FIELD: information technology.
SUBSTANCE: invention relates to computer engineering. Proposed is a method for emulating file execution, implemented by an electronic computing device, in which: a. a file image is formed using the emulation tool by reading a portion of the file; b. at least one known set of instructions is detected by the analysis means in the read part of the file; c. breakpoints are set using the analysis tool at the beginning of at least one known set of instructions in the file image; d. using the emulation tool the execution of instructions from the image of the file is executed, wherein when the emulation tool emulates the breakpoint in the emulation log, an entry is added about the emulation of the execution of a known set of instructions, at the beginning of which the breakpoint is set.
EFFECT: emulation of the execution of files.
12 cl, 4 dwg
| Title | Year | Author | Number |
|---|---|---|---|
| METHOD FOR EMULATING THE EXECUTION OF FILES COMPRISING INSTRUCTIONS, DIFFERENT FROM MACHINE INSTRUCTIONS | 2017 |
|
RU2659742C1 |
| EMULATOR AND METHOD FOR EMULATION | 2020 |
|
RU2757409C1 |
| SYSTEM AND METHOD OF CREATING SOFTWARE DETECTION RECORDS | 2012 |
|
RU2491615C1 |
| SYSTEM AND METHOD OF DETECTING MALICIOUS CODE IN FILE | 2016 |
|
RU2637997C1 |
| METHOD OF CREATING ANTIVIRUS RECORD WHEN DETECTING MALICIOUS CODE IN RANDOM-ACCESS MEMORY | 2015 |
|
RU2592383C1 |
| SYSTEM AND METHOD FOR PERFORMING ANTI-VIRUS SCAN OF FILE ON VIRTUAL MACHINE | 2016 |
|
RU2628921C1 |
| METHOD OF DETECTING MALICIOUS CODE IN RANDOM-ACCESS MEMORY | 2015 |
|
RU2589862C1 |
| METHOD OF DETECTING UNKNOWN PROGRAMS BY LOAD PROCESS EMULATION | 2011 |
|
RU2472215C1 |
| SYSTEM AND METHOD FOR AUTOMATIC PROCESSING OF SOFTWARE SYSTEM ERRORS | 2012 |
|
RU2521265C2 |
| SYSTEM AND METHOD OF DETECTING THE SIGNS OF COMPUTER ATTACKS | 2017 |
|
RU2661533C1 |
