Deep Learning based Malware Detection for Android Systems: A Comparative Analysis

Creative Commons License

Bayazit E. C., Sahingoz O. K., DOĞAN B.

TEHNICKI VJESNIK-TECHNICAL GAZETTE, cilt.30, sa.3, ss.787-796, 2023 (SCI-Expanded) identifier identifier

  • Yayın Türü: Makale / Tam Makale
  • Cilt numarası: 30 Sayı: 3
  • Basım Tarihi: 2023
  • Doi Numarası: 10.17559/tv-20220907113227
  • Dergi Adı: TEHNICKI VJESNIK-TECHNICAL GAZETTE
  • Derginin Tarandığı İndeksler: Science Citation Index Expanded (SCI-EXPANDED), Scopus, Aerospace Database, Communication Abstracts, Compendex, INSPEC, Metadex, Directory of Open Access Journals, Civil Engineering Abstracts
  • Sayfa Sayıları: ss.787-796
  • Anahtar Kelimeler: android, deep learning, malware detection systems, malware analysis, MODEL
  • Marmara Üniversitesi Adresli: Evet

Özet

Nowadays, cyber attackers focus on Android, which is the most popular open-source operating system, as main target by applying some malicious software (malware) to access users' private information, control the device, or harm end-users. To detect Android malware, security experts have offered some learning-based models. In this study, we developed an Android malware detection system that uses different machine\deep learning models by performing both dynamic analyses, in which suspected malware is executed in a safe environment for observing its behaviours, and static analysis, which examines a malware file without any execution on the Android device. The benefits and weaknesses of these models and analyses are described in detail in this comparative study, and directions for future studies are drawn. Experimental results showed that the proposed models gave better results than those in the literature, with 0.988 accuracy for LSTM on static analysis and 0.953 accuracy for CNN-LSTM on dynamic analysis.