mirror of https://github.com/dirtbags/moth.git
12 lines
532 B
Markdown
12 lines
532 B
Markdown
This category contains live samples of real malware. If you participate
|
|
in this category, you agree to take all proper precautions: running in
|
|
a virtual machine, properly cleaning your system afterwards, and not
|
|
exposing any networks to these samples.
|
|
|
|
YOU HAVE BEEN WARNED!
|
|
|
|
A user is complaining of random blue screens. Their computer is
|
|
running slowly. When you inspect the system you find a file named
|
|
malware.sys. Reverse engineer it and answer the following question.
|
|
|
|
What is the name of the DeviceObject for the kernel code? |