Patent · US Active

Malware detection using watermark cookies

US12206692B2 · kind B2 · utility

0Cited by

13References

20Claims

0Family size

Assignee

Palo Alto Networks, Inc. · US

Inventors

Zhaoyan Xu · Union City, US
Wei Xu · Santa Clara, US
Kyle Sanders · Sunnyvale, US

Key dates

Filing date	Mar 31, 2022
Grant date	Jan 21, 2025
Priority date	—
Expiry date	Jun 24, 2043

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/0254
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Techniques for malware detection using watermark cookies are disclosed. In some embodiments, a system, process, and/or computer program product for malware detection using watermark cookies includes receiving a sample at a cloud security service; injecting a watermark cookie in a virtual environment to provide a modified virtual environment; detonating the sample in the modified virtual environment, wherein the modified virtual environment is instrumented for monitoring activities associated with the sample during automated malware analysis of the sample; detecting whether the watermark cookie was accessed in the modified virtual environment during the automated malware analysis of the sample; and determining whether the sample is malware based on whether the watermark cookie was accessed in the modified virtual environment.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.