Proposal / Submission Type
Peer Reviewed Paper
Location
Mori Hosseini Student Union: Event Center
Start Date
16-5-2019 2:00 PM
Abstract
Smartphones with Google's Android operating system are becoming more and more popular each year, and with this increased user base, comes increased opportunities to collect more of these users' private data. There have been several instances of malware being made available via the Google Play Store, which is one of the predominant means for users to download applications. One effective way of collecting users' private data is by using Android Spyware. In this paper, we conduct a forensic analysis of a malicious Android spyware application and present our findings. We also highlight what information the application accesses and what it does with that information. We then provide our findings on how Google's Play Protect service handles this spyware application. Lastly, we offer a simple framework that forensic investigators can follow for performing mobile application analysis.
Scholarly Commons Citation
Hutchinson, Shinelle and Karabiyik, Umit, "Forensic Analysis of Spy Applications in Android Devices" (2019). Annual ADFSL Conference on Digital Forensics, Security and Law. 3.
https://commons.erau.edu/adfsl/2019/paper-presentation/3
PDF version
Included in
Aviation Safety and Security Commons, Computer Law Commons, Defense and Security Studies Commons, Forensic Science and Technology Commons, Information Security Commons, National Security Law Commons, OS and Networks Commons, Other Computer Sciences Commons, Social Control, Law, Crime, and Deviance Commons
Forensic Analysis of Spy Applications in Android Devices
Mori Hosseini Student Union: Event Center
Smartphones with Google's Android operating system are becoming more and more popular each year, and with this increased user base, comes increased opportunities to collect more of these users' private data. There have been several instances of malware being made available via the Google Play Store, which is one of the predominant means for users to download applications. One effective way of collecting users' private data is by using Android Spyware. In this paper, we conduct a forensic analysis of a malicious Android spyware application and present our findings. We also highlight what information the application accesses and what it does with that information. We then provide our findings on how Google's Play Protect service handles this spyware application. Lastly, we offer a simple framework that forensic investigators can follow for performing mobile application analysis.
