Several malware listed here not really rootkits in terms of original meaning of this word, but malware with driver agents.
- Demo Rootkits (not malicious)
- Collection of old malware rootkits for testing (2005 - 2009 years)
- Avatar (TDL3 clone)
- Black Energy
- MaxSS, TDL3 and later TDL4 fork
- ZeroAccess aka Sirefef, MaxPlus
Some viruses may also include rootkit functionality, see list here -> http://www.kernelmode.info/forum/viewto ... =16&t=1644
Moderator wrote:If you have modern rootkit that is not listed here and you want to share sample - start new dedicated thread, link to it will be added here.