Inglês

10.1007/978-3-319-19644-2_35

1611-3349

José Gaviria de la Puerta, Borja Sanz, Igor Santos, Pablo G. Bringas,

Software Testing and Debugging Techniques

Over the last few years, computers and smartphones have become essential tools in our ways of communicating with each-other. Nowadays, the amount of applications in the Google store has grown exponentially, therefore, malware developers have introduced malicious applications in that market. The Android system uses the Dalvik virtual machine. Through reverse engineering, we may be able to get the different opcodes for each application. For this reason, in this paper an approach to detect malware on Android is presented, by using the techniques of reverse engineering and putting an emphasis on operational codes used for these applications. After obtaining these opcodes, machine learning techniques are used to classify apps.