	US 12,147,534 B2
	Graph-based classification of elements
Assaf Ben-David, Tel Aviv (IL); and Yonatan Perry, Neve Yarak (IL)
Assigned to Cybereason Inc.
Filed by Cybereason Inc., Boston, MA (US)
Filed on Apr. 6, 2021, as Appl. No. 17/223,249.
Application 17/223,249 is a continuation in part of application No. 17/065,362, filed on Oct. 7, 2020, granted, now 11,777,985.
Claims priority of provisional application 63/005,621, filed on Apr. 6, 2020.
Prior Publication US 2021/0312042 A1, Oct. 7, 2021
This patent is subject to a terminal disclaimer.
Int. Cl. G06F 21/55 (2013.01); G06F 16/901 (2019.01); G06N 3/04 (2023.01)

CPC G06F 21/554 (2013.01) [G06F 16/9024 (2019.01); G06N 3/04 (2013.01)]

20 Claims

1. A method of determining a maliciousness level of an element using a hypergraph of neighbors comprising:

scanning a computing device to identify an element with a maliciousness level that is at least partly undetermined;

generating, for the identified element, a hypergraph of neighbor target elements found in a data source, the hypergraph comprising a set of nodes and a set of edges, wherein the set of nodes represents the neighbor target elements, and the set of edges represents connections between the neighbor target elements;

providing the hypergraph as an input to a classifier;

classifying, using the classifier, nodes and edges in the hypergraph;

generating a maliciousness level profile for the element based on aggregation of nodes and edges in the hypergraph; and

performing an action based on the maliciousness level profile.