Skip to main content
SpringerLink
Log in

WLTDroid: Repackaging Detection Approach for Android Applications

  • Conference paper
  • First Online:
Web Information Systems and Applications (WISA 2020)

Part of the book series: Lecture Notes in Computer Science ((LNISA,volume 12432))

Included in the following conference series:

Abstract

Huge number of mobile applications are downloaded every year. These benefits promote the rapid development of the mobile application industry, especially Android applications for its openness. But, because of the low cost and good profit, Android application repackaging also developed quickly, which can make a kind of malware applications and publish them to the Android market. Therefore, in order to defend against this dangerous technology, repackaging detection technology has been continuously studied in recent years. Contrary to the repackaging detection technique, obfuscation techniques are used in the application repacking to avoid detection. This makes the effectiveness of many existing methods be affected. In this paper, we propose a novel approach based on Dynamic Whole Layout Tree extraction, that we call WLTDroid, which can avoid the interference of the layout file obfuscation. The experimental results show that the approach proposed in this paper can resist the obfuscation affect better than other repackaging detection methods. In addition, our approach is more accurate than the existing method RepDroid.

The work described in this paper is supported by the National Natural Science Foundation of China under Grant No. 61702029, No. 61872026 and No. 61672085.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 84.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 109.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Notes

  1. 1.

    An example figure is given at https://github.com/pro-resrc/figure. The app has four interface views, with 3 view transfers, 79 container nodes, 54 display nodes, 3 transfer nodes, 132 inclusion edges and 3 transfer edges.

References

  1. State of Mobile 2019. https://www.appannie.com/en/go/state-of-mobile-2019/?utm_source=AppStats2019&utm_medium=appdata&utm_campaign=AppAnnie

  2. Crussell, J., Gibler, C., Chen, H.: AnDarwin: scalable detection of semantically similar android applications. In: Crampton, J., Jajodia, S., Mayes, K. (eds.) ESORICS 2013. LNCS, vol. 8134, pp. 182–199. Springer, Heidelberg (2013). https://doi.org/10.1007/978-3-642-40203-6_11

    Chapter  Google Scholar 

  3. Crussell, J., Gibler, C., Chen, H.: Attack of the clones: detecting cloned applications on android markets 81(13), 2454–2456 (2012)

    Google Scholar 

  4. Gadyatskaya, O., Lezza, A.-L., Zhauniarovich, Y.: Evaluation of resource-based app repackaging detection in android. In: Brumley, B.B., Röning, J. (eds.) NordSec 2016. LNCS, vol. 10014, pp. 135–151. Springer, Cham (2016). https://doi.org/10.1007/978-3-319-47560-8_9

    Chapter  Google Scholar 

  5. Gibler, C., Stevens, R., Crussell, J., Chen, H., Zang, H., Choi, H.: AdRob: examining the landscape and impact of android application plagiarism. In: Proceedings of the International Conference on Mobile Systems, Applications, and Services, pp. 431–444 (2013)

    Google Scholar 

  6. Gultnieks, C.: f-droid.org/packages/ (2018)

  7. Hanna, S., Huang, L., Wu, E., Li, S., Chen, C., Song, D.: Juxtapp: a scalable system for detecting code reuse among android applications. In: Flegel, U., Markatos, E., Robertson, W. (eds.) DIMVA 2012. LNCS, vol. 7591, pp. 62–81. Springer, Heidelberg (2013). https://doi.org/10.1007/978-3-642-37300-8_4

    Chapter  Google Scholar 

  8. Kim, J.-H., Im, E-.G.: AndroGuard: similarity analysis for android application binaries. J. Korean Inf. Sci. Soc. (2014)

    Google Scholar 

  9. Kornblum, J.: Identifying almost identical files using context triggered piecewise hashing. Digit. Invest. 3, 91–97 (2006)

    Article  Google Scholar 

  10. Levenshtein, V.I.: Binary codes capable of correcting deletions, insertions, and reversals. Soviet Phys. Doklady 10, 707–710 (1966)

    MathSciNet  Google Scholar 

  11. Lyu, F., Lin, Y., Yang, J., Zhou, J.: SUIDroid: an efficient hardening-resilient approach to android app clone detection. In: 2016 IEEE Trustcom/BigDataSE/ISPA, pp. 511–518. IEEE (2016)

    Google Scholar 

  12. Ma, J.: RepDroid: an automated tool for android application repackaging detection. In: ICPC (2017)

    Google Scholar 

  13. Malisa, L., Kostiainen, K., Och, M., Capkun, S.: Mobile application impersonation detection using dynamic user interface extraction. In: Askoxylakis, I., Ioannidis, S., Katsikas, S., Meadows, C. (eds.) ESORICS 2016. LNCS, vol. 9878, pp. 217–237. Springer, Cham (2016). https://doi.org/10.1007/978-3-319-45744-4_11

    Chapter  Google Scholar 

  14. Shao, Y., Luo, X., Qian, C., Zhu, P., Zhang, L.: Towards a scalable resource-driven approach for detecting repackaged android applications. In: Proceedings of the 30th Annual Computer Security Applications Conference, pp. 56–65. ACM (2014)

    Google Scholar 

  15. Sibei, J., Lingyun, Y., Yi, Y., Yao, C., Purui, S., Dengguo, F.: An anti-obfuscation method for detecting similarity among android applications in large scale. J. Comput. Res. Dev. 51(7), 1446 (2014)

    Google Scholar 

  16. Sun, M., Li, M., Lui, J.: DroidEagle: seamless detection of visually similar android apps. In: Proceedings of the 8th ACM Conference on Security & Privacy in Wireless and Mobile Networks, p. 9. ACM (2015)

    Google Scholar 

  17. Wang. www.wandoujia.com/apps (2018)

  18. Yue, S., Sun, Q., Ma, J., Tao, X., Xu, C., Lu, J.: RegionDroid: a tool for detecting android application repackaging based on runtime UI region features. In: IEEE International Conference on Software Maintenance & Evolution (2018)

    Google Scholar 

  19. Zhang, F., Huang, H., Zhu, S., Wu, D., Liu, P.: ViewDroid: towards obfuscation-resilient mobile application repackaging detection (2014)

    Google Scholar 

  20. Zhauniarovich, Y., Gadyatskaya, O., Crispo, B., La Spina, F., Moser, E.: FSquaDRA: fast detection of repackaged applications. In: Atluri, V., Pernul, G. (eds.) DBSec 2014. LNCS, vol. 8566, pp. 130–145. Springer, Heidelberg (2014). https://doi.org/10.1007/978-3-662-43936-4_9

    Chapter  Google Scholar 

  21. Zhou, W., Zhou, Y., Jiang, X., Ning, P.: Detecting repackaged smartphone applications in third-party android marketplaces. In: ACM Conference on Data and Application Security and Privacy, pp. 317–326 (2012)

    Google Scholar 

  22. Zhou, Y., Jiang, X.: Dissecting android malware: characterization and evolution. In: 2012 IEEE Symposium on Security and Privacy (SP), pp. 95–109. IEEE (2012)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. College of Information Science and Technology, Beijing University of Chemical Technology, Beijing, China

    Junxia Guo, Dongdong Liu, Rilian Zhao & Zheng Li

Authors
  1. Junxia Guo
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Dongdong Liu
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Rilian Zhao
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Zheng Li
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Zheng Li .

Editor information

Editors and Affiliations

  1. Guangzhou University, Guangzhou, China

    Guojun Wang

  2. The University of New South Wales, Sydney, NSW, Australia

    Xuemin Lin

  3. Rensselaer Polytechnic Institute, Troy, NY, USA

    James Hendler

  4. Wuhan University, Wuhan, China

    Wei Song

  5. Hohai University, Nanjing, China

    Zhuoming Xu

  6. Fuzhou University, Fuzhou, China

    Genggeng Liu

Rights and permissions

Reprints and permissions

Copyright information

© 2020 Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Guo, J., Liu, D., Zhao, R., Li, Z. (2020). WLTDroid: Repackaging Detection Approach for Android Applications. In: Wang, G., Lin, X., Hendler, J., Song, W., Xu, Z., Liu, G. (eds) Web Information Systems and Applications. WISA 2020. Lecture Notes in Computer Science(), vol 12432. Springer, Cham. https://doi.org/10.1007/978-3-030-60029-7_52

Download citation

  • DOI: https://doi.org/10.1007/978-3-030-60029-7_52

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-030-60028-0

  • Online ISBN: 978-3-030-60029-7

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Societies and partnerships

Search

Navigation