Abstract
SeqAdver: Automatic Payload Construction and Injection in Sequence-based Android Adversarial Attack
2023 IEEE International Conference on Data Mining Workshops (ICDMW), pp.1352-1361
2023 IEEE International Conference on Data Mining Workshops (ICDMW) (Shanghai, China, 01/12/2023–04/12/2023)
2023
Metrics
9 Record Views
Abstract
Machine learning has achieved a great success in the field of Android malware detection. In order to avoid being caught by these ML-based Android malware detection, malware authors are inclined to initiate adversarial sample attacks by tampering with mobile applications. Although machine learning has high capability, it lacks robustness against adversarial attacks. Currently, many of the adversarial attacking tools not only inject dead code into target applications, which can never be executed, but also require the injection of many benign features into a malicious APK. This can be easily noticeable by program analysis techniques. In this paper, we propose SeqAdver, an automatic payload construction and injection tool, which aims to bring the adversarial attack to the next level by injecting a payload that allows execution without breaking the app's original functionalities. These payloads are obtained from benign APKs at the Smali level and normalized into usable code snippets. The extracted Smali codes are carefully selected by filtering out 'user-visible' APIs and Intents. Therefore, payloads are able to be executed without any visible change noticed by the user. Besides, extracted payloads can be injected into different locations of the file based on sequence position or on the launcher class. Experiments were conducted to prove that randomly extracted payloads from benign apps are able to execute without causing any 'user-visible' behaviors or crashing the app when running the app in Android emulators.
Details
- Title
- SeqAdver: Automatic Payload Construction and Injection in Sequence-based Android Adversarial Attack
- Creators
- Fei Zhang - Tianjin UniversityRuitao Feng - Singapore Management UniversityXiaofei Xie - Singapore Management UniversityXiaohong Li - Tianjin UniversityLianshuan Shi - Tianjin University of Technology and Education
- Publication Details
- 2023 IEEE International Conference on Data Mining Workshops (ICDMW), pp.1352-1361
- Conference
- 2023 IEEE International Conference on Data Mining Workshops (ICDMW) (Shanghai, China, 01/12/2023–04/12/2023)
- Publisher
- IEEE
- Number of pages
- 10
- Identifiers
- 9798350381641; 991013245555702368
- Copyright
- © 2023 IEEE
- Academic Unit
- Faculty of Science and Engineering
- Language
- English
- Resource Type
- Abstract