Sample viewer

vx.netlux.org/Virus.DOS.Leprosy.625

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:50:33.392066987Z	44	PC: 12b6a \| Get time 0x12b6a: cmp byte ptr [0x108], 0 0x12b6f: nop 0x12b70: je 0x12b78 0x12b72: cmp dh, 0xf 0x12b75: nop 0x12b76: jg 0x12b82 0x12b78: cmp dl, 0 0x12b7b: nop 0x12b7c: je 0x12b65 0x12b7e: mov byte ptr [0x108], dl 0x12b82: mov byte ptr [0x21a], 0 0x12b87: mov byte ptr [0x21b], 4 0x12b8c: mov byte ptr [0x224], 0 0x12b91: mov cx, 0x27 0x12b94: mov dx, 0x13f 0x12b97: mov ah, 0x4e 0x12b99: int 0x21 0x12b9b: cmp ax, 0x12 0x12b9e: je 0x12ba3 0x12ba0: call 0x12bc5
2018-12-17T22:50:33.395051456Z	78	PC: 12b9b \| Find first file
2018-12-17T22:50:33.402286636Z	78	PC: 12bad \| Find first file
2018-12-17T22:50:33.410273595Z	67	PC: 12be6 \| Get or set file attributes
2018-12-17T22:50:33.428712507Z	61	PC: 12bec \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:50:33.43702792Z	63	PC: 12bfb \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:50:33.441458969Z	62	PC: 12c2f \| Close file
2018-12-17T22:50:33.443146785Z	61	PC: 12c38 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:50:33.448477765Z	64	PC: 12a63 \| Write file or device (Write 625 bytes on handle 5)
2018-12-17T22:50:33.454040089Z	87	PC: 12c60 \| Get or set file date and time
2018-12-17T22:50:33.455248104Z	62	PC: 12c68 \| Close file
2018-12-17T22:50:33.461019104Z	67	PC: 12c75 \| Get or set file attributes
2018-12-17T22:50:33.464282951Z	79	PC: 12c1f \| Find next file
2018-12-17T22:50:33.466246159Z	67	PC: 12be6 \| Get or set file attributes
2018-12-17T22:50:33.48029843Z	61	PC: 12bec \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:50:33.487759611Z	63	PC: 12bfb \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:50:33.495071591Z	62	PC: 12c2f \| Close file
2018-12-17T22:50:33.497725403Z	61	PC: 12c38 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:50:33.502397508Z	64	PC: 12a63 \| Write file or device (Write 625 bytes on handle 5)
2018-12-17T22:50:33.52246728Z	87	PC: 12c60 \| Get or set file date and time
2018-12-17T22:50:33.524430327Z	62	PC: 12c68 \| Close file
2018-12-17T22:50:33.533817294Z	67	PC: 12c75 \| Get or set file attributes
2018-12-17T22:50:33.539382172Z	79	PC: 12c1f \| Find next file
2018-12-17T22:50:33.543193558Z	67	PC: 12be6 \| Get or set file attributes
2018-12-17T22:50:33.556044286Z	61	PC: 12bec \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:50:33.563624575Z	63	PC: 12bfb \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:50:33.570897199Z	62	PC: 12c2f \| Close file
2018-12-17T22:50:33.57277178Z	61	PC: 12c38 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:50:33.577408893Z	64	PC: 12a63 \| Write file or device (Write 625 bytes on handle 5)
2018-12-17T22:50:33.582852258Z	87	PC: 12c60 \| Get or set file date and time
2018-12-17T22:50:33.58506969Z	62	PC: 12c68 \| Close file
2018-12-17T22:50:33.593662477Z	67	PC: 12c75 \| Get or set file attributes
2018-12-17T22:50:33.599056307Z	79	PC: 12c1f \| Find next file
2018-12-17T22:50:33.604451006Z	67	PC: 12be6 \| Get or set file attributes
2018-12-17T22:50:33.616141917Z	61	PC: 12bec \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:50:33.623726346Z	63	PC: 12bfb \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:50:33.631675472Z	62	PC: 12c2f \| Close file
2018-12-17T22:50:33.633604533Z	61	PC: 12c38 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:50:33.641260914Z	64	PC: 12a63 \| Write file or device (Write 625 bytes on handle 5)
2018-12-17T22:50:33.651661318Z	87	PC: 12c60 \| Get or set file date and time
2018-12-17T22:50:33.653458994Z	62	PC: 12c68 \| Close file
2018-12-17T22:50:33.66203723Z	67	PC: 12c75 \| Get or set file attributes
2018-12-17T22:50:33.667495668Z	9	PC: 12ca5 \| Display string (String= ' Program too big to fit in memory')
2018-12-17T22:50:33.673151783Z	76	PC: 12ca9 \| Terminate with return code (Return code = '36')