I know this is a longshot but a long time ago when virussign was completely free, I downloaded the usual 500 a day pack and found a really vicious piece of trojan/sality that I accidentally deleted. I dont remember the exact name except it was a trojan with sality. It shows up in the process list but if you try to kill it then it will give you a bsod. The original exe had a picture of the show "Arrow" on it. If anyone can help me get information on it again so I can download it I would appreciate that a lot.
A forum for reverse engineering, OS internals and malware analysis
Or if anyone has a way to download their entire free database that would be even better lol
And two hard boiled eggs!
Buster_BSA wrote:And two hard boiled eggs!Lmao I knew it was pointless. I was just hoping somebody was collecting them throughout the months and happened to remember it. Is there a list of all the sality variants I can find?
Your description is too generic. From It - malware process set as system "Critical" (RtlSetProcessIsCritical), popular "feature" of noob malware and it in wide variety of cheap malware obfuscators.
Ring0 - the source of inspiration
