HitmanPro Alert is able to detect and neutralize almost all of the new malware, banking trojan or ransomware. The program indeed, is able to determine when key features of the operating system are required or modified by third party programs, especially if they are not reliable.
If I well remember HPA uses the hardware registers (MSR) made available in Intel CPU (Core i3, i5 and i7 processors from the second generation and beyond) in order to perform Control Flow Integrity (CFI) analysis, supported in hardware.
The CFI analysis allows you to prevent operations that are not foreseen in the original application and lock the ROP (Return-oriented programming) attacks.
Such attacks generally take advantage of portions of legitimate code, already present on the system, to perform malicious actions.
It is a great piece of software according to my POV