Guntior - the story of an advanced bootkit that doesn't rely on Windows disk drivers
released on 2024-05-08 @ 01:32:21 PM
Amid the rise of bootkits at the time, a dropper was captured in-the-wild and posted on a malware tracker. The malware was called "Guntior", named after the device object its authors had chosen for it (\Device\Guntior). The name also appears in AV detections.