reverse malware that self-closes upon finding open handles to its process

  • Status Closed
  • Budget $15 - $25 USD / hour
  • Total Bids 10

Project Description


I am trying to debug a malware which can find all open handles to itself and self-closes if one is found. Due to this I am having very little success when trying to WriteProcessMemory to it. I need someone who can figure out how the process is doing this and circumvent this functionality so I can continue my work. I have looked at calls to NtQuerySystemInformation but there arnt any that use SystemHandleInformation, so perhaps there is another way of enumerating open handles?

This will require knowledge of windows/kernel api functions, debugging and reverse engineering.

Please post in your bid how you will go about this project and how long it will take, I am not interested in copy/pasted CV's.


Get free quotes for a project like this

Looking to make some money?

  • Set your budget and the timeframe
  • Outline your proposal
  • Get paid for your work

Hire Freelancers who also bid on this project

    • Forbes
    • The New York Times
    • Time
    • Wall Street Journal
    • Times Online