Malware Detection Using Static Analysis in Android: a review of FeCO (Features, Classification, and Obfuscation)

Android is a free open-source operating system (OS), which allows an in-depth understanding of its architecture. Therefore, many manufacturers are utilizing this OS to produce mobile devices (smartphones, smartwatch, and smart glasses) in different brands, including Google Pixel, Motorola, Samsung,...

Full description

Bibliographic Details
Published in:PeerJ Computer Science
Main Author: Jusoh R.; Firdaus A.; Anwar S.; Osman M.Z.; Darmawan M.F.; Razak M.F.A.
Format: Article
Language:English
Published: PeerJ Inc. 2021
Online Access:https://www.scopus.com/inward/record.uri?eid=2-s2.0-85109148639&doi=10.7717%2fpeerj-cs.522&partnerID=40&md5=756aa7047699ad79d84cc326098ab84b
Description
Summary:Android is a free open-source operating system (OS), which allows an in-depth understanding of its architecture. Therefore, many manufacturers are utilizing this OS to produce mobile devices (smartphones, smartwatch, and smart glasses) in different brands, including Google Pixel, Motorola, Samsung, and Sony. Notably, the employment of OS leads to a rapid increase in the number of Android users. However, unethical authors tend to develop malware in the devices for wealth, fame, or private purposes. Although practitioners conduct intrusion detection analyses, such as static analysis, there is an inadequate number of review articles discussing the research efforts on this type of analysis. Therefore, this study discusses the articles published from 2009 until 2019 and analyses the steps in the static analysis (reverse engineer, features, and classification) with taxonomy. Following that, the research issue in static analysis is also highlighted. Overall, this study serves as the guidance for novice security practitioners and expert researchers in the proposal of novel research to detect malware through static analysis. Copyright 2021 Jusoh et al.
ISSN:23765992
DOI:10.7717/peerj-cs.522