FIELD: antivirus technologies.
SUBSTANCE: invention relates to systems and methods of detecting malicious files. Technical result is achieved by determining the file characteristic and behavior of the file, determining a set of parameters describing a surface placed in a probability space, based on certain file characteristics and behavior of the file, generating a file display by constructing a surface in said space based on a determined set of parameters, performing search in the malicious files family displays base based on the generated file display, means for detecting malicious files from a database for detecting malicious files corresponding to a family of malicious files found in a database of mappings.
EFFECT: technical result consists in optimizing the use of computational resources when checking a file for malware.
9 cl, 9 dwg
Title | Year | Author | Number |
---|---|---|---|
SYSTEM AND METHOD OF CLASSIFYING OBJECTS OF COMPUTER SYSTEM | 2018 |
|
RU2724710C1 |
SYSTEM AND METHOD OF CLASSIFICATION OF OBJECTS | 2017 |
|
RU2679785C1 |
SYSTEM AND METHOD OF DETECTING A MALICIOUS FILE | 2018 |
|
RU2739865C2 |
SYSTEM AND METHOD OF DETECTION OF MALICIOUS FILES USING A TRAINED MALWARE DETECTION PATTERN | 2017 |
|
RU2654151C1 |
SYSTEM AND METHOD FOR FORMING RULE FOR CHECKING FILE FOR MALICIOUSNESS | 2020 |
|
RU2757408C1 |
SYSTEM AND METHOD OF MACHINE TRAINING MODEL OF DETECTING MALICIOUS FILES | 2017 |
|
RU2673708C1 |
SYSTEM AND METHOD OF MANAGING COMPUTING RESOURCES FOR DETECTING MALICIOUS FILES | 2017 |
|
RU2659737C1 |
SYSTEM AND METHOD FOR ASSESSING AN APPLICATION FOR THE PRESENCE OF MALWARE | 2020 |
|
RU2757265C1 |
SYSTEM AND METHOD OF DETECTING SOURCE OF MALICIOUS ACTIVITY ON COMPUTER SYSTEM | 2018 |
|
RU2724800C1 |
SYSTEM AND METHOD FOR DETECTING MALICIOUS ACTIVITY ON A COMPUTER SYSTEM | 2018 |
|
RU2697958C1 |
Authors
Dates
2020-12-28—Published
2019-09-30—Filed