A lot of improvements has been added in the last 2 months including security fixes, producing better report output and making the back end analysis engine more stable. The following are the list of updates: Antivirus scanning results now being taken care by VirusTotal Import Address Table Hook result Hex Dump output can be downloaded […]
MyX1: SSDT Detector and Remover
MyCERT has developed a tool to detect and restore changed address of API made by rootkit. MyX1 SSDT Detector and Remover is a part of our Malware Tracking project. Figure 1: Screenshot showing MyX1 SSDT The application relies on two two (2) files will be use upon execution: 1. ssdt.sys is used to list all […]