Computer-implemented tool that facilitates malware detection
| DWPI Title: Computing system for generating summary of function in computer-executable code, has memory that store instructions, which cause processor to provide computer-executable code to first sequence to sequence model, summary is output for presentment on display associated with system to analyst |
| Abstract: Described herein are technologies related to generation of a summary of a function in binary code for review by an analyst. A first sequence to sequence model is configured to receive binary code (or a derivative thereof) and translate the binary code to an intermediate representation of the binary code, wherein the intermediate representation approximates source code for the binary code. A second sequence to sequence model is configured to receive the intermediate representation of the binary code and translate the intermediate representation to a human-readable summary of the binary code. |
| Use: Computing system for generating summary of function in computer-executable code. |
| Advantage: The data cleaning, and preprocessing techniques facilitate training the sequence to sequence models to allow, such models to output accurate translations. |
| Novelty: The computing system (102) comprises a memory (110) that store instructions, which cause a processor (108) to provide a computer-executable code (112) to a first sequence to sequence model (114). The model outputs an intermediate representation (116) of a function based upon the code, where the representation is an approximation of a source code for the function. The intermediate representation is set to a second sequence to sequence model, which outputs a summary (120) of the function in a human-readable language based on the representation. The second sequence to sequence model is trained based upon second training data. |
| Filed: 1/21/2021 |
| Application Number: US17154358A |
| Tech ID: SD 15421.0 |
| This invention was made with Government support under Contract No. DE-NA0003525 awarded by the United States Department of Energy/National Nuclear Security Administration. The Government has certain rights in the invention. |
| Data from Derwent World Patents Index, provided by Clarivate All rights reserved. Republication or redistribution of Clarivate content, including by framing or similar means, is prohibited without the prior written consent of Clarivate. Clarivate and its logo, as well as all other trademarks used herein are trademarks of their respective owners and used under license. |