Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Document packer unpacking method and device

A file and image file technology, which is applied in the computer field, can solve the problems of depending on the success rate, finding SO unpacking, and low unpacking efficiency, so as to achieve the effect of improving efficiency

Inactive Publication Date: 2017-05-31
四川无声信息技术有限公司
View PDF5 Cites 9 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

On the other hand, research on SO unpacking has just started, and most security researchers still use manual methods to unpack through static analysis and dynamic debugging. The unpacking efficiency is not high, and the success rate of unpacking is also low. Depends on the technical level of practitioners, so far, no complete set of technical theories to solve SO unpacking can be found on the Internet or in various journals and magazines

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Document packer unpacking method and device
  • Document packer unpacking method and device
  • Document packer unpacking method and device

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0030] The following will clearly and completely describe the technical solutions in the embodiments of the present invention with reference to the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are some of the embodiments of the present invention, but not all of them. The components of the embodiments of the invention generally described and illustrated in the figures herein may be arranged and designed in a variety of different configurations. Accordingly, the following detailed description of the embodiments of the invention provided in the accompanying drawings is not intended to limit the scope of the claimed invention, but merely represents selected embodiments of the invention. It should be noted that like numerals and letters denote similar items in the following figures, therefore, once an item is defined in one figure, it does not require further definition and explanation in subsequent figures. Meanwhile, in t...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides a document packer unpacking method and device. The method comprises steps as follows: an input test sample is received, and the test sample comprises dynamic-link library documents; the dynamic-link library documents are classified according to a classification model, packer states of the dynamic-link library documents in the test sample are obtained and comprise a state with packers and a no-packer state; the packer states of the dynamic-link library documents in the test sample are judged; when the dynamic-link library documents in the test sample are in the state with packers, the dynamic-link library documents are loaded, an entry point of a program is searched, and a structural body is generated in a program memory after the dynamic-link library documents are successfully loaded and comprises information of dynamic-link library documents in a form of a mirror image document; mirror image documents in the structural body are read and are saved; the mirror image documents are reconstructed, and the unpacked dynamic-link library documents are obtained. The unpacking efficiency of the dynamic-link library documents can be effectively improved.

Description

technical field [0001] The invention relates to the technical field of computers, in particular to a file shell unpacking method and device. Background technique [0002] With the continuous development of the Android operating system, the Android security packing technology has gradually become popular, and more and more Android applications have begun to use packing to protect themselves. The packing service can effectively protect the real logic and integrity of the program, but these features are easily exploited by malicious programs. With the popularity of packing technology, the number of packed malicious programs is also increasing. Traditional malicious code detection is relatively weak in the reverse analysis of packed applications, and it is difficult to detect packed applications, which brings severe challenges to the security development of the Android platform. [0003] The research on unpacking technology of Android platform is divided into Dex unpacking tec...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/51
CPCG06F21/51
Inventor 黄勇韩子诺童永鳌许春阳陈航
Owner 四川无声信息技术有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com