The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.
The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.
Patent No.:
Date of Patent:
Jan. 28, 2020
Filed:
Oct. 06, 2017
International Business Machines Corporation, Armonk, NY (US);
Zhongshu Gu, Ridgewood, NJ (US);
Heqing Huang, Mahwah, NJ (US);
Jiyong Jang, White Plains, NY (US);
Dhilung Hang Kirat, White Plains, NY (US);
Xiaokui Shu, Ossining, NY (US);
Marc P. Stoecklin, White Plains, NY (US);
Jialong Zhang, White Plains, NY (US);
International Business Machines Corporation, Armonk, NY (US);
Abstract
Approaches to deactivating evasive malware. In an approach, a computer system installs an imitating resource in the computer system and the imitating resource creates an imitating environment of malware analysis, wherein the imitating resource causes the evasive malware to respond to the imitating environment of the malware analysis as to a real environment of the malware analysis. In the imitating environment of malware analysis, the evasive malware determines not to perform malicious behavior. In another approach, a computer system intercepts a call from the evasive malware to a resource on the computer system and returns a virtual resource to the call, wherein in the virtual resource one or more values of the resource on the computer system are modified.