Malware detection system with contextual analysis
US10581874B1 · kind B1 · utility
Assignee
Inventors
Key dates
| Filing date | Dec 31, 2015 |
| Grant date | Mar 3, 2020 |
| Priority date | — |
| Expiry date | Dec 31, 2035 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L67/06
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A computerized method for detecting malware associated with an object. The method includes operations of analyzing an object to obtain a first set of attributes, where the first set of attributes include one or more characteristics associated with the object. Furthermore, the object is processed with a virtual machine to obtain a second set of attributes. The second set of attributes corresponds to one or more monitored behaviors of the virtual machine during processing of the object. Thereafter, a threat index is determined based, at least in part, on a combination of at least one attribute of the first set of attributes and at least one attribute of the second set of attributes. The threat index represents a probability of maliciousness associated with the object.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.