The malware state of the art continues to improve. In particular, the latest version of the TDL rootkit family--aka Olmarik, TDSS, Alureon--contains sophisticated mechanisms for bypassing security features built into 64-bit versions of Microsoft Windows Vista and Windows 7, and can download additional, standalone malware applications.
The fourth version of the TDL malware first appeared in August 2010 and contained sophisticated new techniques for defeating security measures. "The most radical were those made to its mechanisms for self-embedding into the system and surviving reboot," said Aleksandr Matrosov, a senior malware researcher at ESET, in an analysis of TDL4 published by Infosec Institute.
- Emsisoft Anti-Malware 11 ships with native 64-bit build
- Havex RAT Authors Self-Sign Malware to Appear from IBM, 64-Bit Version Spotted
- KIVARS With Venom: Targeted Attacks Upgrade with 64-bit “Support”
- 64bit OSX hacking with Metasploit
- 64-Bit Version of ZeuS Comes with Improved Evasion, Rootkit Capabilities
- 64-bit ZBOT Leverages Tor, Improves Evasion Techniques