Android ransomware detection and defense method, device and equipment and readable storage medium

A technology of software detection and Android, which is applied in the field of malicious code detection, can solve the problems of undetectable Android ransomware ransomware text and lock screen behavior, and detection of Android ransomware that cannot lock screen, and achieves convenient application and deployment and good compatibility Effect

Pending Publication Date: 2022-01-04
XIDIAN UNIV
View PDF0 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Although RansomProber can detect encrypted Android ransomware in real time, it is not enough to judge only based on the user operation characteristics in the interface. Existence of screen-locking Android ransomware for detection

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Android ransomware detection and defense method, device and equipment and readable storage medium
  • Android ransomware detection and defense method, device and equipment and readable storage medium
  • Android ransomware detection and defense method, device and equipment and readable storage medium

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0088] In order to make the purpose, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions of the present invention will be clearly and completely described below in conjunction with the accompanying drawings. Obviously, the described embodiments are part of the embodiments of the present invention, not all of them. the embodiment. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the protection scope of the present invention.

[0089] refer to figure 1 A method for detecting and defending Android ransomware in the present invention includes three parts: preprocessing of Android applications to be detected (steps 1 to 6), operating environment detection (steps 7 and 8) and detection strategies (steps 9 and 10). Among them, the preprocessing of the Android application to be detected mainly detects the ransom...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses an android ransomware detection and defense method, device and equipment and a readable storage medium. The method comprises three parts of to-be-detected android application preprocessing, operation environment detection and detection strategy. The preprocessing of the to-be-detected Android application mainly comprises the steps of detecting a ransomware in the to-be-detected Android application and injecting a monitoring agent into the to-be-detected Android application; the operation environment detection mainly comprises the steps that the monitoring agent detects calling of the ransomware to a framework layer API and Native Library so as to monitor behaviors of the ransomware; the detection strategy is mainly used for judging whether the application is the android ransomware or not according to the android application behavior to be detected. According to the invention, the ransomware in the application can be effectively detected, and malicious behaviors during application running can be analyzed; therefore, Android ransomware attacks are resisted, the user equipment is protected from being damaged by the ransomware, and the safety of the user equipment is protected.

Description

technical field [0001] The present invention relates to the technical field of malicious code detection, in particular to a detection and defense method, device, equipment and readable storage medium for Android ransomware. Background technique [0002] As a contemporary popular malware on Android devices, ransomware usually disguises itself and lures users to install it. After it runs, it will lock the user's device or encrypt important files in the device, and send the user the condition of unlocking the device or decrypting the file. The implementation of extortion has brought great security threats to users. [0003] Android ransomware mainly implements ransomware by displaying ransom text, setting a full-screen floating window, applying for device manager permissions to reset the PIN code, activity hijacking, and encrypting files. Among them, setting a full-screen floating window, applying for device manager permissions to reset the PIN code, and Activity hijacking are...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/56
CPCG06F21/562G06F21/566
Inventor 李金库杨学武周林轩蒋忠元马建峰
Owner XIDIAN UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap