×

Network-Based Binary File Extraction and Analysis for Malware Detection

  • US 20120117652A1
  • Filed: 01/13/2012
  • Published: 05/10/2012
  • Est. Priority Date: 09/30/2009
  • Status: Active Grant
First Claim
Patent Images

1. A method for network-based file analysis for malware detection by a system, the method comprising:

  • receiving network content from a network tap;

    identifying a binary packet in the network content;

    extracting a binary file including the binary packet from the network content;

    determining whether the extracted binary file is suspicious network content, wherein the suspicious network content potentially includes malicious network content;

    processing the suspicious network content using a virtual environment component configured within a virtual environment to mimic a real application configured to process the suspicious network content; and

    identifying the suspicious network content as malicious network content based on a behavior of the virtual environment component, wherein the malicious network content is harmful to a computer device.

View all claims
  • 7 Assignments
Timeline View
Assignment View
    ×
    ×