Search International and National Patent Collections

1. (WO2017151515) AUTOMATICALLY GROUPING MALWARE BASED ON ARTIFACTS

Pub. No.:    WO/2017/151515    International Application No.:    PCT/US2017/019731
Publication Date: Sat Sep 09 01:59:59 CEST 2017 International Filing Date: Tue Feb 28 00:59:59 CET 2017
IPC: G06F 21/55
G06F 21/56
H04L 29/06
Applicants: PALO ALTO NETWORKS, INC.
Inventors: ROSTAMI-HESARSORKH, Shadi
VASUDEVAN, Sudarshan
HEWLETT, Redington, William
ROSTAMABADI, Farshad
MALIK, Bilal
Title: AUTOMATICALLY GROUPING MALWARE BASED ON ARTIFACTS
Abstract:
Techniques for automatically grouping malware based on artifacts are disclosed. In some embodiments, a system, process, and/or computer program product for automatically grouping malware based on artifacts includes receiving a plurality of samples for performing automated malware analysis to generate log files based on the automated malware analysis; processing the log files to extract features associated with malware; clustering the plurality of samples based on the extracted features; and performing an action based on the clustering output.