Patent · US Active

System and method for detecting malware in file based on genetic map of file

US9141796B2 · kind B2 · utility

2Cited by

0References

9Claims

0Family size

Assignee

AHNLAB, INC. · KR

Inventors

Jeong Hun Kim · Daejeon, KR
Kyu Beom Hwang · Seojong-myeon, KR

Key dates

Filing date	Dec 27, 2011
Grant date	Sep 22, 2015
Priority date	—
Expiry date	Feb 8, 2032

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/2145
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A method for detecting whether a file includes malware is performed on a device. The method includes extracting information of at least two predetermined items in the file; creating a genetic map for the file by altering the extracted information into a previously set format; comparing the created genetic map with a previously stored malware genetic map to obtain a similarity between the created genetic map and the previously stored malware genetic map; and determining that the file is a malware when the similarity is higher than a reference value.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.