Patent · US Active

Methods and apparatus to improve detection of malware in executable code

US12118075B2 · kind B2 · utility

0Cited by

3References

11Claims

0Family size

Assignee

McAfee, LLC · US

Inventors

Brajesh Kumar · Sidhauli, IN
Sumit Lohani · Kanchinakote, IN
Sidney Gomindes · Kanchinakote, IN

Key dates

Filing date	Jul 28, 2020
Grant date	Oct 15, 2024
Priority date	—
Expiry date	May 20, 2041

Classification

Technology area (CPC G)Physics
CPC primaryG06N20/00
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Methods, apparatus, systems, and articles of manufacture are disclosed to improve detection of malware in executable code. Examples disclosed herein include an apparatus comprising: a log file filtration controller to exclude at least one known clean function from a log file to generate a filtered log file; a log file normalization controller to normalize mnemonics of functions in the filtered log file to generate normalized functions; a feature vector generation controller to populate a feature vector with n-gram groupings of the normalized functions; and a machine learning engine to train a machine learning model with the feature vector, the machine learning model to be deployed to an end-user device to detect malware in executable code.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.