Patent · US Active

Electronic message analysis for malware detection

US10027690B2 · kind B2 · utility

153Cited by

216References

43Claims

0Family size

Assignee

FireEye, Inc. · US

Inventors

Ashar Aziz · Kendall, US
Henry Uyeno · Sunnyvale, US
Jay Manni · San Jose, US
Amin Sukhera · Fremont, US
Stuart Staniford · Freeville, US

Key dates

Filing date	Jun 22, 2015
Grant date	Jul 17, 2018
Priority date	—
Expiry date	Jun 22, 2035

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/168
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

An electronic message is analyzed for malware contained in the message. Text of an electronic message may be analyzed to detect and process malware content in the electronic message itself. The present technology may analyze an electronic message and attachments to electronic messages to detect a uniform resource location (URL), identify whether the URL is suspicious, and analyze all suspicious URLs to determine if they are malware. The analysis may include re-playing the suspicious URL in a virtual environment which simulates the intended computing device to receive the electronic message. If the re-played URL is determined to be malicious, the malicious URL is added to a black list which is updated throughout the computer system.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.