Patent · US Active

Detection of malicious computer executables

US7519998B2 · kind B2 · utility

49Cited by

0References

6Claims

0Family size

Assignee

LOS ALAMOS NATIONAL SECURITY, LLC · US

Inventors

Dongming Cai · Los Alamos, US
Maya Gokhale · Los Alamos, US

Key dates

Filing date	Jul 28, 2004
Grant date	Apr 14, 2009
Priority date	—
Expiry date	Jul 20, 2026

Classification

Technology area (CPC G)Physics
CPC primaryG06F21/562
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A method of detecting malicious binary executable files is accomplished by inputting a binary executable file; converting the binary executable file to byte hexadecimal text strings; calculating the frequency of each byte pattern in the byte hexadecimal text strings; selecting characteristic byte pattern frequencies as discriminating features; classifying the discriminating features as malicious or benign; labeling the binary executable file as malicious or benign; and outputting the labeled malicious or benign binary executable file.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.