Attachments
pwd: infected
(232.08 KiB) Downloaded 66 times
(232.08 KiB) Downloaded 66 times
A forum for reverse engineering, OS internals and malware analysis
Xylitol wrote:if someone know what is thatTrojan muldrop. Install WinpkFilter driver and drops actual rootkit named srenum.sys (playing around similar name of legitimate serenum.sys). Driver set on autostart. Can't tell anything else right now because test system died with help of this rootkit installation. However system is still accessible through Safe Mode.
3/42 >> 7.1%
http://www.virustotal.com/file-scan/rep ... 1309171302