Method for detecting Android malicious program

The invention discloses a method for detecting an Android malicious program, belongs to the field of software security detection, and solves the problems that the existing Android malicious program detection method based on a heterogeneous information network is low in detection accuracy and the lik...

Full description

Saved in:
Bibliographic Details
Main Authors NIU WEINA, REN XIXUAN, ZHANG XIAOSONG, SHAO QI'AO, ZHANG HONGBIN, ZHAO LIRUI
Format Patent
LanguageChinese
English
Published 08.07.2022
Subjects
CALCULATING
COMPUTING
COUNTING
ELECTRIC DIGITAL DATA PROCESSING
PHYSICS
Online AccessGet full text

Cover

More Information
Summary:The invention discloses a method for detecting an Android malicious program, belongs to the field of software security detection, and solves the problems that the existing Android malicious program detection method based on a heterogeneous information network is low in detection accuracy and the like due to the fact that only one type of feature is used and is easily bypassed by a specific type of malicious program. The method comprises the following steps: decompiling an Android application program to obtain a list file and a smali file; respectively extracting a permission applied by the application program and a called API (Application Program Interface) from the list file and the smali file; the method comprises the following steps: constructing a heterogeneous information network comprising three entity types of APK, API and permission and five relationship types among the three entity types, wherein the five relationships are respectively a mapping relationship between the API and the permission, a same
Bibliography:Application Number: CN202210363073