A SYSTEM FOR DETECTING OBFUSCATION OR PACKING OF AN APPLICATION USING MACHINE LEARNING AND CONCEALED MALWARE DETECTION AND CLASSIFICATION SYSTEM AND METHODS INCLUDING IT

摘要

The present invention relates to a concealed malware detection and classification system in which prior analysis of whether an application is obfuscated or packed (encrypted or compressed) is performed, and specialized malware detection and classification algorithms are executed in response to the obfuscated and packed cases. As a technology, a concealment inspection unit that analyzes a malicious code diagnosis target application to determine whether it is obfuscated or packed, a data extraction unit that extracts feature data from an application, and data conversion that generates pattern data by patterning feature data extracted by the data extraction unit And a malware diagnosis unit for diagnosing whether the pattern data generated by the data conversion unit includes malicious code using machine learning in which a conventional malicious code pattern is learned.