Android operating system is the operating system with the largest number of users in the world. However, I have witnessed many Android virus infections. This is also the most infected operating system in the world.
Join the channel Telegram of the AnonyViet 👉 Link 👈 |
Today I will provide you with a Framework to help you analyze these Android viruses. Whether it’s an old or new virus, you can dissect it. You can find out which Android viruses are compatible with this tool.
Android Droidefense virus analysis framework
Standard analysis atom, abbreviations of phrases analytics – through – observation – machine. It will help you to analyze and reverse the Android virus to save it. You will see the clear and concrete structure of an Android virus. This framework is created for the purpose of learning and researching technology viruses.
As for the high-tech virus?
There are some Android viruses that are very secure and have anti-compiler protection. Droidefense will monitor the behavior of the virus for self-analysis. Droidefense uses new technology and this Framework’s code does not compile (complie). That, helps it avoid being attacked by the virus in reverse. At the same time, the accuracy of virus analysis is guaranteed 99%.
View analysis results on Droidefense
Droidefense will export the analysis results to an HTML File for users to share more easily. Also easy to store and review anytime, anywhere. As long as you have a browser.
Features of Droidefense
Droidefense Features
- .apk unpacker
- .apk resource decoder
- .apk file enumeration
- .apk file classification and identification
- binary xml decoder
- in-memory processing using a virtual filesystem
- resource fuzzing and hashing
- entropy calculator
- native code dump
- certificate analysis
- debug certificate detection
- opcode analysis
- unused opcode detection
- androidManifest.xml analysis
- internal structure analysis
- dalvik bytecode flow analysis
- multipath analysis implementation (not tested)
- CFG generation
- simple reflection resolver
- String classification
- simulated workflow generation
- dynamic rules engine
Instructions for using Droidefense to analyze Android viruses
You need to download it at the link below.
Or you can clone directly from the Github Repo
git clone [email protected]:droidefense/engine.git
Run the following command:
java -jar droidefense-cli-1.0-SNAPSHOT.jar -i /path/to/your/sample.apk
To see detailed usage, type the command:
java -jar droidefense-cli-1.0-SNAPSHOT.jar
You need to refer to the following links of the author to understand more:
Like Fanpage or follow website for quick updates of good articles
Good luck
Lmint.