CN103294951B - 一种基于文档型漏洞的恶意代码样本提取方法及*** - Google Patents
一种基于文档型漏洞的恶意代码样本提取方法及*** Download PDFInfo
- Publication number
- CN103294951B CN103294951B CN201210497712.XA CN201210497712A CN103294951B CN 103294951 B CN103294951 B CN 103294951B CN 201210497712 A CN201210497712 A CN 201210497712A CN 103294951 B CN103294951 B CN 103294951B
- Authority
- CN
- China
- Prior art keywords
- document
- shellcode
- malicious code
- file
- code sample
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Landscapes
- Information Transfer Between Computers (AREA)
Abstract
Description
Claims (6)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201210497712.XA CN103294951B (zh) | 2012-11-29 | 2012-11-29 | 一种基于文档型漏洞的恶意代码样本提取方法及*** |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201210497712.XA CN103294951B (zh) | 2012-11-29 | 2012-11-29 | 一种基于文档型漏洞的恶意代码样本提取方法及*** |
Publications (2)
Publication Number | Publication Date |
---|---|
CN103294951A CN103294951A (zh) | 2013-09-11 |
CN103294951B true CN103294951B (zh) | 2016-09-07 |
Family
ID=49095793
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201210497712.XA Active CN103294951B (zh) | 2012-11-29 | 2012-11-29 | 一种基于文档型漏洞的恶意代码样本提取方法及*** |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN103294951B (zh) |
Families Citing this family (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20160381051A1 (en) * | 2015-06-27 | 2016-12-29 | Mcafee, Inc. | Detection of malware |
CN106874758B (zh) * | 2016-08-22 | 2021-03-16 | 创新先进技术有限公司 | 一种识别文档代码的方法和装置 |
CN106372508B (zh) * | 2016-08-30 | 2020-05-12 | 北京奇虎科技有限公司 | 恶意文档的处理方法及装置 |
CN109768945A (zh) * | 2017-11-09 | 2019-05-17 | 国网青海省电力公司电力科学研究院 | 一种任意文件下载漏洞的检测装置及发现方法 |
CN109472142A (zh) * | 2017-12-29 | 2019-03-15 | 北京安天网络安全技术有限公司 | 一种恶意代码自动处置方法及*** |
CN110717180B (zh) * | 2018-07-13 | 2021-09-28 | 北京安天网络安全技术有限公司 | 基于自定位行为的恶意文档检测方法、***及存储介质 |
CN110866252A (zh) * | 2018-12-21 | 2020-03-06 | 北京安天网络安全技术有限公司 | 一种恶意代码检测方法、装置、电子设备及存储介质 |
CN110348214B (zh) * | 2019-07-16 | 2021-06-08 | 电子科技大学 | 对恶意代码检测的方法及*** |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101673326A (zh) * | 2008-09-11 | 2010-03-17 | 北京理工大学 | 基于程序执行特征的网页木马检测方法 |
CN101820419A (zh) * | 2010-03-23 | 2010-09-01 | 北京大学 | 一种挂马网页中网页木马挂接点自动定位方法 |
CN101826139A (zh) * | 2009-12-30 | 2010-09-08 | 厦门市美亚柏科信息股份有限公司 | 一种非可执行文件挂马检测方法及其装置 |
Family Cites Families (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7228563B2 (en) * | 2003-02-06 | 2007-06-05 | Symantec Corporation | Shell code blocking system and method |
-
2012
- 2012-11-29 CN CN201210497712.XA patent/CN103294951B/zh active Active
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101673326A (zh) * | 2008-09-11 | 2010-03-17 | 北京理工大学 | 基于程序执行特征的网页木马检测方法 |
CN101826139A (zh) * | 2009-12-30 | 2010-09-08 | 厦门市美亚柏科信息股份有限公司 | 一种非可执行文件挂马检测方法及其装置 |
CN101820419A (zh) * | 2010-03-23 | 2010-09-01 | 北京大学 | 一种挂马网页中网页木马挂接点自动定位方法 |
Also Published As
Publication number | Publication date |
---|---|
CN103294951A (zh) | 2013-09-11 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN103294951B (zh) | 一种基于文档型漏洞的恶意代码样本提取方法及*** | |
JP5992622B2 (ja) | 悪意あるアプリケーション診断装置及び方法 | |
KR102415971B1 (ko) | 악성 모바일 앱 감지 장치 및 방법 | |
CN104834859B (zh) | 一种Android应用中恶意行为的动态检测方法 | |
KR101554633B1 (ko) | 악성 코드 검출 장치 및 그 방법 | |
CN109753800A (zh) | 融合频繁项集与随机森林算法的Android恶意应用检测方法及*** | |
CN106295348B (zh) | 应用程序的漏洞检测方法及装置 | |
US10748185B2 (en) | Method for identifying bundled software and apparatus therefor | |
CN106951780A (zh) | 重打包恶意应用的静态检测方法和装置 | |
CN104520871A (zh) | 漏洞矢量信息分析 | |
CN103886229B (zh) | 一种提取pe文件特征的方法及装置 | |
CN104462962B (zh) | 一种检测未知恶意代码和二进制漏洞的方法 | |
CN103607413A (zh) | 一种网站后门程序检测的方法及装置 | |
CN113158197B (zh) | 一种基于主动iast的sql注入漏洞检测方法、*** | |
JP2019514119A (ja) | ハイブリッドプログラムバイナリ特徴の抽出及び比較 | |
CN105488414A (zh) | 一种防止恶意代码探测虚拟环境的方法及*** | |
CN105631325A (zh) | 一种恶意应用程序检测方法和装置 | |
CN103886258A (zh) | 一种病毒检测方法及装置 | |
CN105975302A (zh) | 一种应用安装方法及终端 | |
CN115168847A (zh) | 应用补丁生成方法、装置、计算机设备及可读存储介质 | |
Feichtner et al. | Obfuscation-resilient code recognition in Android apps | |
CN103390129A (zh) | 检测统一资源定位符安全性的方法和装置 | |
CN109670317B (zh) | 一种基于原子控制流图的物联网设备继承性漏洞挖掘方法 | |
CN103095714A (zh) | 一种基于木马病毒种类分类建模的木马检测方法 | |
CN106101086A (zh) | 程序文件的云检测方法及***、客户端、云端服务器 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
CP03 | Change of name, title or address |
Address after: 100080 Beijing city Haidian District minzhuang Road No. 3, Tsinghua Science Park Building 1 Yuquan Huigu a Patentee after: Beijing ahtech network Safe Technology Ltd Address before: 100080 Haidian District City, Zhongguancun, the main street, No. 1 Hailong building, room 1415, room 14 Patentee before: Beijing Antiy Electronic Installation Co., Ltd. |
|
CP03 | Change of name, title or address | ||
PE01 | Entry into force of the registration of the contract for pledge of patent right |
Denomination of invention: Malicious code sample extraction method and system based on document type bug Effective date of registration: 20190719 Granted publication date: 20160907 Pledgee: Bank of Longjiang, Limited by Share Ltd, Harbin Limin branch Pledgor: Beijing ahtech network Safe Technology Ltd Registration number: 2019230000008 |
|
PE01 | Entry into force of the registration of the contract for pledge of patent right | ||
PC01 | Cancellation of the registration of the contract for pledge of patent right |
Date of cancellation: 20210810 Granted publication date: 20160907 Pledgee: Bank of Longjiang Limited by Share Ltd. Harbin Limin branch Pledgor: BEIJING ANTIY NETWORK TECHNOLOGY Co.,Ltd. Registration number: 2019230000008 |
|
PC01 | Cancellation of the registration of the contract for pledge of patent right |