[ Author: Jonny Johnson (@jsecurity101) Recently a friend of mine, Nick Powers, sent me the gmer.sys driver that was involved with the Blackout activity and exposed functionality to terminate any process you wanted from a medium integrity level context.

Source: Binary Defense