CN106570401B - 一种基于时间变化的恶意代码检测方法及系统 - Google Patents
一种基于时间变化的恶意代码检测方法及系统 Download PDFInfo
- Publication number
- CN106570401B CN106570401B CN201611229093.0A CN201611229093A CN106570401B CN 106570401 B CN106570401 B CN 106570401B CN 201611229093 A CN201611229093 A CN 201611229093A CN 106570401 B CN106570401 B CN 106570401B
- Authority
- CN
- China
- Prior art keywords
- vector
- malicious code
- time
- vector set
- identification
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/55—Detecting local intrusion or implementing counter-measures
- G06F21/56—Computer malware detection or handling, e.g. anti-virus arrangements
- G06F21/562—Static detection
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Software Systems (AREA)
- Theoretical Computer Science (AREA)
- Health & Medical Sciences (AREA)
- General Health & Medical Sciences (AREA)
- Virology (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Storage Device Security (AREA)
Abstract
Description
Claims (6)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201611229093.0A CN106570401B (zh) | 2016-12-27 | 2016-12-27 | 一种基于时间变化的恶意代码检测方法及系统 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201611229093.0A CN106570401B (zh) | 2016-12-27 | 2016-12-27 | 一种基于时间变化的恶意代码检测方法及系统 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN106570401A CN106570401A (zh) | 2017-04-19 |
CN106570401B true CN106570401B (zh) | 2019-07-26 |
Family
ID=58543014
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201611229093.0A Active CN106570401B (zh) | 2016-12-27 | 2016-12-27 | 一种基于时间变化的恶意代码检测方法及系统 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN106570401B (zh) |
Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103106367A (zh) * | 2013-02-06 | 2013-05-15 | 重庆大学 | 一种抗攻击的恶意软件识别方法及系统 |
US8578051B2 (en) * | 2007-01-24 | 2013-11-05 | Mcafee, Inc. | Reputation based load balancing |
CN103559235A (zh) * | 2013-10-24 | 2014-02-05 | 中国科学院信息工程研究所 | 一种在线社交网络恶意网页检测识别方法 |
CN103617393A (zh) * | 2013-11-28 | 2014-03-05 | 北京邮电大学 | 一种基于支持向量机的移动互联网恶意应用软件检测方法 |
CN104751055A (zh) * | 2013-12-31 | 2015-07-01 | 北京启明星辰信息安全技术有限公司 | 一种基于纹理的分布式恶意代码检测方法、装置及系统 |
CN104866765A (zh) * | 2015-06-03 | 2015-08-26 | 康绯 | 基于行为特征相似性的恶意代码同源性分析方法 |
-
2016
- 2016-12-27 CN CN201611229093.0A patent/CN106570401B/zh active Active
Patent Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US8578051B2 (en) * | 2007-01-24 | 2013-11-05 | Mcafee, Inc. | Reputation based load balancing |
CN103106367A (zh) * | 2013-02-06 | 2013-05-15 | 重庆大学 | 一种抗攻击的恶意软件识别方法及系统 |
CN103559235A (zh) * | 2013-10-24 | 2014-02-05 | 中国科学院信息工程研究所 | 一种在线社交网络恶意网页检测识别方法 |
CN103617393A (zh) * | 2013-11-28 | 2014-03-05 | 北京邮电大学 | 一种基于支持向量机的移动互联网恶意应用软件检测方法 |
CN104751055A (zh) * | 2013-12-31 | 2015-07-01 | 北京启明星辰信息安全技术有限公司 | 一种基于纹理的分布式恶意代码检测方法、装置及系统 |
CN104866765A (zh) * | 2015-06-03 | 2015-08-26 | 康绯 | 基于行为特征相似性的恶意代码同源性分析方法 |
Non-Patent Citations (1)
Title |
---|
《提升多维特征检测迷惑恶意代码》;孔德光等;《软件学报》;20110331;第22卷(第3期);第522-533页 |
Also Published As
Publication number | Publication date |
---|---|
CN106570401A (zh) | 2017-04-19 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
Caballero et al. | Measuring {Pay-per-Install}: The commoditization of malware distribution | |
Portokalidis et al. | Argos: an emulator for fingerprinting zero-day attacks for advertised honeypots with automatic signature generation | |
Kotov et al. | Anatomy of exploit kits: Preliminary analysis of exploit kits as software artefacts | |
US20140181973A1 (en) | Method and system for detecting malicious application | |
Chen et al. | A practical approach for adaptive data structure layout randomization | |
RU2014121249A (ru) | Системы и способы защиты от вредоносного программного обеспечения на основе нечеткого вайтлистинга | |
WO2017012241A1 (zh) | 文件的检测方法、装置、设备及非易失性计算机存储介质 | |
US11182476B2 (en) | Enhanced intelligence for a security information sharing platform | |
Balachandran et al. | Potent and stealthy control flow obfuscation by stack based self-modifying code | |
US10372907B2 (en) | System and method of detecting malicious computer systems | |
CN113973012B (zh) | 一种威胁检测方法、装置、电子设备及可读存储介质 | |
Alrawi et al. | Forecasting malware capabilities from cyber attack memory images | |
Kim et al. | Analysis of cyber attacks and security intelligence | |
Du et al. | A static Android malicious code detection method based on multi‐source fusion | |
US20170308688A1 (en) | Analysis apparatus, analysis system, analysis method, and analysis program | |
CN109389400A (zh) | 在用户与银行服务交互期间识别潜在危险设备的系统和方法 | |
CN116192461A (zh) | 流量处理方法、装置、设备及存储介质 | |
JP6322240B2 (ja) | フィッシング・スクリプトを検出するためのシステム及び方法 | |
CN106570401B (zh) | 一种基于时间变化的恶意代码检测方法及系统 | |
CN106650439A (zh) | 检测可疑应用程序的方法及装置 | |
KR101639869B1 (ko) | 악성코드 유포 네트워크 탐지 프로그램 | |
Jeong et al. | Code graph for malware detection | |
Han et al. | On the effectiveness of software diversity: A systematic study on real-world vulnerabilities | |
Kim et al. | A study on the malware realtime analysis systems using the finite automata | |
CN108334778B (zh) | 病毒检测方法、装置、存储介质及处理器 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
CP03 | Change of name, title or address |
Address after: 150028 Building 7, Innovation Plaza, Science and Technology Innovation City, Harbin Hi-tech Industrial Development Zone, Heilongjiang Province (838 Shikun Road) Patentee after: Harbin antiy Technology Group Limited by Share Ltd Address before: 150090 Room 506, No. 162 Hongqi Street, Nangang District, Harbin Development Zone, Heilongjiang Province Patentee before: Harbin Antiy Technology Co., Ltd. |
|
CP03 | Change of name, title or address | ||
CP01 | Change in the name or title of a patent holder |
Address after: 150028 building 7, innovation and entrepreneurship square, science and technology innovation city, Harbin high tech Industrial Development Zone, Heilongjiang Province (No. 838, Shikun Road) Patentee after: Antan Technology Group Co.,Ltd. Address before: 150028 building 7, innovation and entrepreneurship square, science and technology innovation city, Harbin high tech Industrial Development Zone, Heilongjiang Province (No. 838, Shikun Road) Patentee before: Harbin Antian Science and Technology Group Co.,Ltd. |
|
CP01 | Change in the name or title of a patent holder |