Invention Grant
- Patent Title: System and method of detecting delivery of malware based on indicators of compromise from different sources
-
Application No.: US15174827Application Date: 2016-06-06
-
Publication No.: US09609007B1Publication Date: 2017-03-28
- Inventor: Alexandr Rivlin , Divyesh Mehra , Henry Uyeno , Vinay Pidathala
- Applicant: FireEye, Inc.
- Applicant Address: US CA Milpitas
- Assignee: FireEye, Inc.
- Current Assignee: FireEye, Inc.
- Current Assignee Address: US CA Milpitas
- Agency: Rutan & Tucker, LLP
- Main IPC: G06F11/00
- IPC: G06F11/00 ; H04L29/06
Abstract:
According to one embodiment, a computerized method comprises receiving a set of indicators of compromise (IOCs) associated with a known malware of a first message type from a first source and receiving one or more IOCs (IOC(s)) from a second source that is different from the first source. Thereafter, a determination is made as to whether the received IOC(s) from the second source correspond to the set of IOCs received from the first source. If so, information associated with at least the set of IOCs is used to locate a malware of the first message type that is undetected at the second source.
Information query
