Patent · US Active

Malware determination device, malware determination system, malware determination method, and program

US10268820B2 · kind B2 · utility

12Cited by

1References

7Claims

0Family size

Assignee

NIPPON TELEGRAPH AND TELEPHONE CORPORATION · JP

Inventors

Yasushi Okano · Musashino, JP
Shingo Orihara · Musashino, JP
Tetsuya Abe · Tokyo, JP
Hiroshi Asakura · Musashino, JP
Atsutoshi KUMAGAI · Musashino, JP

Key dates

Filing date	Jun 8, 2015
Grant date	Apr 23, 2019
Priority date	—
Expiry date	Oct 5, 2035

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/1433
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A malware determination device, in which, upon input of an attribute name and an attribute value of an attribute of an executable file, a feature-selection setting unit registers the attribute with the attribute name in an attribute table as an attribute to be extracted, and registers the attribute value as an attribute value to be deleted in an attribute value table. Upon input of an executable file to be learned or to be determined, a feature extraction unit extracts an attribute value of an attribute registered as an attribute to be extracted in the attribute table from the executable file, to generate a feature vector including the extracted attribute value as a feature. A feature selection unit performs deletion of an attribute value registered as an attribute value to be deleted in the attribute value table from the feature vector.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.