Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Malicious software detection method and device, electronic equipment, medium and product

A malware and detection method technology, applied in the fields of media and products, devices, malware detection methods, and electronic equipment, can solve problems such as inability to detect risk levels, and achieve the effect of improving the detection rate and reducing the false alarm rate.

Pending Publication Date: 2022-05-13
BEIJING QIANXIN TECH +1
View PDF0 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] The present invention provides a malicious software detection method, device, electronic equipment, medium and product to solve the defect that the same API function cannot detect different risk levels in different operating environments in the prior art

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Malicious software detection method and device, electronic equipment, medium and product
  • Malicious software detection method and device, electronic equipment, medium and product
  • Malicious software detection method and device, electronic equipment, medium and product

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0052] In order to make the purpose, technical solutions and advantages of the present invention clearer, the technical solutions in the present invention will be clearly and completely described below in conjunction with the accompanying drawings in the present invention. Obviously, the described embodiments are part of the embodiments of the present invention , but not all examples. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without creative efforts fall within the protection scope of the present invention.

[0053] In the existing technology, the API call features extracted by the dynamic behavior analysis based on deep learning are all based on information such as the number of API calls and the sequence of API calls. Under this condition, although the dynamic detection can detect the risk levels corresponding to different API functions, However, it cannot detect the different risk levels of the...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides a malicious software detection method and device, electronic equipment, a medium and a product.The malicious software detection method comprises the steps that behavior logs of to-be-tested software are preprocessed, and static attribute information of the to-be-tested software and dynamic behavior API sequences of APIs in the to-be-tested software are obtained; performing static feature extraction on the static attribute information of the to-be-tested software to obtain static features of the to-be-tested software; performing dynamic feature extraction on the dynamic behavior API sequence of each API in the to-be-tested software to obtain dynamic features of each API in the to-be-tested software; and inputting the static characteristics of the to-be-tested software and the dynamic characteristics of each API in the to-be-tested software into a pre-trained malicious software detection model to obtain a detection result corresponding to the to-be-tested software. According to the embodiment of the invention, the time sequence information and semantic information of the API sequence are utilized, malicious software can be detected more accurately, the false alarm rate of a malicious sample detection model is reduced, and the detection rate is improved.

Description

technical field [0001] The present invention relates to the technical field of computer malicious software detection, in particular to a malicious software detection method, device, electronic equipment, medium and product. Background technique [0002] Malicious programs are the main security threats to computer systems and network security, and their scale and impact are increasing. According to whether software is running, malware detection can be divided into static detection and dynamic detection. Among them, the static detection of malware is to analyze the statistical characteristics of the malware without running the malware, such as analyzing the binary software or disassembling the malware, and then analyzing the disassembly code; and the dynamic detection of the malware, then It is based on the analysis and feature extraction of the operating system resource call behavior generated during the running of the software. [0003] Existing static detection methods hav...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): G06F21/56G06K9/62G06N3/04G06N3/08
CPCG06F21/562G06F21/561G06N3/08G06N3/045G06F18/24
Inventor 刘浩然王占一李宁
Owner BEIJING QIANXIN TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com