Patenton — panteon of patents

(19)

RU

(11)

2 679 783

(13)

C2

(51)

IPC

G06F21/00(2013-01-01)

G06F21/50(2013-01-01)

G06F21/53(2013-01-01)

G06F21/56(2013-01-01)

(21) (22)

Application

2015154381, 2015-12-18

(24)

Start date

2013-06-28

(22)

Actual filing date

2015-12-18

(45)

Published

2019-02-12

(72)

Inventor

Eliseev Evgenij YurevichYablokov Viktor Vladimirovich

(73)

Holder

Zakrytoe Aktsionernoe Obshchestvo Kasperskogo"

METHOD OF CREATING SCRIPT OF POPULAR ACTIVATION EVENTS Russian patent published in 2019 - IPC G06F21/00 G06F21/50 G06F21/53 G06F21/56 

Abstract RU 2679783 C2

FIELD: computer equipment.

SUBSTANCE: invention relates to methods for monitoring the execution of the investigated software in order to detect the behavior characteristic of malicious software. To do this, get a lot of scripts, get a list of activation events of malicious behavior from at least one script from the received set of scripts; collect all the events caused by the execution of the activation event of the malicious behavior from the list of events of the activation of the malicious behavior during the execution of the application being studied in the modified software and hardware of the computer device; and detect the activation of the malicious behavior of the application under study based on the analysis of all collected events by identifying events characteristic of the malicious behavior.

EFFECT: achieving the creation of a script of popular events by selecting from the event scenarios the activations of the event that activated the malicious behavior when executing the monitoring of the application being monitored, and recording it in the script of popular events.

1 cl, 7 dwg

Similar patents RU2679783C2

Title Year Author Number
METHOD AND SYSTEM FOR DETECTING MALICIOUS SOFTWARE BY CONTROL OF SOFTWARE IMPLEMENTATION RUNNING UNDER SCRIPT 2013
  • Eliseev Evgenij Yurevich
  • Yablokov Viktor Vladimirovich
 RU2653985C2
SYSTEM AND METHOD FOR DETECTING MALWARE BY CREATING ISOLATED ENVIRONMENT 2012
  • Jablokov Viktor Vladimirovich
  • Eliseev Evgenij Jur'Evich
 RU2535175C2
METHOD OF DETECTING MALICIOUS EXECUTABLES, CONTAINING INTERPRETER, BY COMBINING EMULATORS 2015
  • Zakorzhevskij Vyacheslav Vladimirovich
  • Vinogradov Dmitrij Valerevich
  • Pintijskij Vladislav Valerevich
  • Kirsanov Dmitrij Aleksandrovich
 RU2622627C2
SYSTEM AND METHOD OF DETECTING THREAT IN CODE EXECUTED BY VIRTUAL MACHINE 2012
  • Pavljushchik Mikhail Aleksandrovich
 RU2522019C1
SYSTEM AND METHOD OF IMPROVING ORGANISATION DATA SECURITY BY CREATING ISOLATED ENVIRONMENT 2012
  • Jablokov Viktor Vladimirovich
  • Eliseev Evgenij Jur'Evich
 RU2541895C2
METHOD OF DETECTING UNKNOWN PROGRAMS BY LOAD PROCESS EMULATION 2011
  • Parshin Jurij Gennad'Evich
  • Pintijskij Vladislav Valer'Evich
 RU2472215C1
SYSTEM AND METHOD FOR ANTIVIRUS SCANNING OF OBJECTS ON A MOBILE DEVICE 2023
  • Iablokov Viktor Vladimirovich
  • Filatov Konstantin Mikhailovich
 RU2818877C1
METHOD FOR AUTOMATIC ADJUSTMENT OF SECURITY MEANS 2012
  • Zajtsev Oleg Vladimirovich
 RU2514137C1
SYSTEM AND METHOD OF DETECTING LATENT BEHAVIOUR OF BROWSER EXTENSION 2018
  • Vinogradov Dmitrij Valerevich
  • Davydov Vasilij Aleksandrovich
  • Parinov Denis Igorevich
 RU2697950C2
SYSTEM AND METHOD OF FILE ANALYSIS FOR MALICIOUSNESS IN VIRTUAL MACHINE 2017
  • Pintijskij Vladislav Valerevich
  • Anikin Denis Vyacheslavovich
  • Kobychev Denis Yurevich
  • Golovkin Maksim Yurevich
  • Butuzov Vitalij Vladimirovich
  • Karasovskij Dmitrij Valerievich
  • Kirsanov Dmitrij Aleksandrovich
 RU2665911C2

RU 2 679 783 C2

Authors

Eliseev Evgenij Yurevich

Yablokov Viktor Vladimirovich

Dates

2019-02-12Published

2015-12-18Filed

download Download PDF read Similar patents