Method for detecting Android malicious program
The invention discloses a method for detecting an Android malicious program, belongs to the field of software security detection, and solves the problems that the existing Android malicious program detection method based on a heterogeneous information network is low in detection accuracy and the lik...
Saved in:
Main Authors | , , , , , |
---|---|
Format | Patent |
Language | Chinese English |
Published |
08.07.2022
|
Subjects | |
Online Access | Get full text |
Cover
Loading…
Summary: | The invention discloses a method for detecting an Android malicious program, belongs to the field of software security detection, and solves the problems that the existing Android malicious program detection method based on a heterogeneous information network is low in detection accuracy and the like due to the fact that only one type of feature is used and is easily bypassed by a specific type of malicious program. The method comprises the following steps: decompiling an Android application program to obtain a list file and a smali file; respectively extracting a permission applied by the application program and a called API (Application Program Interface) from the list file and the smali file; the method comprises the following steps: constructing a heterogeneous information network comprising three entity types of APK, API and permission and five relationship types among the three entity types, wherein the five relationships are respectively a mapping relationship between the API and the permission, a same |
---|---|
Bibliography: | Application Number: CN202210363073 |