Stealth rootkit - next generation worm

@ 2006/07/18
Like a tricked-out Batmobile, Rustock.A also makes use of some classic stealth techniques to avoid detection: it can recognize when virus detection software is running and then alter its behavior to avoid that software; it hides its driver in an alternate data stream (ADS), then removes itself from the list of hidden drivers; it doesn't hook into any native APIs; and finally, it is polymorphic, so that its code is constantly changing.

No comments available.

 

 

Copyright © 2001-2011 Madshrimps, All rights reserved.
Graphic Design by Dennis Kestelle, Programming by Maarten Menten, Overall Site design by John Meys

All information and graphics contained in Madshrimps are sole property of the Madshrimps crew and may not be reproduced or copied in any manner without written permission from us.

Madshrimps