Patent · US Active

Electronic message analysis for malware detection

US9106694B2 · kind B2 · utility

275Cited by

133References

51Claims

0Family size

Assignee

FireEye, Inc. · US

Inventors

Ashar Aziz · Kendall, US
Henry Uyeno · Sunnyvale, US
Jay Manni · San Jose, US
Muhammad Amin · Fremont, US
Stuart Staniford · Freeville, US

Key dates

Filing date	Apr 18, 2011
Grant date	Aug 11, 2015
Priority date	—
Expiry date	Nov 28, 2031

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/168
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

An electronic message is analyzed for malware contained in the message. Text of an electronic message may be analyzed to detect and process malware content in the electronic message itself. The present technology may analyze an electronic message and attachments to electronic messages to detect a uniform resource location (URL), identify whether the URL is suspicious, and analyze all suspicious URLs to determine if they are malware. The analysis may include re-playing the suspicious URL in a virtual environment which simulates the intended computing device to receive the electronic message. If the re-played URL is determined to be malicious, the malicious URL is added to a black list which is updated throughout the computer system.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.