Invention Grant
US09230106B2 System and method for detecting malicious software using malware trigger scenarios in a modified computer environment
有权
在修改的计算机环境中使用恶意软件触发情景检测恶意软件的系统和方法
- Patent Title: System and method for detecting malicious software using malware trigger scenarios in a modified computer environment
- Patent Title (中): 在修改的计算机环境中使用恶意软件触发情景检测恶意软件的系统和方法
-
Application No.: US14607778Application Date: 2015-01-28
-
Publication No.: US09230106B2Publication Date: 2016-01-05
- Inventor: Evgeny Y. Eliseev , Victor V. Yablokov
- Applicant: Kaspersky Lab ZAO
- Applicant Address: RU Moscow
- Assignee: Kaspersky Lab AO
- Current Assignee: Kaspersky Lab AO
- Current Assignee Address: RU Moscow
- Agency: Arent Fox LLP
- Agent Michael Fainberg
- Priority: RU2013129555 20130628
- Main IPC: G06F21/56
- IPC: G06F21/56
Abstract:
Disclosed system and methods for malware testing of software programs. An example method includes storing a plurality of malware trigger scenarios specifying different sets of malware trigger events known to trigger malicious behavior in software programs; in response to obtaining a software program, modifying a computer environment for operating the software program by creating malware trigger events associated with a selected one of the plurality of malware trigger scenarios; analyzing an execution of the software program in the modified computer environment in response to the malware trigger events; upon detecting that the software program exhibits malicious behavior, performing remedial actions on the software program; and upon detecting that the software program exhibits no malicious behavior, selecting a different malware trigger scenario from the plurality of malware trigger scenarios for malware testing of the software program.
Public/Granted literature
Information query
