Check patentability & draft patents in minutes with Patsnap Eureka AI!

Ransomware file identification and detection method and system

A virus file and detection method technology, applied in the field of computer security, can solve the problems of not being able to detect ransomware, missing ransomware, and the scope of detection is not comprehensive enough, etc.

Active Publication Date: 2021-05-18
BEIJING AN XIN TIAN XING TECH CO LTD
View PDF8 Cites 1 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, these detection methods have some limitations, such as: the scope of detection is not comprehensive enough, sometimes the ransomware virus is missed, and sometimes the existence of the ransomware virus cannot be detected. Therefore, it is necessary to provide a more accurate detection result and a more comprehensive detection range. Ransomware identification and detection method

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Ransomware file identification and detection method and system
  • Ransomware file identification and detection method and system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0042] The following will clearly and completely describe the technical solutions in the embodiments of the present invention with reference to the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are only some, not all, embodiments of the present invention. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the protection scope of the present invention.

[0043] The purpose of the present invention is to provide a method and system for identifying and detecting blackmail virus files, which can more comprehensively and accurately identify and detect blackmail virus files in computers.

[0044] In order to make the above objects, features and advantages of the present invention more comprehensible, the present invention will be further described in detail below in conjunction with the accompanying drawings and spe...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides a ransomware file identification and detection method and a ransomware file identification and detection system, which are used for detecting whether a computer has ransomware or not. The method comprises the following steps of: performing at least two times of retrieval of a computer disk by adopting a file driver, and generating a retrieval result of each retrieved file in the computer disk and a hash file corresponding to each retrieved file; judging whether the retrieval results are consistent or not by comparing the single retrieval results of the same retrieved file; if not, comparing hash files generated by single retrieval of the same retrieved file, reading byte codes of changed files in the hash files, and judging whether the byte codes are normal or not; and carrying out encryption feature detection on the retrieved file corresponding to the abnormal byte code to determine whether the ransomware exists or not. According to the method, ransomware identification and detection can be comprehensively and accurately carried out on the file in the computer, and reliable safety protection is provided for a user.

Description

technical field [0001] The invention relates to the technical field of computer security, in particular to a method and system for identifying and detecting blackmail virus files. Background technique [0002] Ransomware is a relatively popular virus in the past two years, especially in 2016, China's ransomware has exploded. It is mainly transmitted in the form of mail, program Trojan horse, web page hanging horse, etc., and uses various asymmetric encryption algorithms to encrypt document files, picture files, text files, databases, source codes, compressed files, etc. on the computer disk. After the encryption is successful, it will Through webpage files, TXT files, screen saver pictures, etc., the user is notified that the decryption will only be done after paying the ransom within a certain period of time. The ransomware virus is bad in nature and extremely harmful. Once infected, it will bring immeasurable losses to users. [0003] In the existing technology, there ar...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/56
CPCG06F21/562Y02D10/00
Inventor 孙鸿斌彭海龙孙权王少南刘晓龙
Owner BEIJING AN XIN TIAN XING TECH CO LTD
Features
  • R&D
  • Intellectual Property
  • Life Sciences
  • Materials
  • Tech Scout
Why Patsnap Eureka
  • Unparalleled Data Quality
  • Higher Quality Content
  • 60% Fewer Hallucinations
Social media
Patsnap Eureka Blog
Learn More

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2025 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com