Win32/Gapz: New Bootkit Technique

Posted on 7/18/2018 by jasonfrovich

Win32/Gapz’s new bootkit technique modifies just 4 bytes of the original VBR, has an enhanced dropper and complex kernel mode functionality, and evades ELAM.

The post Win32/Gapz: New Bootkit Technique appeared first on WeLiveSecurity

Source link

« Back home