The Web    Google
8/23: W64.Shruggle.1318 Infects PE Files

8/23: W64.Shruggle.1318 Infects PE Files
August 23, 2004

W64.Shruggle.1318 is a direct-action file infector, similar to W64.Rugrat.3344, that infects AMD64 Windows Portable Executable (PE) files.

It is a fairly simple proof-of-concept virus; however, it is the first known virus to attack 64-bit Windows executables on AMD64 systems.

The virus is written in AMD64 assembly code.

Technical details are at Symantec page.

  • 3/21: Sumon-C an IM and P2P Worm
  • Application Insecurity --- Who is at Fault?
  • Citadel's Latest Automates W2K3 Vulnerability Remediation
  • 'Land' Bug Back to Bedevil Microsoft Servers
  • Security Execs Identify Top Issues for 2005
  • 1/27: Worm_Bropia-D Drops Other Malware
  • 5/3: Bbprox-A Trojan Acts as Proxy Server
  • 2/3: Trojan.Comxt-B Downloads Remote Files
  • Exploit for Windows SSL Flaw Circulating
  • 5/2: Doyorg Trojan Arrives Via AOL IM
  • This Python Really Eats Bugs
  • Security Camera Articles