Black Box Analysis of Android Malware Detectors

Author

Guruswamy Nellaivadivelu, San Jose State University

Publication Date

Spring 2017

Degree Type

Master's Project

Degree Name

Master of Science (MS)

Department

Computer Science

First Advisor

Mark Stamp

Second Advisor

Robert Chun

Third Advisor

Thomas Austin

Keywords

Code obfuscation, malware detectors

Abstract

Code obfuscation can make it challenging to detect malware in Android devices. Malware writers obfuscate the code of their programs by employing various techniques that attempt to hide the true purpose of the program. Malware detectors can use a number of features to classify a program as a malware. If the malware detector uses a feature that is obfuscated, then the malware detector will likely fail to classify the malware as malicious software. In this research, we obfuscate selected features of known malware and determine whether the malware can still be detected by a given detector. Using this approach, we show that we can effectively perform black box analysis of various malware detectors.

Recommended Citation

Nellaivadivelu, Guruswamy, "Black Box Analysis of Android Malware Detectors" (2017). Master's Projects. 545.
DOI: https://doi.org/10.31979/etd.uzt8-w8qh
https://scholarworks.sjsu.edu/etd_projects/545