发明授权
US09141796B2 System and method for detecting malware in file based on genetic map of file
有权
基于文件遗传图谱检测文件中的恶意软件的系统和方法
- 专利标题: System and method for detecting malware in file based on genetic map of file
- 专利标题(中): 基于文件遗传图谱检测文件中的恶意软件的系统和方法
-
申请号: US13977250申请日: 2011-12-27
-
公开(公告)号: US09141796B2公开(公告)日: 2015-09-22
- 发明人: Jeong Hun Kim , Kyu Beom Hwang
- 申请人: Jeong Hun Kim , Kyu Beom Hwang
- 申请人地址: KR Gyeonggi-Do
- 专利权人: AHNLAB, INC.
- 当前专利权人: AHNLAB, INC.
- 当前专利权人地址: KR Gyeonggi-Do
- 代理机构: Bacon & Thomas, PLLC
- 优先权: KR10-2010-0140175 20101231
- 国际申请: PCT/KR2011/010141 WO 20111227
- 国际公布: WO2012/091400 WO 20120705
- 主分类号: G06F21/00
- IPC分类号: G06F21/00 ; G06F21/56
摘要:
A method for detecting whether a file includes malware is performed on a device. The method includes extracting information of at least two predetermined items in the file; creating a genetic map for the file by altering the extracted information into a previously set format; comparing the created genetic map with a previously stored malware genetic map to obtain a similarity between the created genetic map and the previously stored malware genetic map; and determining that the file is a malware when the similarity is higher than a reference value.
公开/授权文献
信息查询
