More fun experiments with malware part 2
-
-
Virtual PC:
VMWare Workstation 15 Player
Windows 7 x64
KIS 20.0.1.780 de app + drv verifier enabled
Reproduction steps:
This dump got created after KIS was able to start again, i think something was still wrong but i am not sure about the cause.
@helios_07 Hello!
Is there any chance to reproduce it again with some conditions?
Conditions:
-
install KTS
-
Start procmon
-
enable traces in KTS
-
restart KTS (at this moment KTS will get process ID's from procmon and it'll be much more easy to understand what had happened)
-
try reproduce dump
-
-
@helios_07 Hello!
Is there any chance to reproduce it again with some conditions?
Conditions:
-
install KTS
-
Start procmon
-
enable traces in KTS
-
restart KTS (at this moment KTS will get process ID's from procmon and it'll be much more easy to understand what had happened)
-
try reproduce dump
-
Hello! It looks like you're interested in this conversation, but you don't have an account yet.
Getting fed up of having to scroll through the same posts each visit? When you register for an account, you'll always come back to exactly where you were before, and choose to be notified of new replies (either via email, or push notification). You'll also be able to save bookmarks and upvote posts to show your appreciation to other community members.
With your input, this post could be even better 💗
Register Login© 2026 АО «Лаборатория Касперского»