Patent · US Active

Detecting malware

US9762608B1 · kind B1 · utility

1Cited by

32References

20Claims

0Family size

Assignee

Palo Alto Networks, Inc. · US

Inventors

Bo Qu · Suzhou, CN
Xinran Wang · San Ramon, US
Kyle Sanders · Sunnyvale, US

Key dates

Filing date	Jul 7, 2015
Grant date	Sep 12, 2017
Priority date	—
Expiry date	Jul 7, 2035

Classification

Technology area (CPC H)Electricity
CPC primaryH04L67/10
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A candidate malware that potentially includes at least one malicious element is received. The candidate malware is executed using a virtualized environment. A determination is made that the candidate malware, while executing using the virtualized environment, has taken at least one anti-virtual machine action, wherein the anti-virtual machine action is indicative of an attempt by the candidate malware to evade detection of the malicious element by the system when the candidate malware is executed using a virtualized environment. In response to the determination, an alert that the candidate malware is malicious is generated as output.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.