Patent · US Active

Detection of malware apps that hijack app user interfaces

US10375576B1 · kind B1 · utility

6Cited by

5References

14Claims

0Family size

Assignee

Trend Micro Incorporated · JP

Inventors

Longping Wu · Nanjing, CN
Liang Sun · Bellevue, US
Chengyu Fang · Nanjing, CN

Key dates

Filing date	Sep 9, 2016
Grant date	Aug 6, 2019
Priority date	—
Expiry date	Jan 5, 2037

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/1441
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A computer-implement method of detecting malware apps includes receiving a sample app for a mobile operating system. The sample app is executed in an emulator of the mobile operating system. The behavior of the sample app in the emulator is monitored to collect a string that the sample app uses to detect whether or not a target app is running in a foreground of the emulator. A bait app, which is generated using the collected string, is switched to run in the foreground. The sample app is deemed to be a malware app when the sample app instead of the bait app is running in the foreground.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.