SYSTEM AND METHOD OF FORMING A LOG WHEN EXECUTING A FILE WITH VULNERABILITIES IN A VIRTUAL MACHINE

SYSTEM AND METHOD OF FORMING A LOG WHEN EXECUTING A FILE WITH VULNERABILITIES IN A VIRTUAL MACHINE

Disclosed herein are systems and methods for forming a log during an execution of a file with vulnerabilities. In one example, an exemplary method comprises, discovering an activation of a trigger during an execution of a thread of a process created upon opening the file, wherein the trigger describ...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: KIRSANOV, Dmitry A, PINTIYSKY, Vladislav V, MONASTYRSKY, Alexey V, ANIKIN, Denis V, PAVLYUSHCHIK, Mikhail A
Format: Patent
Sprache:eng ; fre ; ger
Schlagworte:
CALCULATING
COMPUTING
COUNTING
ELECTRIC DIGITAL DATA PROCESSING
PHYSICS
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Disclosed herein are systems and methods for forming a log during an execution of a file with vulnerabilities. In one example, an exemplary method comprises, discovering an activation of a trigger during an execution of a thread of a process created upon opening the file, wherein the trigger describes conditions accompanying an event which relates to an attempt to exploit a vulnerability of the file, analyzing a stack of the process created upon opening the file, and discovering a chain of function calls preceding the event in a form of a sequence of call and return addresses, analyzing the discovered chain of function calls for fulfillment of conditions of the trigger which relate to the attempt to exploit the vulnerability, and when the conditions of the trigger are fulfilled, saving information about the chain of function calls in a log.