So we’ve been demoing Carbon Black Defense as an anti-virus solution and it terminated KillProc.exe for trying to scrape the memory of lsass.exe. Can anybody shed some light on this as to whether something malicious is actually going on?
Source code is here: http://blog.urbackup.org/77/killing-64bit-processes-from-a-32bit-nsis-installer
Thanks for the quick response. We’ll give it a look over.