Systems and methods for scheduling analysis of network content for malware
US8990939B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Jun 24, 2013 |
| Grant date | Mar 24, 2015 |
| Priority date | — |
| Expiry date | Jun 24, 2033 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L2463/144
- WIPO fieldComputer technology
- WIPO sectorElectrical engineering
Abstract
A system is described for scheduling the processing of items of suspicious network content to determine whether these items contain malicious network content. The system features a memory and an analyzer that may comprise a processor-based digital device in which at least one virtual machine (VM) and a scheduler operates. The scheduler is configured to generate an order of processing of a plurality of items of network content by the processor based on a plurality of probability scores, each corresponding to an item of network content. The analyzer is configured to process the items of network content in at least the virtual machine by replaying these items in accordance with the order of processing. The virtual machine is configured with a software profile corresponding to each of the processed items and being adapted to monitor behavior of each of the items during processing, thereby to detect malicious network content.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.