{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,10,27]],"date-time":"2025-10-27T13:03:45Z","timestamp":1761570225323,"version":"build-2065373602"},"publisher-location":"New York, NY, USA","reference-count":51,"publisher":"ACM","content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2025,6,20]]},"DOI":"10.1145\/3755881.3755890","type":"proceedings-article","created":{"date-parts":[[2025,10,27]],"date-time":"2025-10-27T11:46:17Z","timestamp":1761565577000},"page":"24-35","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":0,"title":["Measuring and Explaining the Effects of Android App Transformations in Online Malware Detection"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-6388-2571","authenticated-orcid":false,"given":"Guozhu","family":"Meng","sequence":"first","affiliation":[{"name":"University of Chinese Academy of Science, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-0107-3522","authenticated-orcid":false,"given":"Zhixiu","family":"Guo","sequence":"additional","affiliation":[{"name":"University of Chinese Academy of Science, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0599-1846","authenticated-orcid":false,"given":"Xiaodong","family":"Zhang","sequence":"additional","affiliation":[{"name":"University of Chinese Academy of Science, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-1100-8633","authenticated-orcid":false,"given":"Haoyu","family":"Wang","sequence":"additional","affiliation":[{"name":"Huazhong University of Science and Technology, Wuhan, Hubei, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-5624-2987","authenticated-orcid":false,"given":"Kai","family":"Chen","sequence":"additional","affiliation":[{"name":"University of Chinese Academy of Science, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-7300-9215","authenticated-orcid":false,"given":"Yang","family":"Liu","sequence":"additional","affiliation":[{"name":"Nanyang Technological University, Singapore, Singapore"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2025,10,27]]},"reference":[{"unstructured":"2020. Anti Network-Virus Alliance of China. https:\/\/www.anva.org.cn\/index.","key":"e_1_3_3_2_2_2"},{"unstructured":"2020. VirusShare. https:\/\/virusshare.com\/.","key":"e_1_3_3_2_3_2"},{"unstructured":"2021. Apkpure. https:\/\/apkpure.com\/.","key":"e_1_3_3_2_4_2"},{"unstructured":"2021. Bangcle. https:\/\/github.com\/woxihuannisja\/Bangcle.","key":"e_1_3_3_2_5_2"},{"unstructured":"2021. Fuzzy hashing program. https:\/\/ssdeep-project.github.io\/ssdeep\/index.html.","key":"e_1_3_3_2_6_2"},{"unstructured":"2022. VirusTotal. https:\/\/virustotal.com.","key":"e_1_3_3_2_7_2"},{"key":"e_1_3_3_2_8_2","volume-title":"21st Annual Network and Distributed System Security Symposium, San Diego, California, USA, February 23-26, 2014","author":"Arp Daniel","year":"2014","unstructured":"Daniel Arp, Michael Spreitzenbarth, Malte Hubner, Hugo Gascon, and Konrad Rieck. 2014. DREBIN: Effective and Explainable Detection of Android Malware in Your Pocket. In 21st Annual Network and Distributed System Security Symposium, San Diego, California, USA, February 23-26, 2014."},{"key":"e_1_3_3_2_9_2","volume-title":"10th USENIX Workshop on Offensive Technologies, WOOT 16, Austin, TX, USA, August 8-9, 2016","author":"Blackthorne Jeremy","year":"2016","unstructured":"Jeremy Blackthorne, Alexei Bulazel, Andrew Fasano, Patrick Biernat, and B\u00fclent Yener. 2016. AVLeak: Fingerprinting Antivirus Emulators through Black-Box Testing. In 10th USENIX Workshop on Offensive Technologies, WOOT 16, Austin, TX, USA, August 8-9, 2016."},{"key":"e_1_3_3_2_10_2","first-page":"71","volume-title":"Proceedings of the 2017 ACM on Asia Conference on Computer and Communications Security, AsiaCCS 2017, Abu Dhabi, United Arab Emirates, April 2-6, 2017","author":"Bosu Amiangshu","year":"2017","unstructured":"Amiangshu Bosu, Fang Liu, Danfeng\u00a0(Daphne) Yao, and Gang Wang. 2017. Collusive Data Leak and More: Large-scale Threat Analysis of Inter-app Communications. In Proceedings of the 2017 ACM on Asia Conference on Computer and Communications Security, AsiaCCS 2017, Abu Dhabi, United Arab Emirates, April 2-6, 2017. 71\u201385."},{"doi-asserted-by":"crossref","unstructured":"Marcus Botacin and Heitor\u00a0Murilo Gomes. 2025. Towards more realistic evaluations: The impact of label delays in malware detection pipelines. Computer & Security 148 (2025) 104122.","key":"e_1_3_3_2_11_2","DOI":"10.1016\/j.cose.2024.104122"},{"key":"e_1_3_3_2_12_2","first-page":"172","volume-title":"Proceedings of the Sixth ACM on Conference on Data and Application Security and Privacy, CODASPY 2016, New Orleans, LA, USA, March 9-11, 2016","author":"Cai Zhenquan","year":"2016","unstructured":"Zhenquan Cai and Roland H.\u00a0C. Yap. 2016. Inferring the Detection Logic and Evaluating the Effectiveness of Android Anti-Virus Apps. In Proceedings of the Sixth ACM on Conference on Data and Application Security and Privacy, CODASPY 2016, New Orleans, LA, USA, March 9-11, 2016. 172\u2013182."},{"key":"e_1_3_3_2_13_2","first-page":"1127","volume-title":"32nd USENIX Security Symposium, USENIX Security 2023, Anaheim, CA, USA, August 9-11, 2023","author":"Chen Yizheng","year":"2023","unstructured":"Yizheng Chen, Zhoujie Ding, and David\u00a0A. Wagner. 2023. Continuous Learning for Android Malware Detection. In 32nd USENIX Security Symposium, USENIX Security 2023, Anaheim, CA, USA, August 9-11, 2023, Joseph\u00a0A. Calandrino and Carmela Troncoso (Eds.). USENIX Association, 1127\u20131144."},{"key":"e_1_3_3_2_14_2","first-page":"1253","volume-title":"26th USENIX Security Symposium, USENIX Security 2017, Vancouver, BC, Canada, August 16-18, 2017","author":"Chen Yue","year":"2017","unstructured":"Yue Chen, Yulong Zhang, Zhi Wang, Liangzhao Xia, Chenfu Bao, and Tao Wei. 2017. Adaptive Android Kernel Live Patching. In 26th USENIX Security Symposium, USENIX Security 2017, Vancouver, BC, Canada, August 16-18, 2017. 1253\u20131270."},{"key":"e_1_3_3_2_15_2","volume-title":"25th Annual Network and Distributed System Security Symposium, NDSS 2018, San Diego, California, USA, February 18-21, 2018","author":"Duan Yue","year":"2018","unstructured":"Yue Duan, Mu Zhang, Abhishek\u00a0Vasisht Bhaskar, Heng Yin, Xiaorui Pan, Tongxin Li, Xueqiang Wang, and XiaoFeng Wang. 2018. Things You May Not Know About Android (Un)Packers: A Systematic Study based on Whole-System Emulation. In 25th Annual Network and Distributed System Security Symposium, NDSS 2018, San Diego, California, USA, February 18-21, 2018."},{"key":"e_1_3_3_2_16_2","first-page":"377","volume-title":"IEEE Symposium on Security and Privacy, SP 2016, San Jose, CA, USA, May 22-26, 2016","author":"Fratantonio Yanick","year":"2016","unstructured":"Yanick Fratantonio, Antonio Bianchi, William\u00a0K. Robertson, Engin Kirda, Christopher Kruegel, and Giovanni Vigna. 2016. TriggerScope: Towards Detecting Logic Bombs in Android Applications. In IEEE Symposium on Security and Privacy, SP 2016, San Jose, CA, USA, May 22-26, 2016. 377\u2013396."},{"key":"e_1_3_3_2_17_2","first-page":"101","volume-title":"Recent Advances in Intrusion Detection, 12th International Symposium, RAID 2009, Saint-Malo, France, September 23-25, 2009. Proceedings","author":"Griffin Kent","year":"2009","unstructured":"Kent Griffin, Scott Schneider, Xin Hu, and Tzi-cker Chiueh. 2009. Automatic Generation of String Signatures for Malware Detection. In Recent Advances in Intrusion Detection, 12th International Symposium, RAID 2009, Saint-Malo, France, September 23-25, 2009. Proceedings. 101\u2013120."},{"doi-asserted-by":"publisher","key":"e_1_3_3_2_18_2","DOI":"10.1145\/3180155.3180228"},{"key":"e_1_3_3_2_19_2","first-page":"359","volume-title":"International Conference on Security and Privacy in Communication Networks - 10th International ICST Conference, SecureComm 2014, Beijing, China, September 24-26, 2014, Revised Selected Papers, Part II","author":"Huang Heqing","year":"2014","unstructured":"Heqing Huang, Kai Chen, Peng Liu, Sencun Zhu, and Dinghao Wu. 2014. Uncovering the Dilemmas on Antivirus Software Design in Modern Mobile Platforms. In International Conference on Security and Privacy in Communication Networks - 10th International ICST Conference, SecureComm 2014, Beijing, China, September 24-26, 2014, Revised Selected Papers, Part II. 359\u2013366."},{"key":"e_1_3_3_2_20_2","first-page":"425","volume-title":"Proceedings of the 14th International Conference on Mining Software Repositories, MSR 2017, Buenos Aires, Argentina, May 20-28, 2017","author":"Hurier M\u00e9d\u00e9ric","year":"2017","unstructured":"M\u00e9d\u00e9ric Hurier, Guillermo Suarez-Tangil, Santanu\u00a0Kumar Dash, Tegawend\u00e9\u00a0F. Bissyand\u00e9, Yves\u00a0Le Traon, Jacques Klein, and Lorenzo Cavallaro. 2017. Euphony: harmonious unification of cacophonous anti-virus vendor labels for Android malware. In Proceedings of the 14th International Conference on Mining Software Repositories, MSR 2017, Buenos Aires, Argentina, May 20-28, 2017. 425\u2013435."},{"doi-asserted-by":"publisher","key":"e_1_3_3_2_21_2","DOI":"10.1145\/2810103.2813642"},{"doi-asserted-by":"publisher","key":"e_1_3_3_2_22_2","DOI":"10.5555\/2886351"},{"unstructured":"Li Li Tegawend\u00e9\u00a0F. Bissyand\u00e9 and Jacques Klein. 2018. Rebooting Research on Detecting Repackaged Android Apps: Literature Review and Benchmark. CoRR abs\/1811.08520 (2018). arxiv:https:\/\/arXiv.org\/abs\/1811.08520http:\/\/arxiv.org\/abs\/1811.08520","key":"e_1_3_3_2_23_2"},{"key":"e_1_3_3_2_24_2","first-page":"224","volume-title":"30th IEEE\/ACM International Conference on Automated Software Engineering, Lincoln, NE, USA, November 9-13, 2015","author":"Lin Yu","year":"2015","unstructured":"Yu Lin, Semih Okur, and Danny Dig. 2015. Study and Refactoring of Android Asynchronous Programming (T). In 30th IEEE\/ACM International Conference on Automated Software Engineering, Lincoln, NE, USA, November 9-13, 2015. 224\u2013235."},{"volume-title":"Mapping Traditional AV Failures","year":"2017","unstructured":"MalwareBytes. 2017. Mapping Traditional AV Failures. Technical Report.","key":"e_1_3_3_2_25_2"},{"doi-asserted-by":"publisher","key":"e_1_3_3_2_26_2","DOI":"10.1145\/2897845.2897856"},{"key":"e_1_3_3_2_27_2","first-page":"1009","volume-title":"2017 IEEE Symposium on Security and Privacy, SP 2017, San Jose, CA, USA, May 22-26, 2017","author":"Miramirkhani Najmeh","year":"2017","unstructured":"Najmeh Miramirkhani, Mahathi\u00a0Priya Appini, Nick Nikiforakis, and Michalis Polychronakis. 2017. Spotless Sandboxes: Evading Malware Analysis Systems Using Wear-and-Tear Artifacts. In 2017 IEEE Symposium on Security and Privacy, SP 2017, San Jose, CA, USA, May 22-26, 2017. IEEE Computer Society, 1009\u20131024."},{"key":"e_1_3_3_2_28_2","first-page":"112","volume-title":"Detection of Intrusions and Malware, and Vulnerability Assessment - 11th International Conference, DIMVA 2014, Egham, UK, July 10-11, 2014. Proceedings","author":"Mohaisen Aziz","year":"2014","unstructured":"Aziz Mohaisen and Omar Alrawi. 2014. AV-Meter: An Evaluation of Antivirus Scans and Labels. In Detection of Intrusions and Malware, and Vulnerability Assessment - 11th International Conference, DIMVA 2014, Egham, UK, July 10-11, 2014. Proceedings. 112\u2013131."},{"doi-asserted-by":"publisher","unstructured":"Ritwik Murali Palanisamy Thangavel and C. Shunmuga Velayutham. 2023. Evolving malware variants as antigens for antivirus systems. Expert Systems with Applications 226 (2023) 120092. 10.1016\/j.eswa.2023.120092","key":"e_1_3_3_2_29_2","DOI":"10.1016\/j.eswa.2023.120092"},{"key":"e_1_3_3_2_30_2","first-page":"478","volume-title":"Proceedings of the Internet Measurement Conference, IMC 2019, Amsterdam, The Netherlands, October 21-23, 2019","author":"Peng Peng","year":"2019","unstructured":"Peng Peng, Limin Yang, Linhai Song, and Gang Wang. 2019. Opening the Blackbox of VirusTotal: Analyzing Online Phishing Scan Engines. In Proceedings of the Internet Measurement Conference, IMC 2019, Amsterdam, The Netherlands, October 21-23, 2019. 478\u2013485."},{"key":"e_1_3_3_2_31_2","first-page":"1332","volume-title":"2020 IEEE Symposium on Security and Privacy, SP 2020, San Francisco, CA, USA, May 18-21, 2020","author":"Pierazzi Fabio","year":"2020","unstructured":"Fabio Pierazzi, Feargus Pendlebury, Jacopo Cortellazzi, and Lorenzo Cavallaro. 2020. Intriguing Properties of Adversarial ML Attacks in the Problem Space. In 2020 IEEE Symposium on Security and Privacy, SP 2020, San Francisco, CA, USA, May 18-21, 2020. IEEE, 1332\u20131349."},{"key":"e_1_3_3_2_32_2","volume-title":"21st Annual Network and Distributed System Security Symposium, San Diego, USA, February 23-26, 2014","author":"Poeplau Sebastian","year":"2014","unstructured":"Sebastian Poeplau, Yanick Fratantonio, Antonio Bianchi, Christopher Kruegel, and Giovanni Vigna. 2014. Execute This! Analyzing Unsafe and Malicious Dynamic Code Loading in Android Applications. In 21st Annual Network and Distributed System Security Symposium, San Diego, USA, February 23-26, 2014."},{"doi-asserted-by":"crossref","unstructured":"Mila\u00a0Dalla Preda and Federico Maggi. 2017. Testing android malware detectors against code obfuscation: a systematization of knowledge and unified methodology. J. Comput. Virol. Hacking Tech. 13 3 (2017) 209\u2013232.","key":"e_1_3_3_2_33_2","DOI":"10.1007\/s11416-016-0282-2"},{"key":"e_1_3_3_2_34_2","first-page":"393","volume-title":"Detection of Intrusions and Malware, and Vulnerability Assessment - 15th International Conference, DIMVA 2018, Saclay, France, June 28-29, 2018, Proceedings","author":"Quarta Davide","year":"2018","unstructured":"Davide Quarta, Federico Salvioni, Andrea Continella, and Stefano Zanero. 2018. Toward Systematically Exploring Antivirus Engines. In Detection of Intrusions and Malware, and Vulnerability Assessment - 15th International Conference, DIMVA 2018, Saclay, France, June 28-29, 2018, Proceedings. 393\u2013403."},{"key":"e_1_3_3_2_35_2","series-title":"(ASIA CCS \u201913)","doi-asserted-by":"crossref","first-page":"329","DOI":"10.1145\/2484313.2484355","volume-title":"Proceedings of the 8th ACM SIGSAC Symposium on Information, Computer and Communications Security","author":"Rastogi Vaibhav","year":"2013","unstructured":"Vaibhav Rastogi, Yan Chen, and Xuxian Jiang. 2013. DroidChameleon: Evaluating Android Anti-malware Against Transformation Attacks. In Proceedings of the 8th ACM SIGSAC Symposium on Information, Computer and Communications Security (Hangzhou, China) (ASIA CCS \u201913). 329\u2013334."},{"key":"e_1_3_3_2_36_2","first-page":"329","volume-title":"8th ACM Symposium on Information, Computer and Communications Security, ASIA CCS \u201913, Hangzhou, China - May 08 - 10, 2013","author":"Rastogi Vaibhav","year":"2013","unstructured":"Vaibhav Rastogi, Yan Chen, and Xuxian Jiang. 2013. DroidChameleon: evaluating Android anti-malware against transformation attacks. In 8th ACM Symposium on Information, Computer and Communications Security, ASIA CCS \u201913, Hangzhou, China - May 08 - 10, 2013. 329\u2013334."},{"key":"e_1_3_3_2_37_2","first-page":"230","volume-title":"Research in Attacks, Intrusions, and Defenses - 19th International Symposium, RAID 2016, Paris, France, September 19-21, 2016, Proceedings","author":"Sebasti\u00e1n Marcos","year":"2016","unstructured":"Marcos Sebasti\u00e1n, Richard Rivera, Platon Kotzias, and Juan Caballero. 2016. AVclass: A Tool for Massive Malware Labeling. In Research in Attacks, Intrusions, and Defenses - 19th International Symposium, RAID 2016, Paris, France, September 19-21, 2016, Proceedings. 230\u2013253."},{"unstructured":"Symantec. 2019. Adding software to the Symantec Whitelist. https:\/\/knowledge.broadcom.com\/external\/article?legacyId=TECH132220.","key":"e_1_3_3_2_38_2"},{"doi-asserted-by":"crossref","unstructured":"Zhushou Tang Minhui Xue Guozhu Meng Chengguo Ying Yugeng Liu Jianan He Haojin Zhu and Yang Liu. 2019. Securing android applications via edge assistant third-party library detection. Computers & Security 80 (2019) 257 \u2013 272.","key":"e_1_3_3_2_39_2","DOI":"10.1016\/j.cose.2018.07.024"},{"key":"e_1_3_3_2_40_2","first-page":"37","volume-title":"Proceedings of the 3rd International Workshop on Mobile Development Lifecycle, Pittsburgh, PA, USA, October 25-30, 2015","author":"Umuhoza Eric","year":"2015","unstructured":"Eric Umuhoza, Hamza Ed-Douibi, Marco Brambilla, Jordi Cabot, and Aldo Bongio. 2015. Automatic code generation for cross-platform, multi-device mobile apps: some reflections from an industrial experience. In Proceedings of the 3rd International Workshop on Mobile Development Lifecycle, Pittsburgh, PA, USA, October 25-30, 2015. 37\u201344."},{"key":"e_1_3_3_2_41_2","first-page":"69:1\u201369:13","volume-title":"37th IEEE\/ACM International Conference on Automated Software Engineering, ASE 2022, Rochester, MI, USA, October 10-14, 2022","author":"Wang Liu","year":"2022","unstructured":"Liu Wang, Haoyu Wang, Xiapu Luo, and Yulei Sui. 2022. MalWhiteout: Reducing Label Errors in Android Malware Detection. In 37th IEEE\/ACM International Conference on Automated Software Engineering, ASE 2022, Rochester, MI, USA, October 10-14, 2022. ACM, 69:1\u201369:13."},{"doi-asserted-by":"publisher","key":"e_1_3_3_2_42_2","DOI":"10.1145\/3691620.3695280"},{"key":"e_1_3_3_2_43_2","first-page":"252","volume-title":"Detection of Intrusions and Malware, and Vulnerability Assessment - 14th International Conference, DIMVA 2017, Bonn, Germany, July 6-7, 2017, Proceedings","author":"Wei Fengguo","year":"2017","unstructured":"Fengguo Wei, Yuping Li, Sankardas Roy, Xinming Ou, and Wu Zhou. 2017. Deep Ground Truth Analysis of Current Android Malware. In Detection of Intrusions and Malware, and Vulnerability Assessment - 14th International Conference, DIMVA 2017, Bonn, Germany, July 6-7, 2017, Proceedings. 252\u2013276."},{"key":"e_1_3_3_2_44_2","first-page":"1137","volume-title":"Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security, CCS 2018, Toronto, ON, Canada, October 15-19, 2018","author":"Wei Fengguo","year":"2018","unstructured":"Fengguo Wei, Xingwei Lin, Xinming Ou, Ting Chen, and Xiaosong Zhang. 2018. JN-SAF: Precise and Efficient NDK\/JNI-aware Inter-language Static Analysis Framework for Security Vetting of Android Applications with Native Code. In Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security, CCS 2018, Toronto, ON, Canada, October 15-19, 2018. 1137\u20131150."},{"key":"e_1_3_3_2_45_2","first-page":"587","volume-title":"Proceedings of the 2017 ACM on Asia Conference on Computer and Communications Security, AsiaCCS 2017, Abu Dhabi, United Arab Emirates, April 2-6, 2017","author":"Wressnegger Christian","year":"2017","unstructured":"Christian Wressnegger, Kevin Freeman, Fabian Yamaguchi, and Konrad Rieck. 2017. Automatically Inferring Malware Signatures for Anti-Virus Assisted Attacks. In Proceedings of the 2017 ACM on Asia Conference on Computer and Communications Security, AsiaCCS 2017, Abu Dhabi, United Arab Emirates, April 2-6, 2017. 587\u2013598."},{"key":"e_1_3_3_2_46_2","volume-title":"28th Annual Network and Distributed System Security Symposium, NDSS 2021, virtually, February 21-25, 2021","author":"Xu Jiayun","year":"2021","unstructured":"Jiayun Xu, Yingjiu Li, and Robert\u00a0H. Deng. 2021. Differential Training: A Generic Framework to Reduce Label Noises for Android Malware Detection. In 28th Annual Network and Distributed System Security Symposium, NDSS 2021, virtually, February 21-25, 2021. The Internet Society."},{"key":"e_1_3_3_2_47_2","first-page":"47","volume-title":"IEEE European Symposium on Security and Privacy, EuroS&P 2019, Stockholm, Sweden, June 17-19, 2019","author":"Xu Ke","year":"2019","unstructured":"Ke Xu, Yingjiu Li, Robert\u00a0H. Deng, Kai Chen, and Jiayun Xu. 2019. DroidEvolver: Self-Evolving Android Malware Detection System. In IEEE European Symposium on Security and Privacy, EuroS&P 2019, Stockholm, Sweden, June 17-19, 2019. 47\u201362."},{"doi-asserted-by":"publisher","unstructured":"Yinxing Xue Guozhu Meng Yang Liu Tian\u00a0Huat Tan Hongxu Chen Jun Sun and Jie Zhang. 2017. Auditing Anti-Malware Tools by Evolving Android Malware and Dynamic Loading Technique. IEEE Trans. Information Forensics and Security 12 7 (2017) 1529\u20131544. 10.1109\/TIFS.2017.2661723","key":"e_1_3_3_2_48_2","DOI":"10.1109\/TIFS.2017.2661723"},{"key":"e_1_3_3_2_49_2","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"crossref","first-page":"165","DOI":"10.1007\/978-3-319-45719-2_8","volume-title":"Research in Attacks, Intrusions, and Defenses - 19th International Symposium, RAID 2016, Paris, France, September 19-21, 2016, Proceedings","volume":"9854","author":"Yokoyama Akira","year":"2016","unstructured":"Akira Yokoyama, Kou Ishii, Rui Tanabe, Yinmin Papa, Katsunari Yoshioka, Tsutomu Matsumoto, Takahiro Kasama, Daisuke Inoue, Michael Brengel, Michael Backes, and Christian Rossow. 2016. SandPrint: Fingerprinting Malware Sandboxes to Provide Intelligence for Sandbox Evasion. In Research in Attacks, Intrusions, and Defenses - 19th International Symposium, RAID 2016, Paris, France, September 19-21, 2016, Proceedings(Lecture Notes in Computer Science, Vol.\u00a09854), Fabian Monrose, Marc Dacier, Gregory Blanc, and Joaqu\u00edn Garc\u00eda-Alfaro (Eds.). Springer, 165\u2013187."},{"unstructured":"Mo Yu Damien Octeau and Chuangang Ren. 2018. Combating Potentially Harmful Applications with Machine Learning at Google: Datasets and Models. https:\/\/android-developers.googleblog.com\/2018\/11\/combating-potentially-harmful.html.","key":"e_1_3_3_2_50_2"},{"key":"e_1_3_3_2_51_2","series-title":"(SP \u201912)","doi-asserted-by":"crossref","first-page":"95","DOI":"10.1109\/SP.2012.16","volume-title":"Proceedings of the 2012 IEEE Symposium on Security and Privacy","author":"Zhou Yajin","year":"2012","unstructured":"Yajin Zhou and Xuxian Jiang. 2012. Dissecting Android Malware: Characterization and Evolution. In Proceedings of the 2012 IEEE Symposium on Security and Privacy(SP \u201912). 95\u2013109."},{"key":"e_1_3_3_2_52_2","volume-title":"29th USENIX Security Symposium, USENIX Security 2020, Boston, MA, USA, August, 2020","author":"Zhu Shuofei","year":"2020","unstructured":"Shuofei Zhu, Jianjun Shi, Limin Yang, Boqin Qin, Ziyi Zhang, Linhai Song, and Gang Wang. 2020. Measuring and Modeling the Label Dynamics of Online Anti-Malware Engines. In 29th USENIX Security Symposium, USENIX Security 2020, Boston, MA, USA, August, 2020."}],"event":{"sponsor":["SIGSOFT ACM Special Interest Group on Artificial Intelligence"],"acronym":"Internetware 2025","name":"Internetware 2025: the 16th International Conference on Internetware","location":"Trondheim Norway"},"container-title":["Proceedings of the 16th International Conference on Internetware"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3755881.3755890","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,10,27]],"date-time":"2025-10-27T11:52:50Z","timestamp":1761565970000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3755881.3755890"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,6,20]]},"references-count":51,"alternative-id":["10.1145\/3755881.3755890","10.1145\/3755881"],"URL":"https:\/\/doi.org\/10.1145\/3755881.3755890","relation":{},"subject":[],"published":{"date-parts":[[2025,6,20]]},"assertion":[{"value":"2025-10-27","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}