Chandra Prakesh, our Antivirus Lab Manager, presented a paper at AVAR this year on Rustock. PDF here, Powerpoint here.
From a research perspective, Rustock is quite interesting, as it is a complex backdoor trojan that turns a compromised system into a covert proxy, using highly sophisticated methods of evasion.
Chandra is a bit of an expert on Rustock. He’s also written papers on other subjects that I’ve referenced on the blog here and here.
Alex Eckelberry