首页>
外国专利>
Methods and systems for detecting a ransomware attack using entropy analysis and file update patterns
Methods and systems for detecting a ransomware attack using entropy analysis and file update patterns
展开▼
机译:使用熵分析和文件更新模式检测勒索软件攻击的方法和系统
展开▼
页面导航
摘要
著录项
相似文献
摘要
This disclosure and the exemplary embodiments described herein, provide methods and systems for detecting a ransomware infection in one or more files. According to an exemplary embodiment, a low frequency encryption analysis and a high frequency encryption analysis of a plurality of received files is performed to determine if the one or more of the files are encrypted. If a file is encrypted, a watcher is utilized to monitor file events associated with the files for determining if one or more of the files are infected with ransomware.
展开▼