Patent · US Active

Method for machine learning of malicious code detecting model and method for detecting malicious code using the same

US11475133B2 · kind B2 · utility

0Cited by

2References

10Claims

0Family size

Assignee

SAMSUNG SDS CO., LTD. · KR

Inventors

Jang-Mi Shin · Seoul, KR
Young Min CHO · Gwangju, KR
Jung Bae Jun · Gunpo-si, KR
Jang Ho Kim · Suwon-si, KR
Tae Jin IYN · Seoul, KR

Key dates

Filing date	Oct 28, 2020
Grant date	Oct 18, 2022
Priority date	—
Expiry date	Jan 27, 2041

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/168
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A method of training a malicious code detection model and a method of detecting a malicious code. The method includes acquiring application programming interface (API) call information of called functions from a result log of performing dynamic analysis of a malicious code, calculating time intervals between timestamps using the timestamps which indicate API call times extracted from the API call information, determining a feature value of the malicious code on the basis of the time intervals, and training the malicious code detection model using an API call sequence included in the API call information and the feature value.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.