Unable to connect to rootkit INVALID_HANDLE_VALUE

[ozohhub]

I disabled DSE and even tried on test mode but can't load the driver. How can i fix this? @ZeroMemoryEx

[ZeroMemoryEx]

Hello @ozohhub ,the rootkit currently works only when DSE is disabled, You can disable DSE by opening cmd as an administrator and running the following command:

bcdedit /set testsigning on

Waiting for your feedback and happy hacking!

[ozohhub]

I tried testsigning on but still can’t load the driver. Is there a specific way to load the driver? (Like command: sc create asdf) I also tried installing the driver with the inf file from this repo but didn’t work. @ZeroMemoryEx

[ZeroMemoryEx]

@ozohhub Did you place the driver chaos-rootkit.sys in the same directory as rin3-gui.exe? Also, can you run DbgView, then run the rootkit and send a screenshot of the output in DbgView?

[ZeroMemoryEx]

also you should run the ring3-gui.exe as an administrator @ozohhub