×

Malicious content analysis using simulated user interaction without user involvement

  • US 9,912,698 B1
  • Filed: 07/20/2015
  • Issued: 03/06/2018
  • Est. Priority Date: 03/13/2013
  • Status: Active Grant
First Claim
Patent Images

1. A computer-implemented method comprising:

  • detecting an event requesting a user action on a graphical user interface during processing of a malicious content suspect within a virtual machine;

    in response to detection of the event requesting the user action on the graphical user interface, simulating a user interaction with a displayable feature of the graphic user interface without user intervention by at least registering with an operating system operating as part of the virtual machine to (i) intercept signaling to one or more graphics user interface (GUI) application programming interfaces (APIs) and (ii) send a command to the operating system to respond to the graphical user interface produced during processing of the malicious content suspect; and

    analyzing behaviors of the malicious content suspect in response to the simulated user interaction to determine whether the malicious content suspect should be declared as malicious.

View all claims
  • 7 Assignments
Timeline View
Assignment View
    ×
    ×