Supercharge Your Innovation With Domain-Expert AI Agents!

Windows PE virus sample API labeling method and system

An API call and sample technology, applied in the field of cyberspace security, can solve the problems of low labeling accuracy and efficiency, and achieve the effect of improving labeling efficiency

Pending Publication Date: 2022-02-01
北京京航计算通讯研究所
View PDF0 Cites 1 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] In view of the above analysis, the embodiment of the present invention aims to provide a Windows PE virus sample API labeling method and system to solve the problems of low accuracy and low efficiency of Windows PE virus sample API labeling in the prior art

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Windows PE virus sample API labeling method and system
  • Windows PE virus sample API labeling method and system
  • Windows PE virus sample API labeling method and system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0054] Preferred embodiments of the present invention will be described in detail below in conjunction with the accompanying drawings, wherein the accompanying drawings constitute a part of the application and together with the embodiments of the present invention are used to explain the principle of the present invention and are not intended to limit the scope of the present invention.

[0055] method embodiment

[0056] A specific embodiment of the present invention discloses a Windows PE virus sample API labeling method. Such as figure 1 As shown, the method includes:

[0057] S110. Dynamically analyze each virus sample in the acquired virus sample set to obtain a corresponding virus sample API, where the virus sample API includes a dynamic API calling sequence. Specifically, the APIs of the virus samples obtained through analysis are APIs defined in the Windows operating system platform.

[0058] S120. Initially mark the virus sample API according to the API information...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to a Windows PE virus sample API labeling method and system, belongs to the field of network space security, and solves the problems of low precision and low efficiency of Windows PE virus sample API labeling in the prior art. The method comprises the steps: dynamically analyzing each virus sample in an obtained virus sample set to obtain a corresponding virus sample API, wherein the virus sample API comprises a dynamic API calling sequence; performing initial labeling on the virus sample API according to API information defined by a Windows operating system and the dynamic API calling sequence to obtain an initial labeling result; and carrying out automatic sensing labeling on the virus sample API by utilizing the trained hidden Markov model according to the initial labeling result of the virus sample API and the dynamic API calling sequence. According to the method, the rapid, efficient and accurate labeling of the virus sample API can be realized.

Description

technical field [0001] The invention relates to the technical field of cyberspace security, in particular to a method and system for an API labeling of a Windows PE virus sample. Background technique [0002] Windows PE (Portable Executable) virus samples have always been one of the most serious security threats in cyberspace. It starts without the user's awareness, compromising the security and privacy of software and data. The increase in the number of viruses has promoted the application of machine learning in the field of virus detection. The key problem facing the effective implementation of machine learning-based virus detection methods is the acquisition of sample labels; because of the particularity of viruses, the determination of their labels is very difficult and requires various professional knowledge. Manual marking will consume manpower and material resources, especially with the rapid increase of various new virus programs and variants, the lag problem of ma...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): G06F21/56
CPCG06F21/561
Inventor 李伟张永静邢建华石春刚李景田巩艳伟常晓林
Owner 北京京航计算通讯研究所
Features
  • R&D
  • Intellectual Property
  • Life Sciences
  • Materials
  • Tech Scout
Why Patsnap Eureka
  • Unparalleled Data Quality
  • Higher Quality Content
  • 60% Fewer Hallucinations
Social media
Patsnap Eureka Blog
Learn More

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2025 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com