We can analyze malware with evasion techniques.
- Used the Android Container technology to build an environment similar to the real device.
- This makes it possible to analyze the NDK as well as the SDK.
- Integrated to Openstack management platform.
- Different from traditional analytical techniques by providing analysis reports through code tracing, flow graphs, and dynamic loading.
- Analysis of SDK code through Java API Hooking.
- Analysis of NDK code through .so File Hooking.
- Sequential code flow analysis directly from DEX binary.