Patent · US Active

Time-based detection of malware communications

US10681069B2 · kind B2 · utility

5Cited by

2References

15Claims

0Family size

Assignee

Micro Focus LLC · US

Inventors

Barak Raz · Sunnyvale, US
Sasi Siddharth Muthurajan · Alpharetta, US

Key dates

Filing date	Jan 19, 2017
Grant date	Jun 9, 2020
Priority date	—
Expiry date	Jul 3, 2037

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/145
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A technique includes processing domain name system queries generated by a host to identify a subset of the queries for which domain names were not resolved. The technique includes using a time-based analysis to detect domain generation algorithm-based malware communications by the host, including detecting malicious communications by the host based at least in part on a number of the queries of the identified subset and a time span within which the queries of the subset were generated.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.