首页> 外国专利> SYSTEMS AND METHODS FOR PROTECTING AGAINST MALWARE CODE INJECTIONS IN TRUSTED PROCESSES BY A MULTI-TARGET INJECTOR

SYSTEMS AND METHODS FOR PROTECTING AGAINST MALWARE CODE INJECTIONS IN TRUSTED PROCESSES BY A MULTI-TARGET INJECTOR

机译：用多目标注射器保护受信任过程中的恶意代码入侵的系统和方法

页面导航

摘要
著录项
相似文献

摘要

Disclosed are systems and methods for detecting multiple malicious processes. The described techniques identify a first process and a second process launched on a computing device. The techniques receive from the first process a first execution stack indicating at least one first control point used to monitor at least one thread associated with the first process, and receive from the second process a second execution stack indicating at least one second control point used to monitor at least one thread associated with the second process. The techniques determine that both the first process and the second process are malicious using a machine learning classifier on the at least one first control point and the at least one second control point. In response, the techniques generate an indication that an execution of the first process and the second process is malicious.

机译：公开了用于检测多个恶意进程的系统和方法。所描述的技术识别在计算设备上启动的第一过程和第二过程。所述技术从第一进程接收指示用于监视与第一进程相关联的至少一个线程的至少一个第一控制点的第一执行栈，并且从第二进程接收指示用于执行与之相关的至少一个第二控制点的第二执行栈。监视至少一个与第二进程关联的线程。该技术使用在至少一个第一控制点和至少一个第二控制点上的机器学习分类器来确定第一过程和第二过程都是恶意的。作为响应，这些技术生成指示第一过程和第二过程的执行是恶意的。

著录项

公开/公告号US2020210580A1

专利类型
公开/公告日2020-07-02

原文格式PDF
申请/专利权人 ACRONIS INTERNATIONAL GMBH;
展开▼

申请/专利号US202016812615
发明设计人 VLADIMIR STROGOV;SERGUEI BELOUSSOV;ALEXEY DOD;VALERY CHERNYAKOVSKY;ANATOLY STUPAK;SERGEY ULASEN;NIKOLAY GREBENNIKOV;VYACHESLAV LEVCHENKO;STANISLAV PROTASOV;
展开▼

申请日2020-03-09
分类号G06F21/56;G06N20;G06N5/04;
国家 US
入库时间 2022-08-21 11:21:56

相似文献

专利
外文文献
中文文献