Patent · US Active

Apparatus and method for detecting malicious files

US8763128B2 · kind B2 · utility

15Cited by

16References

15Claims

0Family size

Assignee

AHNLAB, INC. · KR

Inventors

Cha Sung LIM · Seojong-myeon, KR
Ju Seok Lee · Alameda, US

Key dates

Filing date	Feb 26, 2013
Grant date	Jun 24, 2014
Priority date	—
Expiry date	Feb 26, 2033

Classification

Technology area (CPC G)Physics
CPC primaryG06F21/566
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

An apparatus for detecting a malicious file, includes a program driving unit configured to output an execution address of a command executed by driving a program corresponding to a non-executable file; and an address storage unit configured to store normal address range information in accordance with the driving of the program.Further, the apparatus includes a maliciousness determination unit configured to determine whether the non-executable file is malicious depending on whether the execution address is not within the normal address range information.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.