Method and device for judging same origin of malicious files
A malicious file and judgment method technology, applied in the field of network security, can solve the problem of poor accuracy of the same-origin judgment result, and achieve the effects of improving the accuracy, improving the accuracy, and reducing the amount of calculation.
- Summary
- Abstract
- Description
- Claims
- Application Information
AI Technical Summary
Problems solved by technology
Method used
Image
Examples
Embodiment Construction
[0029] The following will clearly and completely describe the technical solutions in the embodiments of the present invention in conjunction with the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are only some of the embodiments of the present invention, not all of them. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the protection scope of the present invention.
[0030] In order to solve the problem in the prior art that the accuracy of the same-origin determination of malicious files is poor, in the embodiment of the present invention, four specified dimensions of process behavior, access behavior, domain name resolution behavior and registry behavior are used for each malicious file. According to the characteristic behavior data information below, determine the category to which each malicious file bel...
PUM
Abstract
Description
Claims
Application Information
- R&D Engineer
- R&D Manager
- IP Professional
- Industry Leading Data Capabilities
- Powerful AI technology
- Patent DNA Extraction
Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.
© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com