Patent · US Active

Malicious network content detection

US10757120B1 · kind B1 · utility

17Cited by

354References

38Claims

0Family size

Assignee

FireEye, Inc. · US

Inventors

Ashar Aziz · Kendall, US
Henry Uyeno · Sunnyvale, US
Jay Manni · San Jose, US
Amin Sukhera · Fremont, US
Stuart Staniford · Freeville, US

Key dates

Filing date	Jul 16, 2018
Grant date	Aug 25, 2020
Priority date	—
Expiry date	Jul 16, 2038

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/168
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

An electronic message is analyzed for malware contained in the message. Text of an electronic message may be analyzed to detect and process malware content in the electronic message itself. The present technology may analyze an electronic message and attachments to electronic messages to detect a uniform resource location (URL), identify whether the URL is suspicious, and analyze all suspicious URLs to determine if they are malware. The analysis may include re-playing the suspicious URL in a virtual environment which simulates the intended computing device to receive the electronic message. If the re-played URL is determined to be malicious, the malicious URL is added to a black list which is updated throughout the computer system.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.