Yesterday, analysts at SophosLabs looked at a new ZeroAccess variant using some new tricks to hide itself.
Or should I say old ones, which are seemingly rediscovered.
In his article, Sophos researcher James Wyke describes how ZeroAccess typically stores it’s local data, but in this variant explains that “the malware authors are also using the right-to-left override and several other non-printable Unicode characters in both file paths and registry entries to further hinder identification and removal of the ZeroAccess components.”
Did you know the term ‘malware’ refers to more than just viruses and worms? Did you know that there are types of malware that infect your system at so deep a level that the operating system doesn’t even realize they are there? Did you know that some malware could make the files, services and running processes associated with its operations invisible? This kind of malware is known as a rootkit and it is a serious problem in today’s computer security world. Many antivirus solutions have a hard time even detecting rootkit activity, let alone removing it. To answer the call in the fight against rootkits, Malwarebytes has taken up arms and introduced a new soldier in the cyber-war. Meet Malwarebytes Anti-Rootkit.