Andro-Simnet

The address of the homepage has been changed.

Please use the new address! 

Andro-Simnet: Malware classification system based on the similarity network of malware

1. Introduction

Andro-Simnet is an malware classification system based on the similarity network of malware. We applied a social network analysis method to our system so that it can classify malware into one's family accroding to the similar relation of malware. We used features, which are permission, API call sequence, refered file name, activity name, to get the final similarity of malware. Therefore, Andro-Simnet can classify malware samples with signature-based information and behavior-based information.

2. Publication

• • Kim, Hye Min, et al. "Andro-Simnet: Android Malware Family Classification using Social Network Analysis." 2018 16th Annual Conference on Privacy, Security and Trust (PST). IEEE, 2018.

  • Download paper: https://ieeexplore.ieee.org/document/8514216

  • Download citation as BibTex

3. Demo Video

• • https://youtu.be/JmfS-ZtCbg4 

4. Dataset Release

For academic purposes, we are happy to release our dataset. If you use our dataset in your experiment, please cite our paper. 

Contact : Huy Kang Kim (cenda at korea.ac.kr)

Dataset Download Link: Download

5. Acknowledgement

Andro-Simnet is developed by Hacking and Countermeasure Research Lab in the Graduate School of Information Security at the Korea University of Korea.

Please contact “Huy Kang Kim” (cenda at korea.ac.kr) if you have any question.