Search the Community
Showing results for tags 'setwindowshook'.
I’m currently analyzing an endpoint which most likely is compromised and need some help on breaking down what the malware has done. Due to possible more infected endpoints I’m out to identify the root of it – making it possible to determine if other endpoints are compromised. One day the machine (Win10) suddenly started to consume high amounts of CPU resources without any process showing this consumption in the task manager. This persisted for days and survived reboots. To look for techniques for persistence I did try Sysinternals Autoruns and ProcessExp, although there were no obvio