Patent · US Active

Malware family identification using profile signatures

US9165142B1 · kind B1 · utility

131Cited by

9References

19Claims

0Family size

Assignee

Palo Alto Networks, Inc. · US

Inventors

Kyle Sanders · Sunnyvale, US
Xinran Wang · San Ramon, US

Key dates

Filing date	Jan 30, 2013
Grant date	Oct 20, 2015
Priority date	—
Expiry date	Jun 20, 2033

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/033
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Techniques for malware family identification using profile signatures are disclosed. In some embodiments, malware identification using profile signatures includes executing a potential malware sample in a virtual machine environment (e.g., a sandbox); and determining whether the potential malware sample is associated with a known malware family based on a profile signature. In some embodiments, the virtual machine environment is an instrumented virtual machine environment for monitoring potential malware samples during execution.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.