Patent · US Active

Just in time memory analysis for malware detection

US10902122B2 · kind B2 · utility

9Cited by

27References

17Claims

0Family size

Assignee

SONICWALL INC. · US

Inventors

Soumyadipta Das · Kanchinakote, IN
Aleksandr Dubrovsky · San Mateo, US
Igor Korsunsky · Sunnyvale, US
Atul Dhablania · San Jose, US
John Gmuender · San Jose, US

Key dates

Filing date	Feb 6, 2018
Grant date	Jan 26, 2021
Priority date	—
Expiry date	Jun 13, 2038

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/034
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Methods and apparatus consistent with the present disclosure may use instrumentation code that remains transparent to an application program that the instrumentation code has been injected into. In certain instances, data sets that include executable code may be received via packetized communications or be received via other means, such as, receiving a file from a data store. The present technique allows one or more processors executing instrumentation code to monitor actions performed by the program code included in a received data set. Malware can be detected using exception handling to track memory allocations of the program code included in the received data set.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.