Detection of malicious computer executables
Patent
·
OSTI ID:986572
- Los Alamos, NM
A method of detecting malicious binary executable files is accomplished by inputting a binary executable file; converting the binary executable file to byte hexadecimal text strings; calculating the frequency of each byte pattern in the byte hexadecimal text strings; selecting characteristic byte pattern frequencies as discriminating features; classifying the discriminating features as malicious or benign; labeling the binary executable file as malicious or benign; and outputting the labeled malicious or benign binary executable file.
- Research Organization:
- Los Alamos National Laboratory (LANL), Los Alamos, NM (United States)
- Sponsoring Organization:
- USDOE
- DOE Contract Number:
- W-7405-ENG-36
- Assignee:
- Los Alamos National Security, LLC (Los Alamos, NM)
- Patent Number(s):
- 7,519,998
- Application Number:
- 10/900,697; TRN: US201017%%412
- OSTI ID:
- 986572
- Country of Publication:
- United States
- Language:
- English
Similar Records
Deep PDF parsing to extract features for detecting embedded malware.
Efficient Aho-Corasick String Matching on Emerging Multicore Architectures
Static analysis of programs with application to malicious code detection
Technical Report
·
Thu Sep 01 00:00:00 EDT 2011
·
OSTI ID:986572
Efficient Aho-Corasick String Matching on Emerging Multicore Architectures
Book
·
Thu Dec 12 00:00:00 EST 2013
·
OSTI ID:986572
+1 more
Static analysis of programs with application to malicious code detection
Technical Report
·
Thu Oct 01 00:00:00 EDT 1992
·
OSTI ID:986572