Patent · US Active

Identifying originators of malware

US8321935B1 · kind B1 · utility

24Cited by

0References

20Claims

0Family size

Assignee

Symantec Corporation · US

Inventors

Joseph Chen · Los Angeles, US
Christopher Peterson · Culver City, US
Robert Conrad · Culver City, US

Key dates

Filing date	Feb 26, 2009
Grant date	Nov 27, 2012
Priority date	—
Expiry date	Aug 23, 2031

Classification

Technology area (CPC G)Physics
CPC primaryG06F21/56
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A malware analysis component receives information concerning malware infections on a large plurality of client computers, as detected by an anti-malware product or submitted directly by users. The malware analysis component analyzes this wide array of information, and identifies suspicious malware detection and submission activity associated with specific sources. Where identified suspicious patterns of malware detection and submission activity associated with a specific source meet a given threshold over time, the malware analysis component determines that the source is an originator of malware.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.