al-khaser is a PoC "malware" application with good intentions that aims to stress your anti-malware system. It performs a bunch of common malware tricks with the goal of seeing if you stay under the radar.
Sorry, binaries have been removed for now as they were triggering Google's Safe Browsing heuristics.
Please, if you encounter any of the anti-analysis tricks which you have seen in a malware, don't hesitate to contribute.
Registry key value artifacts
Registry Keys artifacts
File system artifacts
Hardware Device information
System Firmware Tables
DLL Exports and Loaded DLLs
NtQueryLicenseValue with Kernel-VMDetection-Private as license value.
Pull requests welcome. Please read the Developer Guidelines on our wiki if you wish to contribute to the project.