Registered
APPARATUS AND METHOD FOR DETECTING MALICIOUS SCRIPT
- Inventors
-
Song Jihyeon, Jung Tae Kim, Kim Ik Kyun, Kim Jonghyun, Lee Sang-Min, Jong-Hoon Lee, Kim Youngsoo, Park Jong Geun
- Application No.
-
17100541 (2020.11.20)
- Publication No.
-
20210240827 (2021.08.05)
- Registration No.
- 11783034 (2023.10.10)
- Country
- UNITED STATES
- Project Code
-
19HH6200, ICT infrastructure protection against intelligent malware threats,
Kim Jonghyun
- Abstract
- Disclosed herein are an apparatus and method for detecting a malicious script. The apparatus includes one or more processors and executable memory for storing at least one program executed by the one or more processors. The at least one program is configured to extract token-type features, each of which corresponds to a lexical unit, and tree-node-type features of an abstract syntax tree from an input script, to train two learning models to respectively learn two pieces of learning data that are generated in consideration of features extracted respectively from the token-type features and the node-type features as having the highest frequency, and to detect whether the script is a malicious script based on the result of ensemble-based malicious script detection performed for the script, which is acquired using an ensemble detection model generated from the two learning models.
- KSP Keywords
- Abstract syntax, Detection model, Executable memory, Learning data, Malicious script, Syntax tree, abstract syntax tree, ensemble-based, learning models
- Family
-