Data Centers

First known 64-bit virus threat found

Security technology company Symantec says it has analyzed what it believes to be the first known threat to 64-bit Windows systems, a virus labeled W64.Rugrat.3344.

Stay on top of the latest tech news with our free IT News Digest e-newsletter, delivered each weekday. Automatically sign up today!

By Matt Hines

Security technology company Symantec reported Thursday that it has analyzed what it believes to be the first known threat to 64-bit Windows systems, a virus labeled W64.Rugrat.3344.

Representatives at the Cupertino, Calif.-based company were quick to point out that the threat was merely a so-called proof-of-concept virus—a worm developed by someone to show that vulnerabilities are present in a particular type of system—and not a virus already spreading in the wild. However, Oliver Friedrichs, senior manager of Symantec's Security Response Team, said W64.Rugrat.3344 can attack 64-bit files successfully. He said the virus does not infect 32-bit files and will not run on 32-bit Windows systems.

Since 64-bit systems have yet to proliferate widely, Symantec maintains that the virus does not yet represent a serious threat.

"We always see early adopters trying to find a way to attack new technology right away, as we did with 32-bit, so it's not surprising to see this," Friedrichs said. "But we do expect to see more of these, as 64-bit technology becomes more prominent."

The 64-bit market is expected to grow rapidly. By the end of next year, most , will be 64-bit capable, and virtually all of rival Advanced Micro Devices' processors .

Software titan Microsoft is also pushing the high-end market forward. Earlier this month, Chairman Bill Gates asked hardware makers to start for their software. Among the advantages of 64-bit software is the ability to gracefully accommodate more physical memory than the 4GB limit in 32-bit systems.

Symantec said it was not expecting widespread copycats of W64.Rugrat.3344, since the affected assembly code requires fairly advanced . Symantec said W64.Rugrat.3344 was created in IA64 (Intel Architecture) assembly code and infects IA64 executable files, excluding .dll files. The security specialists reported that W64.Rugrat.3344 also infects files that are in the same folder as the virus, as well as all files within related subfolders.

Symantec is currently updating its Norton AntiVirus product line to protect against W64.Rugrat.3344 and expects to have versions of the software armed to defeat the virus ready by the end of the day Thursday. The company earmarked the 64-bit virus as a Level 1, or the least dangerous sort of threat ranked on its five-tiered ratings system, but warned users to update their virus protection systems as quickly as possible.

Last week, Symantec announced , a maker of tools for blocking spam and viruses, for $370 million.

Neither Microsoft nor Intel could immediately be reached for comment.

Editor's Picks

Free Newsletters, In your Inbox