Title :
Behavior-Based Malware Detection on Mobile Phone
Author :
Dai, Shuaifu ; Liu, Yaxin ; Wang, Tielei ; Wei, Tao ; Zou, Wei
Author_Institution :
Key Lab. of Network & Software Security Assurance, Peking Univ., Beijing, China
Abstract :
Mobile malware is rapidly developing, but current anti-virus products in mobile devices still use the signature-based solutions, which usually need a large database and cannot detect malware variants. In this paper, we proposed a behavior-based malware detection system for Windows Mobile platform called WMMD (Windows Mobile Malware Detection system). WMMD uses API interception techniques to dynamic analyze application´s behavior and compare it with malicious behavior characteristics library using model checking. The experiment results show that WMMD can effectively detect the obfuscated or packed malware variants that cannot be detected by other main stream anti-virus products.
Keywords :
invasive software; mobile computing; mobile radio; operating systems (computers); program verification; software libraries; telecommunication computing; API interception; WMMD system; Windows Mobile platform; Windows mobile malware detection system; antivirus product; behavior-based malware detection; malicious behavior characteristics library; mobile device; mobile phone; model checking; signature-based solution; Kernel; Malware; Mobile communication; Mobile handsets; Monitoring;
Conference_Titel :
Wireless Communications Networking and Mobile Computing (WiCOM), 2010 6th International Conference on
Conference_Location :
Chengdu
Print_ISBN :
978-1-4244-3708-5
Electronic_ISBN :
978-1-4244-3709-2
DOI :
10.1109/WICOM.2010.5601291
