Patent · US Active

Generation and use of trained file classifiers for malware detection

US9864956B1 · kind B1 · utility

27Cited by

14References

20Claims

0Family size

Assignee

SPARKCOGNITION, INC · US

Inventor

Na Sai · Austin, US

Key dates

Filing date	May 1, 2017
Grant date	Jan 9, 2018
Priority date	—
Expiry date	May 1, 2037

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/033
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

A method includes training a file classifier from one or more n-gram feature vectors received from a plurality of binary files as input, where the one or more n-gram vectors represent the occurrences of character pairs in printable characters within the file or characters representing the informational entropy sequence of the file. Another method also includes generating, by the file classifier, output including classification data associated with the file based on the one or more n-gram vectors, where the classification data indicates whether the file includes malware.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.