摘要如今,智能手机的使用越来越普及,其中 Android 系统以其开源等特性,逐渐成为 市场上占有率最高的系统。在带给人们便利的同时,手机病毒也悄然而生,威胁着人们 的财产安全和个人隐私安全。因此针对 Android 平台的恶意代码检测已经变得越来越重 要。根据百度手机卫士安全报告,在众多类型的 Android 恶意软件中,恶意扣费软件高 居榜首,是 Android 平台最大的安全威胁。本文针对 Android 平台下基于短信订购的恶 意软件进行研究,基于危险权限和行为分析进行静态检测。首先检测是否申请敏感权限 进行初步判断,然后通过语义分析,以便检测出是否存在基于短信订购的恶意行为。实 验中选取了一个已知的恶意软件进行检测,成功检测出了基于短信订购的恶意行为,证 实了软件的有效性。 77727
毕业论文关键词 安卓;恶意软件;静态检测;API;权限
毕 业 设 计 说 明 书 外 文 摘 要
Title Malicious software detection based on SMS ordering under Android platform
Abstract Nowadays, the use of smart phones is becoming more and more popular, in which the Android system with its open source and other characteristics, and gradually become the highest market share of the system。 While bringing convenience to people, the mobile phone virus also appear quietly and widely, threatening people's property security and personal privacy。 Therefore, malicious code detection for Android platform has become more and more important。 According to the Baidu mobile guards security report, in many types of Android malicious software, malicious chargeback software is the top of the list, which become the biggest security threat to the Android platform。 In this article, based on the Android platform, we study the malicious software which is based on SMS ordering, and carry out the static detection based on the analysis of the risk permission and behavior。 Firstly, detect whether the application of sensitive permissions to conduct a preliminary judgment, and then through semantic analysis, in order to detect whether there is the existence of malicious behavior based on SMS ordering。 In the experiment, a known malicious software was chosen to be detected whether there is the existence of the malicious behavior。It worded, and the validity of the software was verified。
Keywords Android;malware;static detection;API;permission
目次
1 绪论1
1。1 研究背景与意义 1
1。3 研究内容与文章组织结构 2
1。4 本章小结 3
2 技术背景研究 4
2。1 安卓平台简介 4
2。2 安卓平台应用程序文件结构 5
2。3 静态检测技术 6
2。4 基于短信订购的恶意软件表现 7
2。5 权限和 API 分析 7
2。6 本章小结 8
3 软件实现