Registered
APPARATUS AND METHOD FOR DETECTING MALICIOUS SCRIPT
- Inventors
-
Jung Tae Kim, Song Jihyeon, Kim Ik Kyun, Lee Sang-Min, Kim Youngsoo, Jong-Hoon Lee, Kim Jonghyun, Park Jong Geun
- Application No.
-
17100541 (2020.11.20)
- Publication No.
-
20210240827 (2021.08.05)
- Registration No.
- 11783034 (2023.10.10)
- Country
- UNITED STATES
- Project Code
-
19HH6200, ICT infrastructure protection against intelligent malware threats,
Kim Jonghyun
- Abstract
- Disclosed herein are an apparatus and method for detecting a malicious script. The apparatus includes one or more processors and executable memory for storing at least one program executed by the one or more processors. The at least one program is configured to extract token-type features, each of which corresponds to a lexical unit, and tree-node-type features of an abstract syntax tree from an input script, to train two learning models to respectively learn two pieces of learning data that are generated in consideration of features extracted respectively from the token-type features and the node-type features as having the highest frequency, and to detect whether the script is a malicious script based on the result of ensemble-based malicious script detection performed for the script, which is acquired using an ensemble detection model generated from the two learning models.
- KSP Keywords
- Abstract syntax, Detection model, Executable memory, Learning data, Learning model, Malicious script, Syntax tree, abstract syntax tree, ensemble-based
- Family
-