Method and apparatus for extracting dynamically loaded files

Security analysis technology for efficiently extracting analysis files from dynamically loaded malicious apps

This technology relates to a method and apparatus for extracting dynamically loaded files. Specifically, it is a security analysis technology for efficiently extracting analysis files from dynamically loaded malicious apps.

In existing technologies, there was a need to efficiently extract only the files necessary for analysis from malware applications, especially those utilizing dynamic loading technology. To address this, the present technology proposes a configuration that includes a dynamic loading file sampling method for extracting files with extended importance, and a dynamic loading file apparatus for performing a second analysis to identify deleted files.

Accordingly, by extracting only the files necessary for analysis and identifying deleted files, this technology improves the efficiency of malware analysis, leading to more accurate and reliable results. It has practical value in the software, IT, and internet sectors.

‍

‍

Key Features

• Implements a security analysis technology that efficiently extracts analysis files from dynamically loaded malicious apps
• Extracts malicious app analysis files by sampling files created and deleted during the dynamic loading process
• By extracting only the files necessary for analysis and identifying deleted files, it improves the efficiency of malware analysis, leading to more accurate and reliable results
• Can be utilized to enhance security and reliability in the software and IT infrastructure sectors

‍