Method to Detect and Remediate Malicious HTA Applications
|
IP.com Disclosure Number: IPCOM000214642D
|
Publication Date: 31-Jan-2012 |
Publishing Venue
The IP.com Prior Art Database
Abstract
Copyright
Copyright © 2012 Symantec Corporation. All rights reserved.
Language
English (United States)
Country
United States
Document File
3 pages / 202.2 KB
Page 01 of 3
Method to Detect and Remediate Malicious HTA Applications
James Yun
Symantec Corporation
Abstract
This invention will monitor registry and file events from mshta.exe and flag applications as malicious based on certain patterns.
Copyright © 2012 Symantec Corporation. All rights reserved. 1
Page 02 of 3
Copyright © 2012 Symantec Corporation. All rights reserved. Symantec and the Symantec Logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners. For a full list of Symantec trademarks, please visit http://www.symantec.com/about/profile/policies/trademarks/currentlist.jsp
Any Symantec products described in this document are distributed under licenses restricting their use, copying, distribution, and decompilation/reverse engineering. No part of this document may be reproduced in any form by any means without prior written authorization of Symantec Corporation and its licensors, if any.
THE DOCUMENTATION IS PROVIDED "AS IS" AND ALL EXPRESS OR IMPLIED CONDITIONS, REPRESENTATIONS AND WARRANTIES, INCLUDING ANY IMPLIED WARRANTY OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE OR NON-INFRINGEMENT, ARE DISCLAIMED, EXCEPT TO THE EXTENT THAT SUCH DISCLAIMERS ARE HELD TO BE LEGALLY INVALID. SYMANTEC CORPORATION SHALL NOT BE LIABLE FOR INCIDENTAL OR CONSEQUENTIAL DAMAGES IN CONNECTION WITH THE FURNISHING, PERFORMANCE, OR USE OF THIS DOCUMENTATION. THE INFORMATION CONTAINED IN THIS DOCUMENTATION IS SUBJECT TO CHANGE WITHOUT NOTICE.
Symantec Corporation 350 Ellis Street Mountain View, CA 94043 United States
http://www.symantec.com 2
Copyright ©...
