Patent · US Active

Evaluating malware in a virtual machine using dynamic patching

US9804869B1 · kind B1 · utility

12Cited by

75References

21Claims

0Family size

Assignee

Palo Alto Networks, Inc. · US

Inventors

Xinran Wang · San Ramon, US
Huagang Xie · Pleasanton, US

Key dates

Filing date	Feb 16, 2017
Grant date	Oct 31, 2017
Priority date	—
Expiry date	Feb 16, 2037

Classification

Technology area (CPC G)Physics
CPC primaryG06F2009/45587
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Analysis of potentially malicious software samples in a virtualized environment is disclosed. One or more modifications are applied to a first virtual machine instance. The first virtual machine instance is initialized as a copy-on-write overlay associated with an original virtual machine image. Further, at least one modification includes the installation of startup instructions. The modified virtual machine instance is stared. A first set of modifications resulting from executing the first virtual machine instance is captured.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.