首页>
外国专利>
MALWARE ANALYSIS AND VARIANTS DETECTION METHODS USING VISUALIZATION OF BINARY INFORMATION, APPARATUS FOR PROCESSING THE SAME METHOD
MALWARE ANALYSIS AND VARIANTS DETECTION METHODS USING VISUALIZATION OF BINARY INFORMATION, APPARATUS FOR PROCESSING THE SAME METHOD
展开▼
机译:使用二进制信息可视化的恶意软件分析和变异检测方法,用于处理相同方法的设备
展开▼
页面导航
摘要
著录项
相似文献
摘要
The present invention relates to a method for detecting and classifying a variant by analyzing features of a malignant code by extracting and visualizing binary information of the malignant code. The present invention includes a step of extracting multiple assembly code blocks formed of an assembly code by dissembling a binary file; a step of generating an operation command group from a command included in each of the assembly code blocks; a step of generating an image matrix by using the operation command group; a step of calculating the similarity of the image matrix; and a step of determining a variant relationship of malignant code binary based on the calculated similarity.
展开▼