CN103824020B - 自动实现软件程序免杀的方法 - Google Patents
自动实现软件程序免杀的方法 Download PDFInfo
- Publication number
- CN103824020B CN103824020B CN201410058478.XA CN201410058478A CN103824020B CN 103824020 B CN103824020 B CN 103824020B CN 201410058478 A CN201410058478 A CN 201410058478A CN 103824020 B CN103824020 B CN 103824020B
- Authority
- CN
- China
- Prior art keywords
- library
- api
- software program
- default
- kill
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/55—Detecting local intrusion or implementing counter-measures
- G06F21/56—Computer malware detection or handling, e.g. anti-virus arrangements
- G06F21/562—Static detection
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Software Systems (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Virology (AREA)
- Health & Medical Sciences (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- General Health & Medical Sciences (AREA)
- Stored Programmes (AREA)
- Devices For Executing Special Programs (AREA)
Abstract
Description
Claims (5)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201410058478.XA CN103824020B (zh) | 2014-02-20 | 2014-02-20 | 自动实现软件程序免杀的方法 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201410058478.XA CN103824020B (zh) | 2014-02-20 | 2014-02-20 | 自动实现软件程序免杀的方法 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN103824020A CN103824020A (zh) | 2014-05-28 |
CN103824020B true CN103824020B (zh) | 2017-10-24 |
Family
ID=50759076
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201410058478.XA Active CN103824020B (zh) | 2014-02-20 | 2014-02-20 | 自动实现软件程序免杀的方法 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN103824020B (zh) |
Families Citing this family (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
TWI611292B (zh) * | 2016-03-08 | 2018-01-11 | 慧榮科技股份有限公司 | 函式管理方法與記憶體裝置 |
RU2697954C2 (ru) * | 2018-02-06 | 2019-08-21 | Акционерное общество "Лаборатория Касперского" | Система и способ создания антивирусной записи |
Citations (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103514395A (zh) * | 2012-06-20 | 2014-01-15 | 阿里巴巴集团控股有限公司 | 插件权限控制方法及系统 |
Family Cites Families (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101187899B (zh) * | 2006-11-17 | 2010-05-12 | 中兴通讯股份有限公司 | 嵌入式系统存储空间的优化方法 |
US8640245B2 (en) * | 2010-12-24 | 2014-01-28 | Kaspersky Lab, Zao | Optimization of anti-malware processing by automated correction of detection rules |
CN103123676B (zh) * | 2013-03-11 | 2015-11-18 | 北京锐安科技有限公司 | 一种基于内存的免杀方法 |
-
2014
- 2014-02-20 CN CN201410058478.XA patent/CN103824020B/zh active Active
Patent Citations (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103514395A (zh) * | 2012-06-20 | 2014-01-15 | 阿里巴巴集团控股有限公司 | 插件权限控制方法及系统 |
Also Published As
Publication number | Publication date |
---|---|
CN103824020A (zh) | 2014-05-28 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US11562071B2 (en) | Detecting malware via scanning for dynamically generated function pointers in memory | |
Koret et al. | The antivirus hacker's handbook | |
US10055585B2 (en) | Hardware and software execution profiling | |
US20170372068A1 (en) | Method to identify known compilers functions, libraries and objects inside files and data items containing an executable code | |
Dahse et al. | Code reuse attacks in php: Automated pop chain generation | |
US10242190B2 (en) | System and method for detection of malicious code by iterative emulation of microcode | |
US7739100B1 (en) | Emulation system, method and computer program product for malware detection by back-stepping in program code | |
JP2019067372A (ja) | プロセスのアドレス空間内の悪意のあるコードの検出のためのシステムおよび方法 | |
JP2016525760A (ja) | 無関係なコードの特定 | |
US10339305B2 (en) | Sub-execution environment controller | |
US8458794B1 (en) | System, method, and computer program product for determining whether a hook is associated with potentially unwanted activity | |
Lobo et al. | Rbacs: Rootkit behavioral analysis and classification system | |
Mäki et al. | Interface diversification in IoT operating systems | |
Case et al. | HookTracer: A system for automated and accessible API hooks analysis | |
CN110717181B (zh) | 基于新型程序依赖图的非控制数据攻击检测方法及装置 | |
CN103824020B (zh) | 自动实现软件程序免杀的方法 | |
US9122872B1 (en) | System and method for treatment of malware using antivirus driver | |
JP2013041598A (ja) | プログラムコードの生成方法、プログラム開発システム、携帯用データキャリア、及びプログラム | |
JP2017134574A (ja) | プログラム、情報処理装置、及び情報処理方法 | |
EP3040895A1 (en) | System and method for protecting a device against return-oriented programming attacks | |
CN111752570A (zh) | 一种编译方法、装置、终端及计算机可读存储介质 | |
Singh et al. | Partial evaluation for java malware detection | |
Nguyen et al. | Pushdown model generation of malware | |
Li et al. | An improved method to unveil malware’s hidden behavior | |
Banescu et al. | Dynamic Taint Analysis versus Obfuscated Self-Checking |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
CB02 | Change of applicant information |
Address after: 100872 room 1706, building 59, Zhongguancun street, Haidian District, Beijing Applicant after: BEIJING SENSESHIELD TECHNOLOGY Co.,Ltd. Address before: 100872 room 1706, building 59, Zhongguancun street, Haidian District, Beijing Applicant before: BEIJING SHENSI SHUDUN TECHNOLOGY Co.,Ltd. |
|
COR | Change of bibliographic data | ||
CB02 | Change of applicant information |
Address after: 100193 Beijing, Haidian District, East West Road, No. 10, East Hospital, building No. 5, floor 5, layer 510 Applicant after: BEIJING SENSESHIELD TECHNOLOGY Co.,Ltd. Address before: 100872 room 1706, building 59, Zhongguancun street, Haidian District, Beijing Applicant before: BEIJING SENSESHIELD TECHNOLOGY Co.,Ltd. |
|
COR | Change of bibliographic data | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
CP01 | Change in the name or title of a patent holder |
Address after: 100193 5th floor 510, No. 5 Building, East Yard, No. 10 Wangdong Road, Northwest Haidian District, Beijing Patentee after: Beijing Shendun Technology Co.,Ltd. Address before: 100193 5th floor 510, No. 5 Building, East Yard, No. 10 Wangdong Road, Northwest Haidian District, Beijing Patentee before: BEIJING SENSESHIELD TECHNOLOGY Co.,Ltd. |
|
CP01 | Change in the name or title of a patent holder |