Android Ransomware Detection Based on Dynamic Obtained Features

Along with the rapid development of new science and technology, smartphone functionality has become more attractive. Smartphones not only bring convenience to the public but also the security risks at the same time through the installation of malicious applications. Among these, Android ransomware is gaining momentum and there is a need for effective defense as it is very important to ensure the security of smartphone user. There are various analysis techniques used to detect instances of Android ransomware. In this paper, we proposed the Android ransomware detection using dynamic analysis technique. Two dataset were used which is ransomware and benign dataset. The proposed approach used the system calls as features which obtained from dynamic analysis. The classification algorithms Random Forest, J48, and Naive Bayes were used to classify the instances based on the proposed features. The experimental results showed that the Random Forest Algorithm achieved the highest detection accuracy of 98.31% with lowest false positive rate of 0.016.