RawDisk
Description
RawDisk is a legitimate commercial driver from the EldoS Corporation that is used for interacting with files, disks, and partitions. The driver allows for direct modification of data on a local computer’s hard drive. In some cases, the tool can enact these raw disk modifications from user-mode processes, circumventing Windows operating system security features.
Names
| Name |
|---|
| RawDisk |
Category
Tools
Information
- https://web.archive.org/web/20160303200515/https://operationblockbuster.com/wp-content/uploads/2016/02/Operation-Blockbuster-Destructive-Malware-Report.pdf
- https://www.itprotoday.com/windows-78/eldos-provides-raw-disk-access-vista-and-xp
Mitre Attack
Alienvault Otx
Other Information
Uuid
327e1f94-7307-4f57-a992-f7e7cc206f5e
Last Card Change
2022-12-30