Method, apparatus and network device for identifying virus document
A virus file and file technology, applied in computer security devices, electrical components, instruments, etc., can solve problems such as system damage, virus analysis process extension, and anti-virus product upgrade cycle, so as to achieve fast recovery, improve efficiency, and save money. Analyzing the effect of time
- Summary
- Abstract
- Description
- Claims
- Application Information
AI Technical Summary
Problems solved by technology
Method used
Image
Examples
Example Embodiment
[0021] In the process of virus analysis, to identify whether a suspicious file is a virus file, usually by analyzing the file's runtime behavior to confirm whether it is a virus file. See figure 1 The present invention provides a method for identifying virus files. First, a virtual system is constructed in the system (S101). When a suspicious file is found, the suspicious file is executed in the virtual system, and the behavior information of the suspicious file is recorded (S102); The behavior information is compared with the virus behavior feature database (S103), and it is determined whether the suspicious file is a virus file (S104). If so, the suspicious file is identified as a virus file (S105); otherwise, the suspicious file is identified as a virus file (S105); The suspicious file is identified as a safe file (S106).
[0022] For step S101, the virtual system can construct a virtual framework by using computer programs to monitor key APIs of the system and simulating some...
PUM
Abstract
Description
Claims
Application Information
- R&D Engineer
- R&D Manager
- IP Professional
- Industry Leading Data Capabilities
- Powerful AI technology
- Patent DNA Extraction
Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.
© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap