Malware analysis

profileNickEgona
Asg6.docx.pdf
Home>Engineering homework help>Malware analysis

IT4823 – Asg6 Total points: 100

You need to use the five apk samples that represent six android apps provided with the assignment folder.

(a) Use dex2jar tool [1] to obtain the jar file from given apk, then apply JD (java decomplier [2]) tool to extract the java source code and android apk tool [3] to obtain Manifest file (xml) having list of permissions. Identify which of the app includes the list of dangerous permissions (permission that costs money like phone call, SMS, reading contact information, IMSI information, internet access) and benign permission (permission that does not cost money like receiving SMS, set alarm, setting time, read calendar).

Use Android permission list from [4] to identify the relevant permission and map with relevant apps in a tabular form below. Identify if you think a given app is malware or benign in the last column of the table. Identification requires by confirming that a dangerous permission related activities are being done within Java source code (i.e., presence of related API call)

[5*20=100 points]

A p p n a m e

Dangerous permission

Benign permission Be nig n or Ma lw are ?

a. a p k

No android.permission.ACCESS_NETWORK_STATE android.permission.ACCESS_WIFI_STATE android.permission.CHANGE_NETWORK_STATE

Ma lw are

b. a p k

android.permission. WRITE_EXTERN AL_STORAGE android.permission. READ_EXTERNA L_STORAGE

android.permission.WAKE_LOCK android.permission.INTERNET

Ma lw are

c. a p k

No com.android.alarm.permission.SET_ALARM android.permission.INTERNET android.permission.ACCESS_NETWORK_STATE

Ma lw are

d. a p

android.permission. WRITE_EXTERN AL_STORAGE

android.permission.RECEIVE_BOOT_COMPLETED android.permission.INTERNET

Be nig n

https://www.coursehero.com/file/59881762/Asg6docx/

Th is

stu dy

re so

ur ce

w as

sh ar

ed v

ia C

ou rs

eH er

o. co

m

k android.permission. READ_EXTERNA L_STORAGE android.permission. GET_ACCOUNTS

android.permission.ACCESS_NETWORK_STATE android.permission.ACCESS_WIFI_STATE android.permission.WAKE_LOCK android.permission.USE_CREDENTIALS android.permission.MANAGE_ACCOUNTS

e. a p k

android.permission. WRITE_EXTERN AL_STORAGE android.permission. READ_EXTERNA L_STORAGE

android.permission.RECEIVE_BOOT_COMPLETED android.permission.INTERNET android.permission.ACCESS_NETWORK_STATE android.permission.ACCESS_WIFI_STATE android.permission.WAKE_LOCK

Be nig n

[1] Dex2Jar, https://code.google.com/p/dex2jar/ [2] Java Decompiler, http://jd.benow.ca [3] Android apk tool, http://code.google.com/p/android-apktool/ [4] http://developer.android.com/reference/android/Manifest.permission.html

https://www.coursehero.com/file/59881762/Asg6docx/

Th is

stu dy

re so

ur ce

w as

sh ar

ed v

ia C

ou rs

eH er

o. co

m

Powered by TCPDF (www.tcpdf.org)