An Obfuscation-Neglect Android Malware Scoring System
Project description
Malware Family Analysis Report Showcase
 |
 |
 |
 |
 |
 |
| Family | Summary | Signature Behaviors | Report |
|---|---|---|---|
| DroidKungFu | Privilege escalation with C2 control. | 1. Gain unlimited access to a device. 2. Install/Uninstall additional apps. 3. Forward confidential data. |
View |
| GoldDream | SMS/call log exfiltration with remote C2 commands. | 1. Monitor SMS messages and phone calls. 2. Upload SMS messages and phone calls to remote servers. |
View |
| SpyNote | Credential theft and device surveillance via RAT. | 1. Take screenshots. 2. Simulate user gestures. 3. Log user input. 4. Communicate with C2 servers. |
View |
| DawDropper | Dropper that installs banking trojans for financial theft. | 1. Download APKs from remote servers. 2. Install additional APKs. |
View |
| SLocker | Android ransomware locking/encrypting devices. | 1. Lock the device with an overlay screen. | View |
| PhantomCard | NFC relay–based financial fraud. | 1. Communicate with C2 servers. 2. Read the payment data of NFC cards. 3. Captures PINs of NFC cards through deceptive screens. |
View |
Quick Start
Step 1. Install via PyPi
Install the latest version of Quark Engine:
$ pip3 install -U quark-engine
Step 2. Download Latest Rules
Fetch the latest rule database:
$ freshquark
Step 3. Run Summary Report
Analyze an APK with the downloaded rules and generate a summary report:
$ quark -a <apk_file> -s
Step 4. View Results
Example output:
Acknowledgments
The Honeynet Project
Google Summer Of Code
Quark-Engine has been participating in the GSoC under the Honeynet Project!
- 2021:
Stay tuned for the upcoming GSoC! Join the Honeynet Slack chat for more info.
Core Values of Quark Engine Team
- We love battle fields. We embrace uncertainties. We challenge impossibles. We rethink everything. We change the way people think. And the most important of all, we benefit ourselves by benefit others first.
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file quark_engine-26.2.1.tar.gz.
File metadata
- Download URL: quark_engine-26.2.1.tar.gz
- Upload date:
- Size: 101.3 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.14.2
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
35b420f2a0d5e253958317857ec8abc16b216c7071e8741d9f6d60e7cc3dc40a
|
|
| MD5 |
f7e367c7db6c6487a8eba9dd3d6f7c50
|
|
| BLAKE2b-256 |
10f5146f7767b1bd23413263348daf05f1a398a9a1a056c7e37cbc4fd43814eb
|
File details
Details for the file quark_engine-26.2.1-py3-none-any.whl.
File metadata
- Download URL: quark_engine-26.2.1-py3-none-any.whl
- Upload date:
- Size: 124.4 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.14.2
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
512eefca80549393c1041b36abbc2801dccba98512af728c6498092beb4080c0
|
|
| MD5 |
b173394cacd5bcc19f05632265408722
|
|
| BLAKE2b-256 |
2fe95f96258a9d7e24f1594fc5a46402b5d2a7620f4c1032e788ee64a9b7a593
|
