Systems and methods for virtualized malware detection
US9792430B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Nov 3, 2011 |
| Grant date | Oct 17, 2017 |
| Priority date | — |
| Expiry date | Nov 3, 2031 |
Classification
- Technology area (CPC G)Physics
- CPC primaryG06F21/566
- WIPO fieldComputer technology
- WIPO sectorElectrical engineering
Abstract
Systems and methods for virtualized malware enabled detection are described. In some embodiments, a method comprises intercepting an object provided from a first digital device, determining one or more resources the object requires, instantiating a virtual environment with the one or more resources, processing the object within the virtual environment, tainting operations of the object within the virtual environment, monitoring the operations of the object, identifying an additional resource of the object while processing that is not provided in the virtual environment, re-instantiating the virtual environment with the additional resource, monitoring the operations of the object while processing within the re-instantiated virtual environment, identifying untrusted actions from the monitored operations, and generating a report identifying the operations and the untrusted actions of the object.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.