Invention Grant
- Patent Title: Time-based detection of malware communications
-
Application No.: US15409760Application Date: 2017-01-19
-
Publication No.: US10681069B2Publication Date: 2020-06-09
- Inventor: Barak Raz , Sasi Siddharth Muthurajan
- Applicant: HEWLETT PACKARD ENTERPRISE DEVELOPMENT LP
- Applicant Address: US CA Santa Clara
- Assignee: MICRO FOCUS LLC
- Current Assignee: MICRO FOCUS LLC
- Current Assignee Address: US CA Santa Clara
- Main IPC: H04L29/06
- IPC: H04L29/06 ; G06F21/56 ; G06F21/55
Abstract:
A technique includes processing domain name system queries generated by a host to identify a subset of the queries for which domain names were not resolved. The technique includes using a time-based analysis to detect domain generation algorithm-based malware communications by the host, including detecting malicious communications by the host based at least in part on a number of the queries of the identified subset and a time span within which the queries of the subset were generated.
Public/Granted literature
- US20180205753A1 TIME-BASED DETECTION OF MALWARE COMMUNICATIONS Public/Granted day:2018-07-19
Information query
