Patent · US Active

Detection and identification of malware using a hierarchical evolutionary tree

US12013937B1 · kind B1 · utility

0Cited by

10References

15Claims

0Family size

Assignee

Trend Micro Incorporated · JP

Inventors

Jonathan J. Oliver · Melbourne, AU
Chia-Yen Chang · Taipei, TW
Wen-Kwang Tsao · Taipei, TW
Joseph Cepe · Manila, PH
Maria Estella Manly Reyes · Pasig, PH
Paul Christian D. Pajares · Manila, PH
Jayson Pryde · Manila, PH
Chiaming Chiang · Taipei, TW
Brandon Niemczyk · Hutto, US
Leslie Zsohar · Round Rock, US

Key dates

Filing date	Jul 29, 2021
Grant date	Jun 18, 2024
Priority date	—
Expiry date	Feb 16, 2042

Classification

Technology area (CPC H)Electricity
CPC primaryH04L9/0643
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A computer system generates a hierarchical evolutionary tree of digests of sample files. The digests are generated using a locality sensitive hashing function. The digests are grouped into several clusters, and the clusters are grouped into several nodes. The nodes are connected in hierarchical order to generate the hierarchical evolutionary tree. A digest of a file being evaluated for malware is generated using the locality sensitive hashing function. The digest is put in a cluster of the hierarchical evolutionary tree having digests that are most similar to the digest relative to digests of other clusters of the hierarchical evolutionary tree. The digest is identified to be of the same malware family as the digests of the cluster.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.