Microsoft · Filed Apr 29, 2025 · Published Jul 9, 2026 · verified — real USPTO data

New Patent Judges Apps by the Company They Keep to Catch Malware

Most malware detectors look at an app in isolation. Microsoft's new patent flips that around, teaching a model to judge whether an app is dangerous by looking at which other apps share its DNA.

Microsoft Patent: AI System for Detecting Malicious Apps — figure from US 2026/0195453 A1
Figure from the official USPTO publication.
Publication number US 2026/0195453 A1
Applicant Microsoft Technology Licensing, LLC
Filing date Apr 29, 2025
Publication date Jul 9, 2026
Inventors Mohit Sewak, Sree Hari Nagaralu, Sudarson Mothilal, Rituraj Singh Jodha, Emil Biju, Vasundhara Puttagunta, Venkatachalabathy Sr, Sai Supreeth Manyam
CPC classification 726/22
Grant likelihood Medium
Examiner DAVIS, ZACHARY A (Art Unit 2492)
Status Docketed New Case - Ready for Examination (Apr 8, 2026)
Parent application is a National Stage Entry of PCTUS2023083021 (filed 2023-12-08)
Document 15 claims

How Microsoft's guilt-by-association malware detector works

Imagine a neighborhood watch that flags a new resident not because of anything they've done, but because three of their closest friends have criminal records. That's roughly the logic behind this patent.

Microsoft describes a system that takes a large pool of apps, some known to be safe and some known to be malicious, and maps out which ones are "neighbors" of each other based on shared characteristics. Maybe they use the same code libraries, request the same device permissions, or connect to the same network addresses. The system then trains an AI model on those neighborhood relationships, not just on each app alone.

The key output is a reputation score for specific app traits, like a particular permission or a shared developer certificate. If that trait keeps showing up in apps that are malicious, it earns a bad reputation, and any new app carrying it gets flagged faster. It's a way of making the whole catalog of known apps teach the system something useful about every new one.

How the model scores features across neighboring app clusters

The patent describes a pipeline with several distinct steps:

  • Feature vectors: For each app, the system builds a list of measurable traits (called a feature vector). These might include permissions requested, URLs contacted, code signatures, or developer identifiers.
  • Neighbor mapping: The system identifies "neighboring" apps for each app in the dataset, essentially apps that resemble it across those traits. Think of it as clustering similar apps together.
  • Graph-aware model training: A threat detection model is trained not just on an individual app's features but on the features of its neighbors too. This is similar to graph neural network approaches, where context from connected nodes shapes predictions about each node.
  • Feature weight extraction: After training, the model outputs feature weights, numerical values reflecting how much each trait contributed to a threat classification. A weight close to zero means that trait didn't matter much; a high weight means it was important.
  • Reputation scoring: For each specific feature value (say, a particular API call or certificate), the system multiplies the app's own reputation score by the feature weight, then aggregates those products across all apps where that value appears. The result is a reputation score for the entity itself, independent of any single app.

That final reputation score means future apps can be evaluated partly by whether they share traits with historically bad actors, even before behavioral analysis runs.

What this means for Windows and enterprise security tools

Windows Defender and Microsoft's enterprise security platform Defender for Endpoint handle threat detection at enormous scale, processing millions of app evaluations daily. A system that can pre-score individual app traits, like a suspicious certificate or a rarely-used permission, means the model can make faster, more confident calls on apps it has never seen before.

For your device, this could mean malware gets caught earlier in the review pipeline, before it ever reaches a download page or slips through an enterprise app store. The broader signal here is that Microsoft is investing in relational threat intelligence, where the full catalog of known-bad software actively informs judgments about unknown software, rather than each app being evaluated in a vacuum.

Editorial take

This is solid, unglamorous security engineering. The idea of scoring app traits based on their association with known malware is not new in academic research, but patenting a specific pipeline that produces per-entity reputation scores from a trained model is a concrete implementation claim worth watching. If Microsoft ships this into Defender, it would meaningfully improve cold-start detection for novel malware families.

Which company should we read for you?

We track 17 companies here. Pro is the same weekly breakdown for any company you choose, delivered privately. Type a name and we'll scope it and send you a quote.

Get one Big Tech patent every Sunday

Plain English, intelligent commentary, no hype. Free.

Source. Full patent text and figures from the official USPTO publication PDF.

Editorial commentary on a publicly published patent application. Not legal advice.