METHOD FOR RELOADING OS THROUGH NETWORK ON ANALYSIS SYTEM OF MALICIOUS CODE BASED ON CULTURE

摘要

The present invention relates to a culture-based system for analyzing malicious codes which infect culture agents, cultures and analyzes the malicious codes. The system comprises: an analysis managing server which stores operating system (OS) images of each culture analysis agent and transmits predetermined wakeup signals for booting to a relevant culture analysis agent every time any culture analysis agent is shut down; at least one culture analysis agent that downloads the OS image thereof from the analysis managing server, immediately recovers an OS infected by malicious code culture, and then cultures and analyzes new malicious code; and a router which limits a traffic bandwidth of a network to block malicious traffic, which can be released from the culture analysis agent to the outside. According to the present invention, a network and a host operation environment for safe culture and analysis of malicious codes are provided to construct the culture-based system for analyzing a malicious code which can cope with anti-virtual-machine malicious codes, inactive in a virtual-machine environment. The culture agent of which culture analysis has been finished downloads the OS image thereof stored in a remote host, quickly recovers the OS to be uninfected, and then can culture and analyze a new malicious code.