Patent · US Active

Malicious code infection cause-and-effect analysis

US8955134B2 · kind B2 · utility

11Cited by

6References

19Claims

0Family size

Assignee

Microsoft Corporation · US

Inventors

Gregory D. Hartrell · Sammamish, US
David Steeves · Seattle, US
Efim Hudis · Bellevue, US

Key dates

Filing date	Feb 8, 2012
Grant date	Feb 10, 2015
Priority date	—
Expiry date	Oct 1, 2032

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/034
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A malware analysis system for automating cause and effect analysis of malware infections is provided. The malware analysis system monitors and records computer system activities. Upon being informed of a suspected malware infection, the malware analysis system creates a time-bounded snapshot of the monitored activities that were conducted within a time frame prior to the notification of the suspected malware infection. The malware analysis system may also create a time-bounded snapshot of the monitored activities that are conducted within a time frame subsequent to the notification of the suspected malware infection. The malware analysis system provides the created snapshot or snapshots for further analysis.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.