Sample viewer

vx.netlux.org/Virus.DOS.Leprosy.Taz.2013

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:51:08.451567564Z 44 PC: 13080 | Get time 0x13080: cmp byte ptr [0x103], 0
0x13085: je 0x1308c
0x13087: cmp dh, 0xf
0x1308a: jg 0x13095
0x1308c: cmp dl, 0
0x1308f: je 0x1307c
0x13091: mov byte ptr [0x103], dl
0x13095: mov byte ptr [0x731], 0
0x1309a: mov byte ptr [0x732], 4
0x1309f: mov byte ptr [0x73b], 0
0x130a4: mov cx, 0x27
0x130a7: mov dx, 0x115
0x130aa: mov ah, 0x4e
0x130ac: int 0x21
0x130ae: cmp ax, 0x12
0x130b1: je 0x130b6
0x130b3: call 0x130d8
0x130b6: mov cx, 0x27
0x130b9: mov dx, 0x11b
0x130bc: mov ah, 0x4e
2018-12-17T22:51:08.463540107Z 78 PC: 130ae | Find first file
2018-12-17T22:51:08.469533198Z 78 PC: 130c0 | Find first file
2018-12-17T22:51:08.475662467Z 67 PC: 130f9 | Get or set file attributes
2018-12-17T22:51:08.493005093Z 61 PC: 130ff | Open file (Filename = 'SLEEP.COM')
2018-12-17T22:51:08.499770748Z 63 PC: 1310e | Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:51:08.506302392Z 62 PC: 13142 | Close file
2018-12-17T22:51:08.509124491Z 61 PC: 1314b | Open file (Filename = 'SLEEP.COM')
2018-12-17T22:51:08.520474995Z 64 PC: 12a54 | Write file or device (Write 2013 bytes on handle 5)
2018-12-17T22:51:08.529443531Z 87 PC: 13173 | Get or set file date and time
2018-12-17T22:51:08.531828525Z 62 PC: 1317b | Close file
2018-12-17T22:51:08.539718419Z 67 PC: 13188 | Get or set file attributes
2018-12-17T22:51:08.544508425Z 79 PC: 13132 | Find next file
2018-12-17T22:51:08.548006619Z 67 PC: 130f9 | Get or set file attributes
2018-12-17T22:51:08.557659791Z 61 PC: 130ff | Open file (Filename = 'PRINT.COM')
2018-12-17T22:51:08.564481887Z 63 PC: 1310e | Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:51:08.571089246Z 62 PC: 13142 | Close file
2018-12-17T22:51:08.573274228Z 61 PC: 1314b | Open file (Filename = 'PRINT.COM')
2018-12-17T22:51:08.584402595Z 64 PC: 12a54 | Write file or device (Write 2013 bytes on handle 5)
2018-12-17T22:51:08.593197918Z 87 PC: 13173 | Get or set file date and time
2018-12-17T22:51:08.595397882Z 62 PC: 1317b | Close file
2018-12-17T22:51:08.602857049Z 67 PC: 13188 | Get or set file attributes
2018-12-17T22:51:08.607464923Z 79 PC: 13132 | Find next file
2018-12-17T22:51:08.611103616Z 67 PC: 130f9 | Get or set file attributes
2018-12-17T22:51:08.620652448Z 61 PC: 130ff | Open file (Filename = 'HELLO.COM')
2018-12-17T22:51:08.627269021Z 63 PC: 1310e | Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:51:08.634200141Z 62 PC: 13142 | Close file
2018-12-17T22:51:08.635819655Z 61 PC: 1314b | Open file (Filename = 'HELLO.COM')
2018-12-17T22:51:08.646752718Z 64 PC: 12a54 | Write file or device (Write 2013 bytes on handle 5)
2018-12-17T22:51:08.655784805Z 87 PC: 13173 | Get or set file date and time
2018-12-17T22:51:08.657935541Z 62 PC: 1317b | Close file
2018-12-17T22:51:08.665317412Z 67 PC: 13188 | Get or set file attributes
2018-12-17T22:51:08.670403891Z 79 PC: 13132 | Find next file
2018-12-17T22:51:08.673635529Z 67 PC: 130f9 | Get or set file attributes
2018-12-17T22:51:08.683873807Z 61 PC: 130ff | Open file (Filename = 'PHANG.COM')
2018-12-17T22:51:08.690993657Z 63 PC: 1310e | Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:51:08.697470793Z 62 PC: 13142 | Close file
2018-12-17T22:51:08.699091007Z 61 PC: 1314b | Open file (Filename = 'PHANG.COM')
2018-12-17T22:51:08.71110423Z 64 PC: 12a54 | Write file or device (Write 2013 bytes on handle 5)
2018-12-17T22:51:08.719956758Z 87 PC: 13173 | Get or set file date and time
2018-12-17T22:51:08.721835447Z 62 PC: 1317b | Close file
2018-12-17T22:51:08.730442699Z 67 PC: 13188 | Get or set file attributes
2018-12-17T22:51:08.735624375Z 9 PC: 13211 | Display string (String= ' Bad command or file name')
2018-12-17T22:51:08.738467093Z 76 PC: 13215 | Terminate with return code (Return code = '36')