Invention Grant
- Patent Title: Collecting malware samples via unauthorized download protection
- Patent Title (中): 通过未经授权的下载保护收集恶意软件样本
-
Application No.: US12166785Application Date: 2008-07-02
-
Publication No.: US08353033B1Publication Date: 2013-01-08
- Inventor: Joseph Chen , Brendon Woirhaye
- Applicant: Joseph Chen , Brendon Woirhaye
- Applicant Address: US CA Cupertino
- Assignee: Symantec Corporation
- Current Assignee: Symantec Corporation
- Current Assignee Address: US CA Cupertino
- Agency: Fenwick & West LLP
- Main IPC: H04L9/00
- IPC: H04L9/00
Abstract:
A hook is set for one or more downloading functions. Subsequently, code is executed within an application process. Responsive to the executed code calling one of the hooked functions to download code, a return address of the called function is examined. If the return address is within a memory area not marked executable, the code is permitted to be downloaded and the downloaded code is submitted to a security server for analysis.
Information query
