The malware state of the art continues to improve. In particular, the latest version of the TDL rootkit family--aka Olmarik, TDSS, Alureon--contains sophisticated mechanisms for bypassing security features built into 64-bit versions of Microsoft Windows Vista and Windows 7, and can download additional, standalone malware applications.
The fourth version of the TDL malware first appeared in August 2010 and contained sophisticated new techniques for defeating security measures. "The most radical were those made to its mechanisms for self-embedding into the system and surviving reboot," said Aleksandr Matrosov, a senior malware researcher at ESET, in an analysis of TDL4 published by Infosec Institute.
- 64-Bit Version of ZeuS Comes with Improved Evasion, Rootkit Capabilities
- 64-bit ZBOT Leverages Tor, Improves Evasion Techniques
- Privatefirewall - 64bit support
- Researchers Spot 64-Bit Version of ZeuS Malware
- Exploiting Internet Explorer 11 64-bit on Windows 8.1 Preview
- New Xpiro Infectors Are Persistent and Can Infect Both 32-bit and 64-bit Files