Encryption-type ransomware has risen in prominence lately as the go-to malware for threat actors aiming to compromise Android devices. In this paper, we present a ransomware detection technique based on behaviours observed in the system calls performed by the malware. We identify and present some common high-level system call behavioural patterns targeted at encryption-type ransomware and evaluate these patterns. We further present our repeatable and extensible methodology for extracting the system call log and patterns.
CITATION STYLE
Chew, C. J. W., Kumar, V., Patros, P., & Malik, R. (2020). ESCAPADE: Encryption-Type-Ransomware: System Call Based Pattern Detection. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 12570 LNCS, pp. 388–407). Springer Science and Business Media Deutschland GmbH. https://doi.org/10.1007/978-3-030-65745-1_23
Mendeley helps you to discover research relevant for your work.