Invention Grant
- Patent Title: System, method and apparatus for malicious software detection
-
Application No.: US17093882Application Date: 2020-11-10
-
Publication No.: US11574054B2Publication Date: 2023-02-07
- Inventor: Ibrahim Yakub Abu Alhaol , Ronnie Salvador Giagone , Yang Zhou
- Applicant: HUAWEI TECHNOLOGIES CO., LTD.
- Applicant Address: CN Guangdong
- Assignee: HUAWEI TECHNOLOGIES CO., LTD.
- Current Assignee: HUAWEI TECHNOLOGIES CO., LTD.
- Current Assignee Address: CN Guangdong
- Agency: BCF LLP
- Main IPC: G06F21/56
- IPC: G06F21/56 ; G06N3/04 ; G06N3/08
Abstract:
The disclosed systems and methods are directed to a method for malicious software detection comprising: recognizing and extracting an EP section in an unrecognized PE file, collecting bytes in the EP section of the unrecognized PE file, converting the bytes to an array of integers, generating one or more n-grams from the array of integers, converting the one or more n-grams into b-MinHash, converting the bytes in an EP function included in the EP section to an array of assembly-based mnemonics; generating one or more n-grams from the array of assembly-based mnemonics and converting the one or more n-grams from the array of assembly-based mnemonics into a-MinHash, generating a similarity matrices, converting, the similarity matrices into a lower dimensionality code representation, and classifying the code as a PE benign or a malware file.
Public/Granted literature
- US20220147628A1 SYSTEM, METHOD AND APPARATUS FOR MALICIOUS SOFTWARE DETECTION Public/Granted day:2022-05-12
Information query
