Loading…
This event has ended. View the official site or create your own event → Check it out
This event has ended. Create your own
View analytic
Thursday, May 21 • 11:55 - 12:40
If 6,000 Mobile Malware Applications Could Talk! Ow, They Do, And A Lot!

Sign up or log in to save this to your schedule and see who's attending!

Current mobile malware detection solutions seem to be particularly good at something very specific, and use some specific detection mechanism. However, most of them are not extensible and the analysis technique is a black box. That is why we started our mobile malware detection research project by combining existing free-to-use solutions. We have also built our own static and dynamic analysis component. In this presentation, we dive deep in to the categories of checks that we've researched and implemented in our analysis components to complete existing techniques and create a better view on the scanned mobile sample.

The results of such distributed scan are presented in a report that can be interpreted by end-users, answering basic questions such as “Is this sample trying to send a text message to a premium number without my consent?” (which 15% of the apps we scanned does). Because of the distributed approach, we can answer more complex questions, including: “Did the sample behave differently in a sandboxed (virtual) environment than it did on a physical phone?”.

Our research project is free to use (http://apkscan.nviso.be ), contains a publicly available API and is used by researchers and companies around the world. In this presentation we give a broad range of statistics and interesting examples of what we found in thousands of scanned Android applications. 

Speakers
avatar for Matias Madou

Matias Madou

Matias works for NVISO, a boutique information security consulting firm located in Brussels. He holds a Ph.D. in computer engineering from Ghent University, where he studied application security through program obfuscation to hide the inner workings of an application. Matias spoke at conferences including RSA Conference, BlackHat and DefCon.
avatar for Daan Raman

Daan Raman

| Daan Raman works at NVISO, where he is responsible for R&D. His core activities consist of technical research with a current focus on application security for mobile systems. 


Thursday May 21, 2015 11:55 - 12:40
E104&105 Amsterdam RAI

Attendees (17)