Android malware detection faces performance bottlenecks due to scarce labeled samples, high annotation costs, and rapidly outdated data. Method: We propose MalSynGen—the first conditional Generative Adversarial Network (cGAN) framework tailored for synthesizing tabular features of Android malware. It pioneers cGAN-based structured feature modeling to generate statistically faithful and semantically consistent synthetic samples. Contribution/Results: Evaluated across multiple heterogeneous datasets, MalSynGen-generated data boosts classifier accuracy by an average of +5.2%, demonstrates strong cross-dataset generalization, and maintains computational efficiency. We further introduce an interpretable, multi-dimensional evaluation metric suite to ensure controllable synthesis quality. This work establishes a reproducible, scalable data augmentation paradigm for Android malware detection under low-resource conditions.

The ever-increasing number of Android devices and the accelerated evolution of malware, reaching over 35 million samples by 2024, highlight the critical importance of effective detection methods. Attackers are now using Artificial Intelligence to create sophisticated malware variations that can easily evade traditional detection techniques. Although machine learning has shown promise in malware classification, its success relies heavily on the availability of up-to-date, high-quality datasets. The scarcity and high cost of obtaining and labeling real malware samples presents significant challenges in developing robust detection models. In this paper, we propose MalSynGen, a Malware Synthetic Data Generation methodology that uses a conditional Generative Adversarial Network (cGAN) to generate synthetic tabular data. This data preserves the statistical properties of real-world data and improves the performance of Android malware classifiers. We evaluated the effectiveness of this approach using various datasets and metrics that assess the fidelity of the generated data, its utility in classification, and the computational efficiency of the process. Our experiments demonstrate that MalSynGen can generalize across different datasets, providing a viable solution to address the issues of obsolescence and low quality data in malware detection.