Browse Prior Art Database

DETECTING A MALWARE APPLICATION PRIOR TO INSTALLATION IN AN ANDROID DEVICE

IP.com Disclosure Number: IPCOM000217056D
Publication Date: 2012-Apr-30
Document File: 3 page(s) / 40K

Publishing Venue

The IP.com Prior Art Database

Related People

Lin Zheng: AUTHOR

Abstract

A malware detection tool enables malware detection of application package files (APKs) prior to manual installation on an Android device by hooking an installation request message, extracting the location of the APK, and scanning the APK for malware.

This text was extracted from a Microsoft Word document.
This is the abbreviated version, containing approximately 53% of the total text.

DETECTING A MALWARE APPLICATION PRIOR TO INSTALLATION IN AN ANDROID DEVICE

Lin Zheng

Symantec Corporation

Abstract

A malware detection tool enables malware detection of application package files (APKs) prior to manual installation on an Android device by hooking an installation request message, extracting the location of the APK, and scanning the APK for malware. 

Copyright © 2012 Symantec Corporation. All rights reserved. Symantec and the Symantec Logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners.  For a full list of Symantec trademarks, please visit

http://www.symantec.com/about/profile/policies/trademarks/currentlist.jsp

Any Symantec products described in this document are distributed under licenses restricting their use, copying, distribution, and decompilation/reverse engineering. No part of this document may be reproduced in any form by any means without prior written authorization of Symantec Corporation and its licensors, if any.

THE DOCUMENTATION IS PROVIDED “AS IS” AND ALL EXPRESS OR IMPLIED CONDITIONS, REPRESENTATIONS AND WARRANTIES, INCLUDING ANY IMPLIED WARRANTY OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE OR NON-INFRINGEMENT, ARE DISCLAIMED, EXCEPT TO THE EXTENT THAT SUCH DISCLAIMERS ARE HELD TO BE LEGALLY INVALID. SYMANTEC CORPORATION SHALL NOT BE LIABLE FOR INCIDENTAL OR CONSEQUENTIAL DAMAGES IN CONNECTION WITH THE FURNISHING, PERFORMANCE, OR USE OF THIS DOCUMENTATION. THE INFORMATION CONTAINED IN THIS DOCUMENTATION IS SUBJECT TO CHANGE WITHOUT NOTICE.

Symantec Corporation

350 Ellis Street

Mountain View, CA 94043

United States

http://www.symantec.com

DETECTING A MALWARE APPLICATION PRIOR TO INSTALLATION IN AN ANDROID DEVICE

Problem Statement

Currently, there are two common means to detect malware in an Android device. First, a scheduled scan may be run on an application package file (APK) installed on a secure digital (SD) card.  Second a trigger scan may be performed after a new APK is installed on the Android device. However, if a user downloads an APK and installs it manually, conventional malware detection methods may not detect the malware as quickly as needed. The malware may also have enough time to implement destructive functionality, such as stealing a user's privacy data and uploading it to a backend device. The solution described herein av...