HEIDI: ML ON HYPERVISOR DYNAMIC ANALYSIS DATA FOR MALWARE CLASSIFICATION

HEIDI: ML ON HYPERVISOR DYNAMIC ANALYSIS DATA FOR MALWARE CLASSIFICATION

The present application discloses a method, system, and computer system for detecting malicious files. The method includes (a) receiving a sample for malware analysis, (b) applying a machine learning model to obtain a classification for the sample based at least in part on (i) memory artifact data a...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Rao, Akshata Krishnamoorthy, Idrizovic, Esmid, Chhetri, Sujit Rokka, Hewlett II, William Redington, Jung, Robert, Raygoza, Daniel
Format: Patent
Sprache:eng
Schlagworte:
CALCULATING
COMPUTING
COUNTING
ELECTRIC DIGITAL DATA PROCESSING
PHYSICS
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
container_end_page
container_issue
container_start_page
container_title
container_volume
creator Rao, Akshata Krishnamoorthy
Idrizovic, Esmid
Chhetri, Sujit Rokka
Hewlett II, William Redington
Jung, Robert
Raygoza, Daniel
description The present application discloses a method, system, and computer system for detecting malicious files. The method includes (a) receiving a sample for malware analysis, (b) applying a machine learning model to obtain a classification for the sample based at least in part on (i) memory artifact data associated with the sample, and (ii) at least one of dynamic execution log data for the sample and static file structures associated with the sample, and (c) determining whether the sample is malicious based at least in part on the classification.
format Patent
fullrecord <record><control><sourceid>epo_EVB</sourceid><recordid>TN_cdi_epo_espacenet_US2024320338A1</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>US2024320338A1</sourcerecordid><originalsourceid>FETCH-epo_espacenet_US2024320338A13</originalsourceid><addsrcrecordid>eNrjZPDwcPV08bRS8PVR8PdT8IgMcA0K8wz2D1JwifRz9PV0VnD0c_SJDPYMVnBxDHFUcAPK-Dr6hDsGuSo4-zgGB3u6eTo7hnj6-_EwsKYl5hSn8kJpbgZlN9cQZw_d1IL8-NTigsTk1LzUkvjQYCMDIxNjIwNjYwtHQ2PiVAEApVstpg</addsrcrecordid><sourcetype>Open Access Repository</sourcetype><iscdi>true</iscdi><recordtype>patent</recordtype></control><display><type>patent</type><title>HEIDI: ML ON HYPERVISOR DYNAMIC ANALYSIS DATA FOR MALWARE CLASSIFICATION</title><source>esp@cenet</source><creator>Rao, Akshata Krishnamoorthy ; Idrizovic, Esmid ; Chhetri, Sujit Rokka ; Hewlett II, William Redington ; Jung, Robert ; Raygoza, Daniel</creator><creatorcontrib>Rao, Akshata Krishnamoorthy ; Idrizovic, Esmid ; Chhetri, Sujit Rokka ; Hewlett II, William Redington ; Jung, Robert ; Raygoza, Daniel</creatorcontrib><description>The present application discloses a method, system, and computer system for detecting malicious files. The method includes (a) receiving a sample for malware analysis, (b) applying a machine learning model to obtain a classification for the sample based at least in part on (i) memory artifact data associated with the sample, and (ii) at least one of dynamic execution log data for the sample and static file structures associated with the sample, and (c) determining whether the sample is malicious based at least in part on the classification.</description><language>eng</language><subject>CALCULATING ; COMPUTING ; COUNTING ; ELECTRIC DIGITAL DATA PROCESSING ; PHYSICS</subject><creationdate>2024</creationdate><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&amp;date=20240926&amp;DB=EPODOC&amp;CC=US&amp;NR=2024320338A1$$EHTML$$P50$$Gepo$$Hfree_for_read</linktohtml><link.rule.ids>230,308,780,885,25564,76547</link.rule.ids><linktorsrc>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&amp;date=20240926&amp;DB=EPODOC&amp;CC=US&amp;NR=2024320338A1$$EView_record_in_European_Patent_Office$$FView_record_in_$$GEuropean_Patent_Office$$Hfree_for_read</linktorsrc></links><search><creatorcontrib>Rao, Akshata Krishnamoorthy</creatorcontrib><creatorcontrib>Idrizovic, Esmid</creatorcontrib><creatorcontrib>Chhetri, Sujit Rokka</creatorcontrib><creatorcontrib>Hewlett II, William Redington</creatorcontrib><creatorcontrib>Jung, Robert</creatorcontrib><creatorcontrib>Raygoza, Daniel</creatorcontrib><title>HEIDI: ML ON HYPERVISOR DYNAMIC ANALYSIS DATA FOR MALWARE CLASSIFICATION</title><description>The present application discloses a method, system, and computer system for detecting malicious files. The method includes (a) receiving a sample for malware analysis, (b) applying a machine learning model to obtain a classification for the sample based at least in part on (i) memory artifact data associated with the sample, and (ii) at least one of dynamic execution log data for the sample and static file structures associated with the sample, and (c) determining whether the sample is malicious based at least in part on the classification.</description><subject>CALCULATING</subject><subject>COMPUTING</subject><subject>COUNTING</subject><subject>ELECTRIC DIGITAL DATA PROCESSING</subject><subject>PHYSICS</subject><fulltext>true</fulltext><rsrctype>patent</rsrctype><creationdate>2024</creationdate><recordtype>patent</recordtype><sourceid>EVB</sourceid><recordid>eNrjZPDwcPV08bRS8PVR8PdT8IgMcA0K8wz2D1JwifRz9PV0VnD0c_SJDPYMVnBxDHFUcAPK-Dr6hDsGuSo4-zgGB3u6eTo7hnj6-_EwsKYl5hSn8kJpbgZlN9cQZw_d1IL8-NTigsTk1LzUkvjQYCMDIxNjIwNjYwtHQ2PiVAEApVstpg</recordid><startdate>20240926</startdate><enddate>20240926</enddate><creator>Rao, Akshata Krishnamoorthy</creator><creator>Idrizovic, Esmid</creator><creator>Chhetri, Sujit Rokka</creator><creator>Hewlett II, William Redington</creator><creator>Jung, Robert</creator><creator>Raygoza, Daniel</creator><scope>EVB</scope></search><sort><creationdate>20240926</creationdate><title>HEIDI: ML ON HYPERVISOR DYNAMIC ANALYSIS DATA FOR MALWARE CLASSIFICATION</title><author>Rao, Akshata Krishnamoorthy ; Idrizovic, Esmid ; Chhetri, Sujit Rokka ; Hewlett II, William Redington ; Jung, Robert ; Raygoza, Daniel</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-epo_espacenet_US2024320338A13</frbrgroupid><rsrctype>patents</rsrctype><prefilter>patents</prefilter><language>eng</language><creationdate>2024</creationdate><topic>CALCULATING</topic><topic>COMPUTING</topic><topic>COUNTING</topic><topic>ELECTRIC DIGITAL DATA PROCESSING</topic><topic>PHYSICS</topic><toplevel>online_resources</toplevel><creatorcontrib>Rao, Akshata Krishnamoorthy</creatorcontrib><creatorcontrib>Idrizovic, Esmid</creatorcontrib><creatorcontrib>Chhetri, Sujit Rokka</creatorcontrib><creatorcontrib>Hewlett II, William Redington</creatorcontrib><creatorcontrib>Jung, Robert</creatorcontrib><creatorcontrib>Raygoza, Daniel</creatorcontrib><collection>esp@cenet</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>Rao, Akshata Krishnamoorthy</au><au>Idrizovic, Esmid</au><au>Chhetri, Sujit Rokka</au><au>Hewlett II, William Redington</au><au>Jung, Robert</au><au>Raygoza, Daniel</au><format>patent</format><genre>patent</genre><ristype>GEN</ristype><title>HEIDI: ML ON HYPERVISOR DYNAMIC ANALYSIS DATA FOR MALWARE CLASSIFICATION</title><date>2024-09-26</date><risdate>2024</risdate><abstract>The present application discloses a method, system, and computer system for detecting malicious files. The method includes (a) receiving a sample for malware analysis, (b) applying a machine learning model to obtain a classification for the sample based at least in part on (i) memory artifact data associated with the sample, and (ii) at least one of dynamic execution log data for the sample and static file structures associated with the sample, and (c) determining whether the sample is malicious based at least in part on the classification.</abstract><oa>free_for_read</oa></addata></record>
fulltext fulltext_linktorsrc
identifier
ispartof
issn
language eng
recordid cdi_epo_espacenet_US2024320338A1
source esp@cenet
subjects CALCULATING
COMPUTING
COUNTING
ELECTRIC DIGITAL DATA PROCESSING
PHYSICS
title HEIDI: ML ON HYPERVISOR DYNAMIC ANALYSIS DATA FOR MALWARE CLASSIFICATION
url https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2024-12-27T09%3A33%3A46IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-epo_EVB&rft_val_fmt=info:ofi/fmt:kev:mtx:patent&rft.genre=patent&rft.au=Rao,%20Akshata%20Krishnamoorthy&rft.date=2024-09-26&rft_id=info:doi/&rft_dat=%3Cepo_EVB%3EUS2024320338A1%3C/epo_EVB%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rfr_iscdi=true