Android is a free open-source operating system (OS), which allows an in-depth understanding of its architecture. Therefore, many manufacturers are utilizing this OS to produce mobile devices (smartphones, smartwatch, and smart glasses) in different brands, including Google Pixel, Motorola, Samsung, and Sony. Notably, the employment of OS leads to a rapid increase in the number of Android users. However, unethical authors tend to develop malware in the devices for wealth, fame, or private purposes. Although practitioners conduct intrusion detection analyses, such as static analysis, there is an inadequate number of review articles discussing the research efforts on this type of analysis. Therefore, this study discusses the articles published from 2009 until 2019 and analyses the steps in the static analysis (reverse engineer, features, and classification) with taxonomy. Following that, the research issue in static analysis is also highlighted. Overall, this study serves as the guidance for novice security practitioners and expert researchers in the proposal of novel research to detect malware through static analysis.

中文翻译：

---

在 Android 中使用静态分析进行恶意软件检测：FeCO 回顾（特征、分类和混淆）

Android 是一个免费的开源操作系统 (OS)，可以深入了解其架构。因此，许多制造商正在利用该操作系统生产不同品牌的移动设备（智能手机、智能手表和智能眼镜），包括 Google Pixel、摩托罗拉、三星和索尼。值得注意的是，操作系统的使用导致Android用户数量迅速增加。然而，不道德的作者倾向于在设备中开发恶意软件以获取财富、名誉或私人目的。尽管从业者进行入侵检测分析，例如静态分析，但讨论此类分析的研究工作的评论文章数量不足。因此，本研究讨论了 2009 年至 2019 年发表的文章，并分析了静态分析中的步骤（逆向工程、特征、和分类）与分类法。紧接着，静态分析中的研究问题也被强调。总体而言，本研究可为新手安全从业人员和专家研究人员提出通过静态分析检测恶意软件的新颖研究建议。