Hacking Exposed
Hacking Exposed
Hacking Exposed
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Bypassing Detection<br />
• Creates the following mutexes to ensure that only one instance of itself<br />
is running in memory:<br />
– @ssd[random number] (i.e. “@ssd094”, “@ssd083A1”)<br />
– Global\Spooler_Perf_Library_Lock_PID_01F<br />
– Global\{CAA6BD26-6C7B-4af0-95E2-53DE46FDDF26}<br />
– Global\{4A9A9FA4-5292-4607-B3CB-EE6A87A008A3}<br />
– Global\{E41362C3-F75C-4ec2-AF49-3CB6BCA591CA}<br />
– Global\{85522152-83BF-41f9-B17D-324B4DFC7CC3}<br />
– Global\{B2FAC8DC-557D-43ec-85D6-066B4FBC05AC}<br />
– Global\{5EC171BB-F130-4a19-B782-B6E655E091B2}