Analyzing and

Identifying Malware in
Android Applications

presented by:

Jeevitha.S ,IV CSE 'A'

 Problem statement:
Title: Analyzing and identification of malware
in android application

Description:
ln today's world, using different mobile applications for specific tasks is very
common. This leads to smart phone users accumulating too many applications
over a period. Seldom do users delete unused applications. Any application
performing malicious tasks can very easily go unnoticed. So, there is a need to
develop a mobile app tool that can use open-source intelligence and threat feeds
to detect various indicators of compromise in the smartphones. The tool can
check network communication to various lP addresses that are suspicious,
various URLs that are suspicious, inbound connections or packets from
applications that are suspicious.
SOLUTIONS!!!!
Introduction

Malware, short for malicious software, is any

software used to disrupt computer operation,
gather sensitive information, or gain access to
private computer systems.

'Malware is a general term used to refer to a

variety of forms of hostile or intrusive software.
 What is Malware?

Malware refers to malicious software

designed to harm or exploit computer
systems. In the context of Android
applications, malware can include
viruses, trojans, adware, spyware, and
other malicious programs.
Understanding and detecting malware
is crucial to protect user privacy and
ensure app security.
Types of Malware in Android Apps

Viruses: Self-replicating code that infects

other apps
Trojans: Disguised as legitimate apps,
perform unauthorized actions
Adware: Displays unwanted
advertisements
Spyware: Collects sensitive user
information
Ransomware: Encrypts user data and
demands ransom
 Analyzing Malware

Static analysis: Examining the code

without executing it
Dynamic analysis: Running the app in a
controlled environment to observe its
behavior
Reverse engineering: Decompiling the
app to understand its inner workings
Behavioral analysis: Analyzing the
actions and interactions of the app
 Identifying Malware

Permission analysis: Reviewing app

permissions for suspicious requests
Code review: Identifying potentially
malicious code snippets
Network traffic analysis: Monitoring
app's communication with external
servers
Anomaly detection: Identifying
abnormal app behavior or resource
usage
 Case Studies

Malware X: A trojan disguised as a

popular game app
Malware Y: Adware that secretly collects
user data
Malware Z: A ransomware targeting
financial apps
 Mitigation Strategies

App store security: Implementing strict

review processes
User education: Promoting awareness
and safe app usage
Security frameworks: Utilizing security
libraries and frameworks
Regular updates: Patching vulnerabilities
and addressing security concerns
Best Practices

Code hygiene: Writing secure and robust

code
Secure coding practices: Implementing
encryption, input validation, and secure
APIs
Threat intelligence: Staying updated on
the latest malware trends and techniques
Static analysis Dynamic analysis
SVM -79.60% Randomforest-96.09%
LR-81.03% Decision tree-94.78%
KNN-77.10% SVM-87.83%
KNN-90%
Logistic regression-66.09%
 Conclusion

Analyzing and identifying malware in Android

applications is essential for maintaining app security and
protecting user privacy. By understanding different
types of malware, utilizing effective analysis techniques,
and implementing mitigation strategies, developers can
safeguard their apps and users from potential threats.
random forest theory is best theory in this methods
Thanks!
Do you have any
questions?