CN103294951B - A kind of malicious code sample extracting method based on document type bug and system - Google Patents
A kind of malicious code sample extracting method based on document type bug and system Download PDFInfo
- Publication number
- CN103294951B CN103294951B CN201210497712.XA CN201210497712A CN103294951B CN 103294951 B CN103294951 B CN 103294951B CN 201210497712 A CN201210497712 A CN 201210497712A CN 103294951 B CN103294951 B CN 103294951B
- Authority
- CN
- China
- Prior art keywords
- document
- shellcode
- malicious code
- file
- code sample
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Landscapes
- Information Transfer Between Computers (AREA)
Abstract
Description
Claims (6)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201210497712.XA CN103294951B (en) | 2012-11-29 | 2012-11-29 | A kind of malicious code sample extracting method based on document type bug and system |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201210497712.XA CN103294951B (en) | 2012-11-29 | 2012-11-29 | A kind of malicious code sample extracting method based on document type bug and system |
Publications (2)
Publication Number | Publication Date |
---|---|
CN103294951A CN103294951A (en) | 2013-09-11 |
CN103294951B true CN103294951B (en) | 2016-09-07 |
Family
ID=49095793
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201210497712.XA Active CN103294951B (en) | 2012-11-29 | 2012-11-29 | A kind of malicious code sample extracting method based on document type bug and system |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN103294951B (en) |
Families Citing this family (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20160381051A1 (en) * | 2015-06-27 | 2016-12-29 | Mcafee, Inc. | Detection of malware |
CN106874758B (en) * | 2016-08-22 | 2021-03-16 | 创新先进技术有限公司 | Method and device for identifying document code |
CN106372508B (en) * | 2016-08-30 | 2020-05-12 | 北京奇虎科技有限公司 | Malicious document processing method and device |
CN109768945A (en) * | 2017-11-09 | 2019-05-17 | 国网青海省电力公司电力科学研究院 | A kind of detection device and discovery method of any file download loophole |
CN109472142A (en) * | 2017-12-29 | 2019-03-15 | 北京安天网络安全技术有限公司 | A kind of automatic method of disposal of malicious code and system |
CN110717180B (en) * | 2018-07-13 | 2021-09-28 | 北京安天网络安全技术有限公司 | Malicious document detection method and system based on self-positioning behaviors and storage medium |
CN110866252A (en) * | 2018-12-21 | 2020-03-06 | 北京安天网络安全技术有限公司 | Malicious code detection method and device, electronic equipment and storage medium |
CN110348214B (en) * | 2019-07-16 | 2021-06-08 | 电子科技大学 | Method and system for detecting malicious codes |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101673326A (en) * | 2008-09-11 | 2010-03-17 | 北京理工大学 | Method for detecting web page Trojan horse based on program execution characteristics |
CN101820419A (en) * | 2010-03-23 | 2010-09-01 | 北京大学 | Method for automatically positioning webpage Trojan mount point in Trojan linked webpage |
CN101826139A (en) * | 2009-12-30 | 2010-09-08 | 厦门市美亚柏科信息股份有限公司 | Method and device for detecting Trojan in non-executable file |
Family Cites Families (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7228563B2 (en) * | 2003-02-06 | 2007-06-05 | Symantec Corporation | Shell code blocking system and method |
-
2012
- 2012-11-29 CN CN201210497712.XA patent/CN103294951B/en active Active
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101673326A (en) * | 2008-09-11 | 2010-03-17 | 北京理工大学 | Method for detecting web page Trojan horse based on program execution characteristics |
CN101826139A (en) * | 2009-12-30 | 2010-09-08 | 厦门市美亚柏科信息股份有限公司 | Method and device for detecting Trojan in non-executable file |
CN101820419A (en) * | 2010-03-23 | 2010-09-01 | 北京大学 | Method for automatically positioning webpage Trojan mount point in Trojan linked webpage |
Also Published As
Publication number | Publication date |
---|---|
CN103294951A (en) | 2013-09-11 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN103294951B (en) | A kind of malicious code sample extracting method based on document type bug and system | |
JP5992622B2 (en) | Malicious application diagnostic apparatus and method | |
KR102415971B1 (en) | Apparatus and Method for Recognizing Vicious Mobile App | |
CN104834859B (en) | The dynamic testing method of malicious act in a kind of Android applications | |
KR101554633B1 (en) | Apparatus and method for detecting malicious code | |
CN109753800A (en) | Merge the Android malicious application detection method and system of frequent item set and random forests algorithm | |
WO2013026320A1 (en) | Method and system for detecting webpage trojan embedded | |
CN106295348B (en) | Vulnerability detection method and device for application program | |
US10748185B2 (en) | Method for identifying bundled software and apparatus therefor | |
CN104520871A (en) | Vulnerability vector information analysis | |
CN103886229B (en) | Method and device for extracting PE file features | |
CN113158197B (en) | SQL injection vulnerability detection method and system based on active IAST | |
CN109918907A (en) | Linux platform proceeding internal memory malicious code evidence collecting method, controller and medium | |
CN112733150A (en) | Firmware unknown vulnerability detection method based on vulnerability analysis | |
JP2019514119A (en) | Hybrid Program Binary Feature Extraction and Comparison | |
CN105488414A (en) | Method and system for preventing malicious codes from detecting virtual environments | |
CN105631325A (en) | Malicious application detection method and apparatus | |
CN103886258A (en) | Method and device for detecting viruses | |
CN115168847A (en) | Application patch generation method and device, computer equipment and readable storage medium | |
Feichtner et al. | Obfuscation-resilient code recognition in Android apps | |
CN103390129A (en) | Method and device for detecting security of uniform resource locator | |
CN109670317B (en) | Internet of things equipment inheritance vulnerability mining method based on atomic control flow graph | |
CN103095714A (en) | Trojan horse detection method based on Trojan horse virus type classification modeling | |
CN106101086A (en) | The cloud detection method of optic of program file and system, client, cloud server | |
Guo et al. | ilibscope: Reliable third-party library detection for ios mobile apps |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
CP03 | Change of name, title or address |
Address after: 100080 Beijing city Haidian District minzhuang Road No. 3, Tsinghua Science Park Building 1 Yuquan Huigu a Patentee after: Beijing ahtech network Safe Technology Ltd Address before: 100080 Haidian District City, Zhongguancun, the main street, No. 1 Hailong building, room 1415, room 14 Patentee before: Beijing Antiy Electronic Installation Co., Ltd. |
|
CP03 | Change of name, title or address | ||
PE01 | Entry into force of the registration of the contract for pledge of patent right |
Denomination of invention: Malicious code sample extraction method and system based on document type bug Effective date of registration: 20190719 Granted publication date: 20160907 Pledgee: Bank of Longjiang, Limited by Share Ltd, Harbin Limin branch Pledgor: Beijing ahtech network Safe Technology Ltd Registration number: 2019230000008 |
|
PE01 | Entry into force of the registration of the contract for pledge of patent right | ||
PC01 | Cancellation of the registration of the contract for pledge of patent right |
Date of cancellation: 20210810 Granted publication date: 20160907 Pledgee: Bank of Longjiang Limited by Share Ltd. Harbin Limin branch Pledgor: BEIJING ANTIY NETWORK TECHNOLOGY Co.,Ltd. Registration number: 2019230000008 |
|
PC01 | Cancellation of the registration of the contract for pledge of patent right |