×

Non-signature malware detection system and method for mobile platforms

  • US 8,312,545 B2
  • Filed: 04/06/2007
  • Issued: 11/13/2012
  • Est. Priority Date: 04/06/2006
  • Status: Active Grant
First Claim
Patent Images

1. A method of detecting malware on a mobile platform, the method comprising:

  • selecting an executable on the mobile platform as a selected executable;

    obtaining a malware-free checksum for the selected executable;

    computing a recomputed checksum for the selected executable in response to the selection, wherein computing the recomputed checksum comprises deriving the recomputed checksum from a plurality of checksum parameters including a sum of all 32-bit values in a code section and an import section of the executable, a byte sequence at an entry point in the executable, a size descriptor of an import table, and a size descriptor of the import section;

    comparing the recomputed checksum with the malware-free checksum for the selected executable; and

    preventing execution of the executable following the selection when the recomputed checksum does not match the malware-free checksum, based on the comparison.

View all claims
  • 15 Assignments
Timeline View
Assignment View
    ×
    ×