Patent · US Active

Indicating malware generated domain names using n-grams

US11108794B2 · kind B2 · utility

1Cited by

21References

20Claims

0Family size

Assignee

Micro Focus LLC · US

Inventors

Pratyusa K. Manadhata · Princeton, US
Kyle Williams · Shelby Charter Township, US
Barak Raz · Sunnyvale, US
Martin Arlitt · Calgary, CA

Key dates

Filing date	Jan 31, 2018
Grant date	Aug 31, 2021
Priority date	—
Expiry date	Nov 16, 2038

Classification

Technology area (CPC H)Electricity
CPC primaryH04L2463/144
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Systems and methods for identifying, in a domain name, n-grams that do not appear in words of a given language, where n is greater than two are disclosed. The disclosed systems and methods may include comparing a value based on a number of the identified n-grams to a threshold and indicating that the domain name is potentially generated by malware in response to the value having a specified relationship with respect to the threshold.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.