FIELD: computer equipment.
SUBSTANCE: invention relates to computer technology for information retrieval. Technical result is achieved through a comparison that occurs with a subgroup of previously processed files, while for this purpose the downloaded file is represented as a random Markov process, the probability of occurrence of sequences of bits of a size less than or equal to a given connectivity is calculated by dividing the number of occurrences of the bit sequences by the file size in bits, and perform a comparison only with those files in which the module of the difference in their sizes and the size of the file being checked is less than the calculated limit of the maximum possible file size change, and if the probabilistic distance between the downloaded file and any previously processed file from the obtained subgroup is less than the maximum possible change in the probability distance, then these files are recognized as similar.
EFFECT: technical result is to increase the efficiency of searching for such files.
1 cl, 3 dwg
| Title | Year | Author | Number |
|---|---|---|---|
| METHOD OF DETECTING HARMFUL COMPOSITE FILES | 2016 |
|
RU2634178C1 |
| METHOD OF COMPOSITE FILE ACCESS CONTROL | 2017 |
|
RU2659739C1 |
| METHOD FOR DETERMINING SIMILARITY OF COMPOSITE FILES | 2016 |
|
RU2628922C1 |
| SYSTEM AND METHOD OF SELECTING MEANS OF DETECTING MALICIOUS FILES | 2019 |
|
RU2739830C1 |
| SYSTEM AND METHOD OF SIMILAR FILES DETERMINING | 2015 |
|
RU2614561C1 |
| SYSTEM AND METHOD OF MAKING FLEXIBLE CONVOLUTION FOR MALWARE DETECTION | 2013 |
|
RU2580036C2 |
| METHOD OF INSERTING SECRET DIGITAL MESSAGE INTO PRINTED DOCUMENTS AND EXTRACTING SAID MESSAGE | 2010 |
|
RU2431192C1 |
| SYSTEM AND METHOD OF CLASSIFICATION OF OBJECTS | 2017 |
|
RU2679785C1 |
| SYSTEM AND METHOD OF CLASSIFYING OBJECTS OF COMPUTER SYSTEM | 2018 |
|
RU2724710C1 |
| SYSTEM AND METHOD FOR AUTOMATIC INVESTIGATION OF SAFETY INCIDENTS | 2011 |
|
RU2481633C2 |
