Detect App Analysis Environment - T1440 (b765efd1-02e6-4e67-aebf-0fef5c37e54b)
An adversary could evade app vetting techniques by placing code in a malicious application to detect whether it is running in an app analysis environment and, if so, avoid performing malicious actions while under analysis.
Discussion of general Android anti-analysis techniques can be found in (Citation: Petsas). Discussion of Google Play Store-specific anti-analysis techniques can be found in (Citation: Oberheide-Bouncer), (Citation: Percoco-Bouncer).
(Citation: Wang) presents a discussion of iOS anti-analysis techniques.
Platforms: Android, iOS