| 发明名称 |
SYSTEM AND METHOD OF DETECTING MALICIOUS MULTIMEDIA FILES |
| 摘要 |
Systems and methods for detection of malicious exploitations in a multimedia file are disclosed. In one embodiment, such an approach includes parsing the compiled bytecode of a multimedia file to detect identified key instructions and determine if such key instructions are repeated in specific patterns that signify the presence of malicious exploitation. The approach may also include examining the contents of the constant pool table in a compiled multimedia file to detect specific shellcode strings that are indicative of presence of malicious exploitation. When the bytecode or the constant pool table indicates that malicious exploitation is present, an approach may be utilized to reduce instances of false positive identification of malicious exploitation. |
| 申请公布号 |
US2017026392(A1) |
申请公布日期 |
2017.01.26 |
| 申请号 |
US201315039761 |
申请日期 |
2013.12.27 |
| 申请人 |
LI Haifei;SUN Bing;XU Chong |
发明人 |
LI Haifei;SUN Bing;XU Chong |
| 分类号 |
H04L29/06;G06F17/30 |
主分类号 |
H04L29/06 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. At least one computer readable medium on which are stored instructions comprising instructions that when executed cause a programmable device to:
match an instruction in a multimedia file with a predetermined list of instructions; identify repetitions of the matched instruction in the multimedia file; calculate a distance between repetitions of the matched instruction; and identify the multimedia file as malicious responsive to equidistant repetitions of the matched instruction. |
| 地址 |
Burnaby CA |
