Analyzing a Stuxnet Infection with the Sysinternals Tools, Part 3

In the first post of this series , I used Autoruns , Process Explorer and VMMap to statically analyze a Stuxnet infection on Windows XP. That phase of the investigation revealed that Stuxnet infected multiple processes, launched infected processes that…(read more)