Explore a comprehensive analysis of mobile malware in this 42-minute conference talk from AppSecEU 2015 in Amsterdam. Delve into the world of mobile security as Matias Madou and Daan Raman present their findings from examining 6,000 malware applications. Learn about malware distribution, analysis techniques, and the process of creating Android APKs. Discover insights on behavior analysis, malware fingerprinting, and the use of tools like APK Scan. Examine statistics on user uploads, top malware, and commonly requested permissions. Investigate information leakage, sandbox permissions, and specific malware examples such as Flashlight and FakeToken. Gain understanding of sandbox detection methods and historical analysis trends. Conclude with future perspectives on phone analysis and comparisons between Android and iOS security landscapes.
If 6,000 Mobile Malware Applications Could Talk - Analyzing Malware Behavior and Trends
Overview
Syllabus
Introduction
Matias Madou
Outline
Mobile Malware
Distribution
Malware Analysis
How to create an Android APK
Behavior analysis
Fingerprinting malware
Hotspot Shield
Monkey Jump
APK Scan
What is APK Scan
Statistics
User Uploads
Top Malware
Top 10 Permission Requests
Dangerous Permissions
Leaked Location
Information Leakage
Sandbox Permissions
Conclusion
Flashlight
Permission Bingo
FakeToken
How does it work
Sandbox detection
Historical analysis
Conclusions
Future work
Phone analysis
Android or iOS
Taught by
OWASP Foundation
