Unlock instant, AI-driven research and patent intelligence for your innovation.

Systems and methods for detecting unknown packers and encrypters

A technology of encryptor and packager, applied in transmission systems, instruments, electrical digital data processing, etc., can solve problems such as difficulty in detecting malware

Active Publication Date: 2016-07-27
AO KASPERSKY LAB
View PDF4 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0009] Difficult to detect packed and / or encrypted malware using traditional detection techniques

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Systems and methods for detecting unknown packers and encrypters
  • Systems and methods for detecting unknown packers and encrypters
  • Systems and methods for detecting unknown packers and encrypters

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0018] Exemplary embodiments of the invention are described herein in terms of systems, methods, and computer program products for detecting unknown packers and ciphers. Those of ordinary skill in the art should appreciate that the following description is exemplary only and is not intended to be limiting in any way. Other embodiments will readily occur to those skilled in the art having the benefit of this disclosure. Reference will now be made in detail to implementations of the exemplary embodiments as illustrated in the accompanying drawings. Wherever possible, the same reference numbers will be used throughout the drawings and the following description to refer to the same or like items.

[0019] figure 1 A schematic diagram of a system for detecting malware according to an exemplary embodiment is shown. The system includes an anti-virus application 120 comprising several analysis modules 130 for simulating and analyzing software objects 110 for the presence of malware...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

Systems, methods, and computer program products for detecting unknown packers and encrypters are disclosed. Exemplary methods include simulating execution of a software object modified by an unknown wrapper or encryptor; collecting information about memory operations performed during the simulation; combining information about multiple related memory operations into at least one memory a set of operation sequences; identifying one or more high-level operations associated with unpacking or decrypting of the emulated object from at least one set of related memory operation sequences; and generating based on the one or more high-level operations to be used to detect the unknown A record for this unknown packer or encrypter for a packer or encrypter.

Description

[0001] Cross References to Related Applications [0002] This application claims priority under 35 USC 119(a)-(d) to Russian Application No. 2012106466, filed February 24, 2010, which is incorporated herein by reference. technical field [0003] The present disclosure relates generally to the field of computer security, and, more particularly, to systems, methods, and computer program products for detecting unknown packers and ciphers used to conceal malware. Background technique [0004] Developments in computer and Internet technology continue to affect human society and our way of life. Personal computers, laptops, tablets, smartphones and other communication devices provide instant access to information from around the world. Email, instant messaging, IP telephony and social networking allow people to communicate and share information with each other. However, advancements in computer and communication technologies have exacerbated the emergence and spread of computer ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): G06F21/56
CPCG06F21/53G06F21/566H04L63/1408
Inventor 马克西姆·Y·戈洛夫金
Owner AO KASPERSKY LAB