Patenton — panteon of patents

(19)

RU

(11)

2 541 120

(13)

C2

(51)

IPC

G06F21/56(2013-01-01)

(21) (22)

Application

2013125979/08, 2013-06-06

(24)

Start date

2013-06-06

(22)

Actual filing date

2013-06-06

(45)

Published

2015-02-10

(72)

Inventor

Tatarinov Ivan Ivanovich

(73)

Holder

Zakrytoe Aktsionernoe Obshchestvo Kasperskogo"

SYSTEM AND METHOD FOR DETECTING MALICIOUS EXECUTABLE FILES BASED ON SIMILARITY OF EXECUTABLE FILE RESOURCES Russian patent published in 2015 - IPC G06F21/56 

Abstract RU 2541120 C2

FIELD: physics, computer engineering.

SUBSTANCE: invention relates to computer engineering. A system for detecting malicious executable files based on similarity of executable file resources comprises resource processing means for determining the type of an executable file and at least one type in accordance with the determined type of the executable file, detecting at least one resource of the determined type of executable file using the resource processing means, converting the at least one detected resource of the determined type into a format for comparison and transmission thereof to a comparing means; a comparing means for calculating the degree of similarity of at least one detected resource of the determined type with resources of said type from resources of known malicious executable files from a resource database using comparison algorithms for corresponding types of resources, transmitting the result of calculating the degree of similarity to a verification means; a verification means for determining if an executable file is malicious using determination rules based on the calculated degree of similarity of at least one detected resource of the determined type with resources of said type from resources of known malicious executable files.

EFFECT: high efficiency of detecting malicious executable files.

3 cl, 7 dwg, 3 tbl

Similar patents RU2541120C2

Title Year Author Number
SYSTEM AND METHOD FOR DETECTING MALICIOUS CODE IN THE EXECUTED FILE 2020
  • Yashina Yuliana Konstantinovna
  • Borisov Aleksandr Pavlovich
  • Pakhomov Aleksej Mikhajlovich
 RU2757807C1
METHOD OF MALICIOUS FILES DETECTING, EXECUTED BY MEANS OF THE STACK-BASED VIRTUAL MACHINE 2015
  • Ivanov Anton Mikhajlovich
  • Liskin Aleksandr Viktorovich
 RU2624552C2
SYSTEM AND METHOD OF DETECTING MALICIOUS FILES ACCOMPANIED WITH USING THE STATIC ANALYSIS ELEMENTS 2017
  • Krylov Vladimir Vladimirovich
  • Liskin Aleksandr Viktorovich
 RU2654146C1
SYSTEM AND METHOD FOR DETECTING MALICIOUS FILES ON MOBILE DEVICES 2015
  • Kivva Anton Andreevich
  • Buchka Nikita Aleksandrovich
  • Kuzin Mikhail Yurevich
  • Chebyshev Viktor Vladimirovich
 RU2614557C2
SYSTEM AND METHOD OF MANAGING COMPUTING RESOURCES FOR DETECTING MALICIOUS FILES 2017
  • Chistyakov Aleksandr Sergeevich
  • Lobacheva Ekaterina Maksimovna
  • Romanenko Aleksej Mikhajlovich
 RU2659737C1
SYSTEM AND METHOD OF DETECTING A MALICIOUS FILE 2018
  • Chistyakov Aleksandr Sergeevich
  • Romanenko Aleksej Mikhajlovich
  • Shevelev Aleksandr Sergeevich
 RU2739865C2
SYSTEM AND METHOD FOR FORMING RULE FOR CHECKING FILE FOR MALICIOUSNESS 2020
  • Lopatin Evgenij Igorevich
  • Snegirev Artem Igorevich
  • Liskin Aleksandr Viktorovich
  • Akimov Ivan Andreevich
 RU2757408C1
SYSTEM AND METHOD OF SELECTING MEANS OF DETECTING MALICIOUS FILES 2019
  • Chistyakov Aleksandr Sergeevich
  • Romanenko Aleksej Mikhajlovich
 RU2739830C1
SYSTEM AND METHOD OF MACHINE TRAINING MODEL OF DETECTING MALICIOUS FILES 2017
  • Chistyakov Aleksandr Sergeevich
  • Lobacheva Ekaterina Maksimovna
  • Romanenko Aleksej Mikhajlovich
 RU2673708C1
SYSTEM AND METHOD OF DETECTION OF MALICIOUS FILES USING A TRAINED MALWARE DETECTION PATTERN 2017
  • Chistyakov Aleksandr Sergeevich
  • Lobacheva Ekaterina Maksimovna
  • Romanenko Aleksej Mikhajlovich
 RU2654151C1

RU 2 541 120 C2

Authors

Tatarinov Ivan Ivanovich

Dates

2015-02-10Published

2013-06-06Filed

download Download PDF read Similar patents