The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.
The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.
Patent No.:
Date of Patent:
Oct. 29, 2019
Filed:
Feb. 13, 2017
AO Kaspersky Lab, Moscow, RU;
Maxim Y. Golovkin, Moscow, RU;
Alexey V. Monastyrsky, Moscow, RU;
Vladislav V. Pintiysky, Moscow, RU;
Mikhail A. Pavlyushchik, Moscow, RU;
Vitaly V. Butuzov, Moscow, RU;
Dmitry V. Karasovsky, Moscow, RU;
AO Kaspersky Lab, Moscow, RU;
Abstract
Disclosed are system and method for detecting malicious code in files. One exemplary method comprises: intercepting, by a processor, one or more application program interface (API) calls during an execution of a process launched from a file of a computing device; determining and detecting, by the processor, a presence of an exit condition of the process; in response to detecting the exit condition, identifying one or more signatures of a first type and transferring one or more saved memory dumps of the computing device to an emulator for execution; and determining and identifying a malicious code in the file in response to detecting one or more signatures of a second type based at least upon execution results of the transferred memory dumps of the computing device.