Andro-AutoPsy : Anti-malware system based on similarity matching of malware and malware creator-centric information
Andro-AutoPsy is an anti-malware system based on similarity matching of malware-centric and malware creator-centric information. Our system classifies malware samples into similar subgroups by exploiting the profiles extracted from integrated footprints, which are implicitly equivalent to distinct behavior characteristics. Andro-AutoPsy is capable of distinguishing benign and malicious applications and classifying malicious applications into similar behavior groups. Furthermore, Andro-AutoPsy is capable of detecting zero-day threats, which are missed by antivirus scanners.
Jae-wook Jang, Hyunjae Kang, Jiyoung Woo, Aziz Mohaisen, and Huy Kang Kim, “Andro-AutoPsy: Anti-malware system based on similarity matching of malware and malware creator-centric information,” Digital Investigation, vol. 14, pp. 17–35, 2015.
3. Dataset Release
For academic purposes, we are happy to release our dataset. However, to avoid indiscriminate distribution of mobile malware, you need the password to unzip the dataset. Please send us a request sent by your official email account. If you use our dataset for your experiment, please cite our paper.
Contact : Huy Kang Kim (cenda at korea.ac.kr)
If you want to download dataset, please fill out the questionnaire at the following URL, we will send you the download URL by e-mail.
Dataset Download Link: https://goo.gl/WiVeFj
Andro-AutoPsy is developed by Hacking and Countermeasure Research Lab in the Graduate School of Information Security at the Korea University of Korea.
Please contact “Huy Kang Kim” (cenda at korea.ac.kr) if you have any question.
You can find additional resources and tutorials (written in Korean) in the above URLs.