Patent · US Active

Matrix factorization for automated malware detection

US9398034B2 · kind B2 · utility

11Cited by

6References

17Claims

0Family size

Assignee

MICROSOFT TECHNOLOGY LICENSING, LLC · US

Inventors

Royi Ronen · Nes Ziona, IL
Shay Kels · Givatayim, IL
Elad Ziklik · Lod, IL
Efim Hudis · Bellevue, US
Corina Feuerstein · Redmond, US
Tomer Brand · Hod HaSharon, IL

Key dates

Filing date	Dec 19, 2013
Grant date	Jul 19, 2016
Priority date	—
Expiry date	Dec 19, 2033

Classification

Technology area (CPC G)Physics
CPC primaryG06F21/56
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Disclosed herein is a system and method for automatically identifying potential malware files or benign files in files that are not known to be malware. Vector distances for select features of the files are compared to vectors both known malware files and benign files. Based on the distance measures a malware score is obtained for the unknown file. If the malware score exceeds a threshold a researcher may be notified of the potential malware, or the file may be automatically classified as malware if the score is significantly high.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.