Re: [Vol-users] Need to pick a malware for a demo
3 May
2012
3 May
'12
1:47 a.m.
have fun.
http://www.malwaredomainlist.com/mdl.php
--
[]s Fosforo
-------------------------------------------------------------
"Only the wisest and stupidest of men never change."
-Confusio
-------------------------------------------------------------
On Thu, May 3, 2012 at 1:32 AM, Mike Lambert <dragonforen(a)hotmail.com> wrote:
I've got a memory forensics presentation coming up
next week and I'd like to
use a sample that will illustrate a crossview example.
Specifically, I'd like to use an example that hides from pslist on the
running system (don't want a DKOM example) but we can find it using
Volatility.
I'd like it to be something running and not a process injection sample.
Does someone have a suggestion which one may provide a good illustration?
Thanks,
Mike
_______________________________________________
Vol-users mailing list
Vol-users(a)volatilityfoundation.org
http://lists.volatilityfoundation.org/mailman/listinfo/vol-users