| 发明名称 | Techniques for detecting malicious activity | ||
| 摘要 | Techniques for detecting malicious activity are disclosed. In one particular embodiment, the techniques may be realized as a method for detecting malicious activity including receiving information indicating a first process being executed, the first process including a plurality of first process components, receiving information specific to at least one of the plurality of first process components, determining whether the first process exhibits malicious behavior; and identifying which of the plurality of first process components is responsible for the malicious behavior based on the received information. | ||
| 申请公布号 | US9141795(B2) | 申请公布日期 | 2015.09.22 |
| 申请号 | US201313886859 | 申请日期 | 2013.05.03 |
| 申请人 | Symantec Corporation | 发明人 | Satish Sourabh |
| 分类号 | G06F21/56;G06F21/55;G06F21/57 | 主分类号 | G06F21/56 |
| 代理机构 | Wilmer Cutler Pickering Hale and Dorr LLP | 代理人 | Wilmer Cutler Pickering Hale and Dorr LLP |
| 主权项 | 1. A method for detecting malicious activity comprising: receiving information indicating a first process being executed, the first process including a plurality of first process components; receiving information specific to at least one of the plurality of first process components; determining whether the first process exhibits malicious behavior; determining whether a second process separate from the first process exhibits malicious behavior, the second process including second process components; determining whether one of the second process components is the same as one of the first process components when the first and second processes exhibit malicious behavior; and in the event it is determined that one of the second process components is the same as one of the first process components when the first and second processes exhibit malicious behavior, implementing a predetermined action. | ||
| 地址 | Mountain View CA US | ||