System and method for antivirus checking of native images of software assemblies

System and method for antivirus checking of native images of software assemblies

Disclosed is a system and method for antivirus checking of native images of software assemblies. An example method includes for detecting malicious native images of a machine code, the method comprising: receiving a native image of the machine code; identifying a parent assembly, which was used to c...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: TSVETKOV SERGEY V, SOLODOVNIKOV ANDREY Y, LADIKOV ANDREY V
Format: Patent
Sprache:chi ; eng
Schlagworte:
CALCULATING
COMPUTING
COUNTING
ELECTRIC DIGITAL DATA PROCESSING
IMAGE DATA PROCESSING OR GENERATION, IN GENERAL
PHYSICS
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Disclosed is a system and method for antivirus checking of native images of software assemblies. An example method includes for detecting malicious native images of a machine code, the method comprising: receiving a native image of the machine code; identifying a parent assembly, which was used to create the native image; determining whether the parent assembly corresponds to the machine code; and determining that the native image is malicious when the parent assembly does not correspond to the machine code. 公开了种用于对软件程序集的本机图像进行防病毒检测的系统和方法。实施例包括用于检测机器代码的恶意本机图像的方法,所述方法包括:接收所述机器代码的本机图像;识别父程序集,所述父程序集用于创建所述本机图像;确定所述父程序集是否对应所述机器代码的本机图像;和当所述父程序集不对应所述机器代码的本机图像时,确定本机图像是恶意的。