The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.

The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.

Patent No.:

US 10867038 B1

Date of Patent:

Dec. 15, 2020

Filed:

Aug. 04, 2017

System and method of detecting malicious files with the use of elements of static analysis

Applicant:

AO Kaspersky Lab, Moscow, RU;

Inventors:

Vladimir V. Krylov, Moscow, RU;

Alexander V. Liskin, Moscow, RU;

Assignee:

AO KASPERSKY LAB, Moscow, RU;

Attorneys:

Arent Fox LLP

Michael Fainberg

Primary Examiner:

Christopher J Brown

Int. Cl.

CPC ...

H04L 9/00 (2006.01); G06F 21/56 (2013.01); H04L 29/06 (2006.01); G06F 16/00 (2019.01);

U.S. Cl.

CPC ...

G06F 21/563 (2013.01); G06F 16/00 (2019.01); H04L 63/1408 (2013.01);

Abstract

A system and method is provided for determining whether an electronic file is malicious. An exemplary method includes extracting resources from an electronic file; forming a first rule that establishes a functional dependency between the extracted resources; identifying, in a database of malicious file resources, a second rule associated with one or more of the extracted resources; comparing the formed first rule with the identified second rule to calculate a degree of similarity between first and second rules; and determining the electronic file to be a malicious file when the calculated degree of similarity exceeds a predetermined threshold value.

Find Patent Forward Citations