Patent · US Active

Systems and methods of detecting malicious PowerShell scripts

US11227049B1 · kind B1 · utility

1Cited by

6References

20Claims

0Family size

Assignee

United Services Automobile Association (USAA) · US

Inventor

Robert Jason Neel · Boerne, US

Key dates

Filing date	Feb 20, 2020
Grant date	Jan 18, 2022
Priority date	—
Expiry date	Jun 26, 2040

Classification

Technology area (CPC H)Electricity
CPC primaryH04L2101/622
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Disclosed herein are systems and methods of executing scanning software, such an executable software program or script (e.g., PowerShell script), by a computing device of an enterprise, such as a security server, may instruct the computing device to search all or a subset of computing devices in an enterprise network. The scanning software may identify PowerShell scripts containing particular malware attributes, according to a malicious-code dataset. The computing system executing the scanning software may scan through the identified PowerShell scripts to identify particular strings, values, or code-portions, and take a remedial action according to the scanning software programming.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.