Patent · US Active

Dynamic sandbox scarecrow for malware management

US11853425B2 · kind B2 · utility

1Cited by

0References

20Claims

0Family size

Assignee

Sophos Limited · GB

Inventors

Ross McKerchar · Bristol, GB
Erik Jan Loman · Hengelo, NL
Simon Neil Reed · Wokingham, GB
Kenneth D. Ray · Seattle, US
Andrew J. Thomas · Woodstock, GB
Karl Ackerman · Topsfield, US

Key dates

Filing date	Oct 9, 2020
Grant date	Dec 26, 2023
Priority date	—
Expiry date	Jun 8, 2041

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/033
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Malware uses various techniques to detect a sandbox environment so that malicious code can avoid execution in closely monitored contexts that might otherwise trigger detection and remediation. A security system is dynamically updated to exploit these anti-sandbox techniques, e.g., by causing endpoints to mimic sandbox environments in a manner that discourages malware execution on the endpoint, and by updating sandboxes to alter or hide sandbox detection triggers.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.