Patent · US Active

Malicious code infection cause-and-effect analysis

US8117659B2 · kind B2 · utility

21Cited by

3References

20Claims

0Family size

Assignee

Microsoft Corporation · US

Inventors

Gregory D. Hartrell · Sammamish, US
David Steeves · Seattle, US
Efim Hudis · Bellevue, US

Key dates

Filing date	Dec 28, 2005
Grant date	Feb 14, 2012
Priority date	—
Expiry date	Oct 16, 2028

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/034
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A malware analysis system for automating cause and effect analysis of malware infections is provided. The malware analysis system monitors and records computer system activities. Upon being informed of a suspected malware infection, the malware analysis system creates a time-bounded snapshot of the monitored activities that were conducted within a time frame prior to the notification of the suspected malware infection. The malware analysis system may also create a time-bounded snapshot of the monitored activities that are conducted within a time frame subsequent to the notification of the suspected malware infection. The malware analysis system provides the created snapshot or snapshots for further analysis.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.