首页>
外国专利>
Identifying an evasive malicious object based on a behavior delta
Identifying an evasive malicious object based on a behavior delta
展开▼
机译:根据行为增量识别逃避的恶意对象
展开▼
页面导航
摘要
著录项
相似文献
摘要
A security device may receive actual behavior information associated with an object. The actual behavior information may identify a first set of behaviors associated with executing the object in a live environment. The security device may determine test behavior information associated with the object. The test behavior information may identify a second set of behaviors associated with testing the object in a test environment. The security device may compare the first set of behaviors and the second set of behaviors to determine a difference between the first set of behaviors and the second set of behaviors. The security device may identify whether the object is an evasive malicious object based on the difference between the first set of behaviors and the second set of behaviors. The security device may provide an indication of whether the object is an evasive malicious object.
展开▼