Behavior Intention Derivation of Android Malware Using Ontology Inference

<table class="fixed-width table-group" id="tab4"><tr><td><table class="table"><colgroup><col style="width:4.87em"/><col style="width:12.42em"/><col style="width:7.96em"/></colgroup><tr><td class="thead-hr" colspan="3"><hr/></td></tr><tr class="thead"><td class="align_left">Behavior</td><td class="align_center">Code segment or function</td><td class="align_center">Behavior object</td></tr><tr><td class="thead-hr" colspan="3"><hr/></td></tr><tr><td class="align_left">monitor</td><td class="align_center">onReceive()</td><td class="align_center">Broadcast</td></tr><tr><td class="align_left">intercept</td><td class="align_center">abortBroadcast()</td><td class="align_center">Broadcast’</td></tr><tr><td class="align_left" colspan="3"><hr/></td></tr><tr><td class="align_left">access</td><td class="align_center">createFrompdu(), <br/>getMessageBody(),<br/>getOriginatingAddress()</td><td class="align_center">Broadcast’, <br/>SmsMessage</td></tr><tr><td class="align_left" colspan="3"><hr/></td></tr><tr><td class="align_left">connect</td><td class="align_center">new HttpPost(URL)</td><td class="align_center">URL</td></tr><tr><td class="align_left">encrypt</td><td class="align_center">setEntity()</td><td class="align_center">SmsMessage</td></tr><tr><td class="align_left">transmit</td><td class="align_center">execute()</td><td class="align_center">URL’, SmsMessage</td></tr><tr class="table-tr"><td colspan="3"><hr class="tbody-hr"/></td></tr></table></td></tr></table>

<div>Behavior facts extracted from Zitmo.</div>

Journal of Electrical and Computer Engineering

tab4

Table 4

Table 4: Behavior Intention Derivation of Android Malware Using Ontology Inference 