发明名称 |
APPARATUS AND METHOD FOR DETECTING MALICIOUS CODE |
摘要 |
Provided are an apparatus and method for detecting a malicious code. The method for detecting a malicious code includes detecting a call of one or more Application Program Interfaces (APIs) included in a monitoring group, acquiring a memory address of a caller of the detected call of the API, checking an attribute of a memory region corresponding to the acquired memory address, and determining whether a code written in the memory region is a malicious code based on the attribute. |
申请公布号 |
US2017116417(A1) |
申请公布日期 |
2017.04.27 |
申请号 |
US201615333849 |
申请日期 |
2016.10.25 |
申请人 |
SAMSUNG SDS CO., LTD. |
发明人 |
JHI Yoon-Chan;HWANG Sung-Jin |
分类号 |
G06F21/56;G06F21/55 |
主分类号 |
G06F21/56 |
代理机构 |
|
代理人 |
|
主权项 |
1. A method for detecting a malicious code, the method comprising:
detecting a call of one or more Application Program Interfaces (APIs) included in a monitoring group; acquiring a memory address of a caller of the detected call of the API; checking an attribute of a memory region corresponding to the acquired memory address; and determining whether a code written in the memory region is a malicious code based on the attribute. |
地址 |
Seoul KR |