Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

File exception identification method, apparatus and device, and computer readable storage medium

An abnormal identification and file technology, applied in computer security devices, computing, instruments, etc., can solve the problems of slow virus feature extraction and upgrade speed, ineffective detection of feature code scanning technology, and inflexible detection engine configuration. High performance, strong coping ability, comprehensive detection effect

Pending Publication Date: 2020-10-09
ZHUHAI BAOQU TECH CO LTD
View PDF0 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

For file anomalies caused by computer viruses, virus signature scanning technology is currently the most widely used file anomaly detection technology. However, when a new virus or virus variant is generated, the extraction speed and upgrade speed of virus signatures are slow, resulting in signature scanning. Technology cannot effectively detect new types of file anomalies; and the configuration of traditional detection engines is not flexible enough. When new viruses or virus variants bring new types of file anomalies, it is often necessary to reopen related modules, and the operation is cumbersome

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • File exception identification method, apparatus and device, and computer readable storage medium
  • File exception identification method, apparatus and device, and computer readable storage medium
  • File exception identification method, apparatus and device, and computer readable storage medium

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0051] In order to enable those skilled in the art to better understand the solution of the present application, the technical solution in the embodiment of the application will be clearly and completely described below in conjunction with the accompanying drawings in the embodiment of the application. Obviously, the described embodiment is only It is an embodiment of a part of the application, but not all of the embodiments. Based on the embodiments in this application, all other embodiments obtained by persons of ordinary skill in the art without creative efforts shall fall within the scope of protection of this application.

[0052] Each will be described in detail below.

[0053] It should be understood that the terms "first", "second", "third" and "fourth" in the specification and claims of the present application and the above drawings are used to distinguish different objects, rather than to describe specific order. Furthermore, the terms "include" and "have", as well...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides a file exception identification method, apparatus and device, and a computer readable storage medium. The method comprises the steps of obtaining a to-be-identified file; determining whether the to-be-identified file contains file features stored in a yara engine feature library or not through a yara engine; if the to-be-identified file contains the file features stored in the yara engine feature library, determining that the to-be-identified file is an abnormal file; and if the to-be-identified file does not contain the file features stored in the yara engine feature library, determining that the to-be-identified file is a non-abnormal file. By adopting the method and the device, the file exception identification efficiency can be improved, the file exception handling capacity is high, and the applicability is high.

Description

technical field [0001] The present invention relates to the technical field of network detection, in particular to a method, device, equipment and computer-readable storage medium for identifying abnormal files. Background technique [0002] With the development of computer network technology, while the computer and its network technology bring great convenience to people's life, threats on the network also emerge in endlessly. One of the most harmful and most influential is the increasing proliferation of computer viruses. Portable Executable (PE) files are the most widely used file format in the Windows operating system, and the impact of malicious PE files is particularly great. For file anomalies caused by computer viruses, virus signature scanning technology is currently the most widely used file anomaly detection technology. However, when a new virus or virus variant is generated, the extraction speed and upgrade speed of virus signatures are slow, resulting in signat...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/56
CPCG06F21/563
Inventor 朱培宏
Owner ZHUHAI BAOQU TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com