{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,14]],"date-time":"2026-04-14T02:33:52Z","timestamp":1776134032190,"version":"3.50.1"},"reference-count":38,"publisher":"Springer Science and Business Media LLC","issue":"2","license":[{"start":{"date-parts":[[2014,7,20]],"date-time":"2014-07-20T00:00:00Z","timestamp":1405814400000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["Int. J. Inf. Secur."],"published-print":{"date-parts":[[2015,4]]},"DOI":"10.1007\/s10207-014-0250-0","type":"journal-article","created":{"date-parts":[[2014,7,19]],"date-time":"2014-07-19T14:34:12Z","timestamp":1405780452000},"page":"141-153","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":89,"title":["Mobile-Sandbox: combining static and dynamic analysis with machine-learning techniques"],"prefix":"10.1007","volume":"14","author":[{"given":"Michael","family":"Spreitzenbarth","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Thomas","family":"Schreck","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Florian","family":"Echtler","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Daniel","family":"Arp","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Johannes","family":"Hoffmann","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2014,7,20]]},"reference":[{"key":"250_CR1","doi-asserted-by":"crossref","unstructured":"Aafer, Y., Du, W., Yin, H.: DroidAPIMiner: Mining API-level features for robust malware detection in android. In: Proc. of International Conference on Security and Privacy in Communication Networks (SecureComm) (2013)","DOI":"10.1007\/978-3-319-04283-1_6"},{"key":"250_CR2","unstructured":"Android Developers.: Using the Android emulator. https:\/\/developer.android.com\/guide\/developing\/devices\/emulator.html . Jan 2012"},{"key":"250_CR3","unstructured":"Android Developers.: Android platform versions. http:\/\/developer.android.com\/about\/dashboards\/index.html . Jan 2014"},{"key":"250_CR4","doi-asserted-by":"crossref","unstructured":"Arp, D., Spreitzenbarth, M., H\u00fcbner, M., Gascon, H., Rieck, K.: Drebin: Efficient and explainable detection of android malware in your pocket. In: Proc. of Network and Distributed System Security Symposium (NDSS) (2014)","DOI":"10.14722\/ndss.2014.23247"},{"key":"250_CR5","doi-asserted-by":"crossref","unstructured":"Bl\u00e4sing, T., Batyuk, L., Schmidt, A.-D., Camtepe, S., Albayrak, S.: An android application sandbox system for suspicious software detection. In: Proc. of the 5th International Conference on Malicious and Unwanted Software (MALWARE) (2010)","DOI":"10.1109\/MALWARE.2010.5665792"},{"key":"250_CR6","doi-asserted-by":"crossref","unstructured":"Burguera, I., Zurutuza, U., Nadjm-Tehrani, S.: Crowdroid: behavior-based malware detection system for android. In: Proc. of the 1st ACM Workshop on Security and Privacy in Smartphones and Mobile Devices (2011)","DOI":"10.1145\/2046614.2046619"},{"key":"250_CR7","volume-title":"An Introduction to Support Vector Machines","author":"N Cristianini","year":"2000","unstructured":"Cristianini, N., Shawe-Taylor, J.: An Introduction to Support Vector Machines. Cambridge University Press, Cambridge (2000)"},{"key":"250_CR8","unstructured":"Department of Computer Science Friedrich-Alexander-University Erlangen-Nuremberg. Mobile-Sandbox. http:\/\/www.mobile-sandbox.com . Jan 2012"},{"key":"250_CR9","unstructured":"Desnos, A.: Androguard. http:\/\/code.google.com\/p\/androguard\/ . Jan 2011"},{"key":"250_CR10","unstructured":"Desnos, A., Gueguen, G.: Android: From reversing to decompilation. In: Proc. of Black Hat Abu Dhabi (2011)"},{"key":"250_CR11","unstructured":"Echtler, F.: ltrace for Android. https:\/\/github.com\/floe\/ltrace"},{"key":"250_CR12","unstructured":"Enck, W., Gilbert, P., gon Chun, B., Cox, L. P., Jung, J., McDaniel, P., Sheth, A.N.: TaintDroid: an information-flow tracking system for realtime privacy monitoring on smartphones. In: Proc. of the USENIX Symposium on Operating Systems Design and Implementation (OSDI), October 2010"},{"key":"250_CR13","doi-asserted-by":"crossref","unstructured":"Felt, A., Finifter, M., Chin, E., Hanna, S., Wagner, D.: A survey of mobile malware in the wild. In: Proceedings of the 1st ACM wWorkshop on Security and Privacy in Smartphones and Mobile Devices, pp. 3\u201314. ACM (2011)","DOI":"10.1145\/2046614.2046618"},{"key":"250_CR14","doi-asserted-by":"crossref","unstructured":"Felt, A.P., Chin, E., Hanna, S., Song, D., Wagner, D.: Android permissions demystified. In: Proc. of the 18th ACM Conference on Computer and Communications Security (2011)","DOI":"10.1145\/2046707.2046779"},{"key":"250_CR15","unstructured":"Freke, J.: Smali\u2014an disassembler for android\u2019s dex format. http:\/\/code.google.com\/p\/smali\/ . Sept 2009"},{"key":"250_CR16","unstructured":"Google Inc., Android SDK. http:\/\/developer.android.com\/sdk\/index.html . Oct 2009"},{"issue":"2","key":"250_CR17","first-page":"157","volume":"51","author":"RM Groves","year":"1987","unstructured":"Groves, R.M.: Research on survey data quality. Public Opin. Q. 51(2), 157\u2013172 (1987)","journal-title":"Public Opin. Q."},{"key":"250_CR18","doi-asserted-by":"crossref","DOI":"10.1002\/0471725277","volume-title":"Survey Errors and Survey Costs","author":"RM Groves","year":"1989","unstructured":"Groves, R.M.: Survey Errors and Survey Costs. Wiley, New York (1989)"},{"key":"250_CR19","unstructured":"Hispasec Sistemas S.L.: Virustotal malware intelligence services. https:\/\/secure.vt-mis.com\/vtmis\/"},{"key":"250_CR20","unstructured":"Hispasec Sistemas S.L.: Virustotal public API. https:\/\/www.virustotal.com\/documentation\/public-api\/"},{"key":"250_CR21","unstructured":"Lantz, P.: Droidbox\u2014android application sandbox. http:\/\/code.google.com\/p\/droidbox\/ . Feb 2011"},{"key":"250_CR22","doi-asserted-by":"crossref","unstructured":"Moser, A., Kruegel, C., Kirda, E.: Limits of static analysis for malware detection. In: Proc. of the 23rd Annual Computer Security Applications Conference (2007)","DOI":"10.1109\/ACSAC.2007.21"},{"key":"250_CR23","doi-asserted-by":"crossref","unstructured":"Peng, H., Gates, C.S., Sarma, B.P., Li, N., Qi, Y., Potharaju, R., Nita-Rotaru, C., Molloy, I.: Using probabilistic generative models for ranking risks of android apps. pp. 241\u2013252 (2012)","DOI":"10.1145\/2382196.2382224"},{"key":"250_CR24","doi-asserted-by":"crossref","unstructured":"Raffetseder, T., Kruegel, C., Kirda, E.: Detecting system emulators. In: ISC, pp. 1\u201318 (2007)","DOI":"10.1007\/978-3-540-75496-1_1"},{"key":"250_CR25","unstructured":"Rieck, K.: Derrick\u2014a simple network stream recorder. https:\/\/github.com\/rieck\/derrick . Jan 2012"},{"issue":"11","key":"250_CR26","doi-asserted-by":"crossref","first-page":"613","DOI":"10.1145\/361219.361220","volume":"18","author":"G Salton","year":"1975","unstructured":"Salton, G., Wong, A., Yang, C.S.: A vector space model for automatic indexing. Commun. ACM 18(11), 613\u2013620 (1975)","journal-title":"Commun. ACM"},{"key":"250_CR27","doi-asserted-by":"crossref","unstructured":"Sarma, B.P., Li, N., Gates, C., Potharaju, R., Nita-Rotaru, C., Molloy, I.: Android permissions: a perspective combining risks and benefits. In: Proc. of ACM Symposium on Access Control Models and Technologies (SACMAT), pp. 13\u201322 (2012)","DOI":"10.1145\/2295136.2295141"},{"key":"250_CR28","doi-asserted-by":"crossref","unstructured":"Schmidt, A.-D., Bye, R., Schmidt, H.-G., Clausen, J., Kiraz, O., Y\u00fcksel, K., Camtepe, S., Sahin, A.: Static analysis of executables for collaborative malware detection on android. In: Proc. of the ICC Communication and Information Systems Security Symposium (2009)","DOI":"10.1109\/ICC.2009.5199486"},{"key":"250_CR29","volume-title":"Application Security for the Android Platform: Processes, Permissions, and Other Safeguards","author":"J Six","year":"2011","unstructured":"Six, J.: Application Security for the Android Platform: Processes, Permissions, and Other Safeguards. Oreilly & Assoc Inc, Sebastopol (2011)"},{"key":"250_CR30","unstructured":"Spreitzenbarth, M.: Current Android malware. http:\/\/forensics.spreitzenbarth.de\/android-malware\/ . Aug 2013"},{"key":"250_CR31","unstructured":"Spreitzenbarth, M., Freiling, F.C.: Android Malware on the Rise. Technical Report CS-2012-04, Dept. of Computer Science, University of Erlangen-Nuremberg, April 2012"},{"key":"250_CR32","unstructured":"The Debian Project. ltrace. http:\/\/anonscm.debian.org\/gitweb\/?p=collab-maint\/ltrace.git;a=summary . Jan 2012"},{"key":"250_CR33","unstructured":"Vienna University of Technology.: Andrubis\u2014analysis of android apks. http:\/\/anubis.iseclab.org . May 2012"},{"key":"250_CR34","doi-asserted-by":"crossref","unstructured":"Willems, C., Freiling, F.C.: Reverse code engineering\u2014state of the art and countermeasures. it-Information Technology, pp. 53\u201363 (2011)","DOI":"10.1524\/itit.2012.0664"},{"issue":"2","key":"250_CR35","doi-asserted-by":"crossref","first-page":"32","DOI":"10.1109\/MSP.2007.45","volume":"5","author":"C Willems","year":"2007","unstructured":"Willems, C., Holz, T., Freiling, F.C.: Toward automated dynamic malware analysis using CWSandbox. IEEE Secur. Priv. 5(2), 32\u201339 (2007)","journal-title":"IEEE Secur. Priv."},{"key":"250_CR36","doi-asserted-by":"crossref","unstructured":"Xie, L., Zhang, X., Seifert, J.-P., Zhu, S.: pbmds: a behavior-based malware detection system for cellphone devices. In: Proc. of the Third ACM Conference on Wireless Network Security (2010)","DOI":"10.1145\/1741866.1741874"},{"key":"250_CR37","doi-asserted-by":"crossref","unstructured":"Zhou, Y., Jiang, X.: Dissecting android malware: characterization and evolution. In: Proc. of the 33rd IEEE Symposium on Security and Privacy (Oakland 2012), May 2012","DOI":"10.1109\/SP.2012.16"},{"key":"250_CR38","unstructured":"Zhou, Y., Wang, Z., Zhou, W., Jiang, X.: Hey, you, get off of my market: detecting malicious Apps in official and alternative Android markets. In: Proc. of the 19th Annual Symposium on Network and Distributed System Security (2012)"}],"container-title":["International Journal of Information Security"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s10207-014-0250-0.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/article\/10.1007\/s10207-014-0250-0\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s10207-014-0250-0","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,8,13]],"date-time":"2019-08-13T01:02:08Z","timestamp":1565658128000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/s10207-014-0250-0"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2014,7,20]]},"references-count":38,"journal-issue":{"issue":"2","published-print":{"date-parts":[[2015,4]]}},"alternative-id":["250"],"URL":"https:\/\/doi.org\/10.1007\/s10207-014-0250-0","relation":{},"ISSN":["1615-5262","1615-5270"],"issn-type":[{"value":"1615-5262","type":"print"},{"value":"1615-5270","type":"electronic"}],"subject":[],"published":{"date-parts":[[2014,7,20]]}}}