Search found 1 match
Search found 1 match • Page 1 of 1
- Thu Mar 22, 2018 7:52 am
- Forum: Malware
- Topic: Sample of kernel-mode malware, which modifies allocated memory in kernel
- Replies: 1
- Views: 2474
Hi all, I'm looking for a kernel-mode driver, which accesses (modifies or reads) the content of allocated memory. This memory was allocated before by a legal driver. I'm considering the case: a legitimate driver allocates memory by ExAllocatePoolWithTag routine and malware driver accesses these data...