The invention discloses a method for detecting Android malicious software based on a program flow chart. Firstly, a basic block of an APK application program to be detected program is analyzed according to a smali file generated after decompilation, the flow chart of the program is obtained, a graph fingerprint formed by an API full-path hash coded value and the connecting relation of the coded value is taken as malicious behavior characteristics, and then on the basis of the subgraph isomorphism theory, behavior matching is performed on the malicious software. Compared with a traditional system for detecting the malicious software by utilizing a file signature scheme, the variant of the malicious software can be effectively recognized, and virus types which cannot be detected through signature schemes like the malicious code tampering scheme can be effectively resisted.