Systems and methods for identifying malware distribution sites
First Claim
Patent Images
1. A method of neutralizing a malware process, comprising:
- identifying a malware process;
accessing at least one function exported by said malware process; and
writing an instruction into the memory for said at least one exported function that renders said at least one exported function substantially ineffective.
0 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods for identifying malware distribution sites are described. In one embodiment, a system includes a malware detection module configured to analyze a file of a protected computer to determine that the file is associated with malware. The system also includes a Web site identification module configured to search a download history log of the protected computer to identify a Web site from which the file was downloaded.
-
Citations
7 Claims
-
1. A method of neutralizing a malware process, comprising:
-
identifying a malware process;
accessing at least one function exported by said malware process; and
writing an instruction into the memory for said at least one exported function that renders said at least one exported function substantially ineffective. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
Specification