Patent · US Active

Using browser context in evasive web-based malware detection

US10747881B1 · kind B1 · utility

12Cited by

6References

24Claims

0Family size

Assignee

Palo Alto Networks, Inc. · US

Inventors

Tongbo Luo · Santa Clara, US
Xin Ouyang · Lo Wu, CN
Zhaoyan Xu · Union City, US
Xing Jin · Beijing, CN

Key dates

Filing date	Sep 15, 2017
Grant date	Aug 18, 2020
Priority date	—
Expiry date	Mar 5, 2038

Classification

Technology area (CPC H)Electricity
CPC primaryH04L67/02
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

The use of browser context in detecting malware is disclosed. A Uniform Resource Locator (URL) is received from a user and at a client device. The URL is used to request, at the client device, and from a remote server, content. At least a portion of data received from the remote server is provided by the client device to an external scanner. The external scanner is configured to use a browser executed in an instrumented virtual machine environment to analyze the data provided by the client device. A maliciousness verdict is received from the external scanner.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.