Tracking App Behaviors With - Nothing Changed - Phone For Evasive Android Malware

Overview

Explore a powerful new method for tracking and analyzing evasive Android malware behaviors without modifying the operating system. Learn techniques to overcome challenges in fast code analysis, environment detection, obfuscation, dynamic code loading, and anti-analysis measures. Discover how to monitor user-defined classes/methods, third-party libraries, Java/Android APIs, and native-level functions including JNI, libc, and Binder on unmodified devices. Gain insights into analyzing complex and advanced Android malware through demonstrations and practical examples.

Syllabus

What I will talk about..
Obfuscation
Fast code analysis: example
Dynamic code loading
Monitoring extension
Mixed-environment code with JNI
Tracking Native Behavior:JNI
Tracking Native Behavior: LIBC
Tracking Native Behavior:BINDER

Taught by

Black Hat

Reviews

Start your review of Tracking App Behaviors With - Nothing Changed - Phone For Evasive Android Malware

100 Most Popular Courses For October

Most common

Popular subjects

Popular courses

Tracking App Behaviors With - Nothing Changed - Phone For Evasive Android Malware

Overview

Syllabus

Taught by

Reviews

100 Most Popular Courses For October

Taught by

The Problems with JNI Obfuscation in the Android Operating System

Full System Emulation - Achieving Successful Automated Dynamic Analysis of Evasive Malware

Malware Armor

Never Stop Learning.