Select release
Introduction

Home

Installation

Configuration

Initialization

Common Usage Scenarios

Recommended Responses to Security Issues

Google Play Prominent Disclosure

SafetyNet Google Play Warning

Device Fingerprinting

Troubleshooting

Release Notes

Migration to Version 1.2.x

Migration to Version 1.0.x

Runtime Protection

RASP Features Overview

Debugger Detection

Emulator Detection

Root Detection

Repackaging Detection

Blocking Screen Readers

Screen Sharing Detection

Blocking Screenshots

Tapjacking Protection

HTTP Proxy Detection

VPN Detection

Screen Lock Usage

Google Play Protect Status

Changing Process Name

Detection of ADB Status

Detection of Developer Options Status

Detection of Biometry Enrollment Status

Detection of Active Call

App Presence Detection

Activity protection

RASP Observer

Anti-Malware

Anti-Malware Use-Cases

Anti-Malware Feature Overview

Malware Threat Identification

Malware Threat Mitigation

Listening to App Changes

Installer identification

Smart Protection

Smart Protection UI Customization

Changing Process Name

View product develop

An Android app running on a device can be identified by various development tools and apps. Potential attacks or reverse engineering efforts can, however, be prevented or at least impeded significantly by changing the process name.

Malwarelytics for Android is able to change the app process name. It can either select a random value from a list of stealthy process names or a custom name can be used.

Configuration

This feature can be configured during the Malwarelytics initialization phase:

val raspConfig = RaspConfig.Builder()
    .processName(ProcessNameConfig)
    // configuration of other RASP features
    .build()

Available values of ProcessNameConfig:

Value Description
NoAction indicates that the process name will not be changed.
UseStealthy(
customProcessName:String?)		 indicates that a stealthy name will be used for the process name.

Process name configuration defaults to ProcessNameConfig.UseStealthy(null).

List of available parameters for some config values:

Parameter Description
customProcessName:String? sets a custom name that will be used as the app process name. Value null causes the usage of a random name as the process name. Defaults to null.

More information on general RASP feature configuration and usage can be found in this overview.

Last updated on Nov 21, 2023 (12:06) View product
On this page:
Search

develop

Malwarelytics for Android