| 发明名称 |
APPARATUS AND METHOD FOR DETECTING MALICIOUS CODE, MALICIOUS CODE VISUALIZATION DEVICE AND MALICIOUS CODE DETERMINATION DEVICE |
| 摘要 |
An apparatus for detecting a malicious code includes: a malicious code visualization device for generating a graph for a malicious file by using strings in the malicious file, a connection among the strings and entropies for the strings and establishing a malicious code database with the generated graph for the malicious file. The apparatus further includes a malicious code determination device for generating a graph for a specific executable file and comparing the graph for the executable file with graphs for malicious files stored in the malicious code database to detect a malicious code in the executable file. |
| 申请公布号 |
US2012240231(A1) |
申请公布日期 |
2012.09.20 |
| 申请号 |
US201213397780 |
申请日期 |
2012.02.16 |
| 申请人 |
SOHN SEON-GYOUNG;CHANG BEOM HWAN;NA JUNG-CHAN;ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE |
发明人 |
SOHN SEON-GYOUNG;CHANG BEOM HWAN;NA JUNG-CHAN |
| 分类号 |
G06F21/00 |
主分类号 |
G06F21/00 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
|
| 地址 |
|
