{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,3]],"date-time":"2026-06-03T03:34:47Z","timestamp":1780457687661,"version":"3.54.1"},"publisher-location":"New York, NY, USA","reference-count":35,"publisher":"ACM","license":[{"start":{"date-parts":[[2016,12,7]],"date-time":"2016-12-07T00:00:00Z","timestamp":1481068800000},"content-version":"vor","delay-in-days":366,"URL":"http:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/100006785","name":"Google","doi-asserted-by":"publisher","award":["SeSQLite: Security Enhanced SQLite"],"award-info":[{"award-number":["SeSQLite: Security Enhanced SQLite"]}],"id":[{"id":"10.13039\/100006785","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100003407","name":"Ministero dell'Istruzione, dell'Universit\u00e0 e della Ricerca","doi-asserted-by":"publisher","award":["2010RTFWBH GenData 2020"],"award-info":[{"award-number":["2010RTFWBH GenData 2020"]}],"id":[{"id":"10.13039\/501100003407","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/100000001","name":"National Science Foundation","doi-asserted-by":"publisher","award":["CNS-1408632"],"award-info":[{"award-number":["CNS-1408632"]}],"id":[{"id":"10.13039\/100000001","id-type":"DOI","asserted-by":"publisher"}]},{"name":"Air Force","award":["FA8750-12-2-0101"],"award-info":[{"award-number":["FA8750-12-2-0101"]}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2015,12,7]]},"DOI":"10.1145\/2818000.2818036","type":"proceedings-article","created":{"date-parts":[[2015,12,11]],"date-time":"2015-12-11T12:06:08Z","timestamp":1449835568000},"page":"71-80","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":43,"title":["BareDroid"],"prefix":"10.1145","author":[{"given":"Simone","family":"Mutti","sequence":"first","affiliation":[{"name":"Universit\u00e1 degli Studi di Bergamo, Bergamo, Italy"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Yanick","family":"Fratantonio","sequence":"additional","affiliation":[{"name":"UC Santa Barbara, Santa Barbara, CA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Antonio","family":"Bianchi","sequence":"additional","affiliation":[{"name":"UC Santa Barbara, Santa Barbara, CA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Luca","family":"Invernizzi","sequence":"additional","affiliation":[{"name":"UC Santa Barbara, Santa Barbara, CA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Jacopo","family":"Corbetta","sequence":"additional","affiliation":[{"name":"UC Santa Barbara, Santa Barbara, CA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Dhilung","family":"Kirat","sequence":"additional","affiliation":[{"name":"IBM Research T.J. Watson, Yorktown Heights, NY"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Christopher","family":"Kruegel","sequence":"additional","affiliation":[{"name":"UC Santa Barbara Santa, Barbara, CA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Giovanni","family":"Vigna","sequence":"additional","affiliation":[{"name":"UC Santa Barbara Santa, Barbara, CA"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2015,12,7]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"Anubis. http:\/\/anubis.cs.ucsb.edu."},{"key":"e_1_3_2_1_2_1","unstructured":"Sanddroid. http:\/\/sanddroid.xjtu.edu.cn\/."},{"key":"e_1_3_2_1_3_1","volume-title":"Proceedings of the Symposium on Network and Distributed System Security (NDSS)","author":"Balzarotti D.","year":"2010","unstructured":"D. Balzarotti, M. Cova, C. Karlberger, C. Kruegel, E. Kirda, and G. Vigna. Efficient Detection of Split Personalities in Malware. In Proceedings of the Symposium on Network and Distributed System Security (NDSS), 2010."},{"key":"e_1_3_2_1_4_1","volume-title":"Dependable Systems and Networks With FTCS and DCC","author":"Chen X.","year":"2008","unstructured":"X. Chen, J. Andersen, Z. M. Mao, M. Bailey, and J. Nazario. Towards an Understanding of Anti-Virtualization and Anti-Debugging Behavior in Modern Malware. In Dependable Systems and Networks With FTCS and DCC, 2008."},{"key":"e_1_3_2_1_5_1","unstructured":"CNET. Google's $349 Nexus 5 hits today with LTE KitKat. http:\/\/www.cnet.com\/news\/googles-349-nexus-5-hits-today-with-lte-kitkat\/."},{"key":"e_1_3_2_1_6_1","unstructured":"Contagio mobile mini-dump. OBAD. http:\/\/contagiominidump.blogspot.it\/2013\/06\/backdoorandroidosobada.html."},{"key":"e_1_3_2_1_7_1","unstructured":"DexLab. Detecting Android Sandboxes. http:\/\/www.dexlabs.org\/blog\/btdetect."},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2014.23059"},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1145\/1455770.1455779"},{"key":"e_1_3_2_1_10_1","unstructured":"F-Secure. Android Pincer A. https:\/\/www.f-secure.com\/weblog\/archives\/00002538.html."},{"key":"e_1_3_2_1_11_1","volume-title":"Attacks on Virtual Machine Emulators. Technical report","author":"Ferrie P.","year":"2007","unstructured":"P. Ferrie. Attacks on Virtual Machine Emulators. Technical report, Symantec Corporation, 2007."},{"key":"e_1_3_2_1_12_1","unstructured":"FireEye. Android.HeHe. https:\/\/www.fireeye.com\/blog\/threat-research\/2014\/01\/android-hehe-malware-now-disconnects-phone-calls.html."},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.5555\/2671293.2671295"},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.5555\/1776434.1776450"},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1145\/1315245.1315262"},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1145\/2664243.2664250"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.5555\/2026647.2026658"},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1145\/2076732.2076790"},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.5555\/2671225.2671244"},{"key":"e_1_3_2_1_20_1","volume-title":"DroidBox: Android Application Sandbox","author":"Lantz P.","year":"2012","unstructured":"P. Lantz, A. Desnos, and K. Yang. DroidBox: Android Application Sandbox, 2012."},{"key":"e_1_3_2_1_21_1","unstructured":"S. Mutti Y. Fratantonio A. Bianchi L. Invernizzi J. Corbetta D. Kirat C. Kruegel and G. Vigna. BareDroid Source Code. https:\/\/github.com\/ucsb-seclab\/baredroid."},{"key":"e_1_3_2_1_22_1","volume-title":"SummerCon","author":"Oberheide J.","year":"2012","unstructured":"J. Oberheide and C. Miller. Dissecting the Android Bouncer. SummerCon, 2012."},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.5555\/1855876.1855878"},{"key":"e_1_3_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.1145\/2592791.2592796"},{"key":"e_1_3_2_1_25_1","volume-title":"Proceedings of the ACM European Workshop on System Security (EUROSEC)","author":"Reina A.","year":"2013","unstructured":"A. Reina, A. Fattori, and L. Cavallaro. A system Call-Centric Analysis and Stimulation Technique to Automatically Reconstruct Android Malware Behaviors. In Proceedings of the ACM European Workshop on System Security (EUROSEC), 2013."},{"key":"e_1_3_2_1_26_1","unstructured":"J. Rutkowska. Red Pill... or how to detect VMM using (almost) one CPU instruction. http:\/\/invisiblethings.org\/papers\/redpill.html 2004."},{"key":"e_1_3_2_1_27_1","unstructured":"J. Security. JOE Sandbox Mobile. http:\/\/www.joesecurity.org."},{"key":"e_1_3_2_1_28_1","unstructured":"Server Direct. Server prices. http:\/\/www.serversdirect.com."},{"key":"e_1_3_2_1_29_1","volume-title":"Proceedings of the Symposium on Network and Distributed System Security (NDSS)","author":"Smalley S.","year":"2013","unstructured":"S. Smalley and R. Craig. Security Enhanced (SE) Android: Bringing Flexible MAC to Android. In Proceedings of the Symposium on Network and Distributed System Security (NDSS), 2013."},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1145\/2480362.2480701"},{"key":"e_1_3_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2015.23145"},{"key":"e_1_3_2_1_32_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2006.9"},{"key":"e_1_3_2_1_33_1","doi-asserted-by":"publisher","DOI":"10.1145\/2590296.2590325"},{"key":"e_1_3_2_1_34_1","unstructured":"L. Weichselbaum M. Neugschwandtner M. Lindorfer Y. Fratantonio V. van der Veen and C. Platzer. Andrubis: Android Malware Under The Magnifying Glass. Technical Report TR-ISECLAB-0414-001 iSecLab May 2014."},{"key":"e_1_3_2_1_35_1","author":"Yoshioka K.","year":"2011","unstructured":"K. Yoshioka, Y. Hosobuchi, T. Orii, and T. Matsumoto. Your Sandbox is Blinded: Impact of Decoy Injection to Public Malware Analysis Systems. Journal of Information Processing, 2011.","journal-title":"Journal of Information Processing"}],"event":{"name":"ACSAC 2015: 2015 Annual Computer Security Applications Conference","location":"Los Angeles CA USA","acronym":"ACSAC 2015","sponsor":["ACSA Applied Computing Security Assoc"]},"container-title":["Proceedings of the 31st Annual Computer Security Applications Conference"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2818000.2818036","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2818000.2818036","content-type":"application\/pdf","content-version":"vor","intended-application":"syndication"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2818000.2818036","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,11,18]],"date-time":"2025-11-18T09:42:17Z","timestamp":1763458937000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2818000.2818036"}},"subtitle":["Large-Scale Analysis of Android Apps on Real Devices"],"short-title":[],"issued":{"date-parts":[[2015,12,7]]},"references-count":35,"alternative-id":["10.1145\/2818000.2818036","10.1145\/2818000"],"URL":"https:\/\/doi.org\/10.1145\/2818000.2818036","relation":{},"subject":[],"published":{"date-parts":[[2015,12,7]]},"assertion":[{"value":"2015-12-07","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}