cruelsister
Level 43
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Forum Veteran
Ransomware Musings
- Thread starter cruelsister
- Start date
It is advised to take all reviews with a grain of salt. In extreme cases some reviews use dramatization for entertainment purposes.
Awesome heads-up.
What are good products for preventing or cleaning up "SVChost Infections" ?
Thanks CruelSister
What are good products for preventing or cleaning up "SVChost Infections" ?
Thanks CruelSister
N
NullByte
Looks like this technique is very similar to userinit injection made by ZeusBotnet but here it's using svchost. What if you use winlogon to make an install on boot 
You may also like...
-
Video... Windows Hardening Guide 2025 Edition- Started by annaegorov
- Replies: 3
-
Microsoft Revokes Over 200 Certificates to Disrupt Ransomware Campaign- Started by Brownie2019
- Replies: 1
-
Unknown ransomware - .dthnrHygS extension (Session messenger note)- Started by matei33m
- Replies: 9
-
-
GOLD SALEM tradecraft for deploying Warlock ransomware (Sophos Research)- Started by Khushal
- Replies: 1