Android Application Package Research Articles

ScanMe mobile

As mobile malware have increased in number and sophistication, it has become pertinent for users to have tools that can inform them of potentially malicious applications. To fulfill this need, we develop a cloud-based malware analysis service called ScanMe Mobile, for the Android platform. The objective of this service is to provide users with detailed information about Android Application Package (APK) files before installing them on their devices. With ScanMe Mobile, users are able to upload APK files from their device SD card, scan the APK in the malware detection system that could be deployed in the cloud, compile a comprehensive report, and store or share the report by publishing it to the website. ScanMe Mobile works by running the APK in a virtual sandbox to generate permission data, and analyzes the result in the machine learning detection system. Through our experimental results, we demonstrate that the proposed system can effectively detect malware on the Android platform.

DroidScreening: a practical framework for real‐world Android malware analysis

AbstractAnalyzing Android malware sample is a time‐consuming and error‐prone work. Automatic techniques to perform suspicious apps screening and threat level evaluation is highly desired by the antivirus industry. In this paper, we proposed a novel automated framework called DroidScreening to speed up the Android malware analysis process and to assist antivirus analyst in generating the heuristics pattern for scanner. DroidScreening employs lazy associative classification (LAC) algorithms to produce classification model by learning from malicious evidence features extracted by using static analysis on Android application package files. Moreover, we proposed a novel high‐interaction execution environment that can interact with malicious Android code, so that the analysis samples are induced to start executing their true malicious behavior. Experimentation on malware datasets and using LAC with traditional learning approaches show that the LAC algorithms outperformed other classification algorithms. Finally, we analyzed the performance of DroidScreening and compare it with other similar research work. Copyright © 2016 John Wiley & Sons, Ltd.

Anti-debugging scheme for protecting mobile apps on android platform

The Android application package file, APK file, can be easily decompiled using Android reverse engineering tools. Thus, general apps can be easily transformed into malicious application through reverse engineering and analysis. These repacked apps could be uploaded in general android app market called Google Play Store and redistributed. To prevent theses malicious behaviors such as malicious code injection or code falsifications, many techniques and tools were developed. However, these techniques also can be analyzed using debuggers. Also, analyzed apps can be tampered easily. For example, when applying anti-analysis techniques to android apps using Dexprotector which is commercial tool for protecting android app, it can be seen that these techniques can also be analyzed using debugger. In this paper, to protect the android app from the attack using debugger, we propose anti-debugging techniques for native code debugging and managed code debugging of android apps.

APLIKASI PENCARIAN ANDROID PACKAGE (APK) BERBASIS WEB DAN MOBILE WEB DENGAN API

With the increasing number of users and number of android apps in android market is growing rapidly, whether paid or free. In fact, free android apps in the market that are sometimes only a demo version and can not be used in the country of Indonesia as well as not all users want to buy a paid app on the market. One way to overcome this problem is to require a search engine that will find applications outside of android market spread across the internet.In this thesis, the application has been made to resolve the problem of finding the android package on the internet. The method used in the design and manufacture of this application is the method of RUP (Rational Unified Process). Application is made using CodeIgniter. Applications with CodeIgniter resulted in an application that can search the android package and the search results can be downloaded and installed. Terbut application has been tested on several phones with android 2.2 operating system can produce the same display. Keywords: Android, Android Application Package File, CodeIgniter

DELTA++: Reducing the Size of Android Application Updates

This method of creating and deploying update patches improves on Google Smart Application Update by first unpacking the Android Application Package and then compressing its elements individually. The smartphone user can then download a smaller patch. Experiments show that performance yields 49 percent more reduction relative to Google's solution, increasing the savings in cellular network bandwidth use and resulting in lighter application server loads. This reduction in Android application-update traffic could translate to a 1.7 percent decrease in annual US cellular traffic. Similar methods applied to iPhone application updates could yield even greater savings.