nitter
David Kovar
@dckovar
19 Nov 2012
So, malware that injects via direct modification of VMDK. Any forensic artifacts in the VM?
2
Hal Pomeranz
@hal_pomeranz
19 Nov 2012
Replying to
@dckovar
@dckovar
The malware itself in the Start folder
Nov 19, 2012 · 8:52 PM UTC
