Sample viewer

vx.netlux.org/Virus.DOS.Leprosy.Seneca.392

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:53:04.808327003Z 42 PC: 12a54 | Get date 0x12a54: cmp cx, 0x7bc
0x12a58: jle 0x12a75
0x12a5a: jmp 0x12a5d
0x12a5c: nop
0x12a5d: mov ah, 0x2a
0x12a5f: int 0x21
0x12a61: cmp dh, 0xb
0x12a64: je 0x12a69
0x12a66: jmp 0x12a81
0x12a68: nop
0x12a69: mov ah, 0x2a
0x12a6b: int 0x21
0x12a6d: cmp dl, 0x19
0x12a70: je 0x12ab0
0x12a72: jmp 0x12a81
0x12a74: nop
0x12a75: mov ah, 0x2c
0x12a77: int 0x21
0x12a79: cmp cl, 0x1e
0x12a7c: jge 0x12aa6
2018-12-17T22:53:04.810828713Z 42 PC: 12a61 | Get date 0x12a61: cmp dh, 0xb
0x12a64: je 0x12a69
0x12a66: jmp 0x12a81
0x12a68: nop
0x12a69: mov ah, 0x2a
0x12a6b: int 0x21
0x12a6d: cmp dl, 0x19
0x12a70: je 0x12ab0
0x12a72: jmp 0x12a81
0x12a74: nop
0x12a75: mov ah, 0x2c
0x12a77: int 0x21
0x12a79: cmp cl, 0x1e
0x12a7c: jge 0x12aa6
0x12a7e: jmp 0x12a81
0x12a80: nop
0x12a81: mov dx, 0x277
0x12a84: mov ah, 0x4e
0x12a86: xor cx, cx
0x12a88: int 0x21
2018-12-17T22:53:04.814468565Z 78 PC: 12a8a | Find first file
2018-12-17T22:53:04.820987831Z 59 PC: 12aa2 | Change current directory

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":11100,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:29:56.242507923Z 42 PC: 12a54 | Get date 0x12a54: cmp cx, 0x7bc
0x12a58: jle 0x12a75
0x12a5a: jmp 0x12a5d
0x12a5c: nop
0x12a5d: mov ah, 0x2a
0x12a5f: int 0x21
0x12a61: cmp dh, 0xb
0x12a64: je 0x12a69
0x12a66: jmp 0x12a81
0x12a68: nop
0x12a69: mov ah, 0x2a
0x12a6b: int 0x21
0x12a6d: cmp dl, 0x19
0x12a70: je 0x12ab0
0x12a72: jmp 0x12a81
0x12a74: nop
0x12a75: mov ah, 0x2c
0x12a77: int 0x21
0x12a79: cmp cl, 0x1e
0x12a7c: jge 0x12aa6
2018-12-25T12:29:56.246226512Z 44 PC: 12a79 | Get time 0x12a79: cmp cl, 0x1e
0x12a7c: jge 0x12aa6
0x12a7e: jmp 0x12a81
0x12a80: nop
0x12a81: mov dx, 0x277
0x12a84: mov ah, 0x4e
0x12a86: xor cx, cx
0x12a88: int 0x21
0x12a8a: jb 0x12a9b
0x12a8c: jmp 0x12ac7
0x12a8e: nop
0x12a8f: mov ah, 0x4f
0x12a91: int 0x21
0x12a93: cmp ax, 0x12
0x12a96: je 0x12a9b
0x12a98: jmp 0x12ac7
0x12a9a: nop
0x12a9b: mov dx, 0x27d
0x12a9e: mov ah, 0x3b
0x12aa0: int 0x21
2018-12-25T12:29:56.248572531Z 78 PC: 12a8a | Find first file
2018-12-25T12:29:56.254998399Z 59 PC: 12aa2 | Change current directory

{"DateBased":true,"Day":1,"Month":11,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":11100,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:29:57.433209131Z 42 PC: 12a54 | Get date 0x12a54: cmp cx, 0x7bc
0x12a58: jle 0x12a75
0x12a5a: jmp 0x12a5d
0x12a5c: nop
0x12a5d: mov ah, 0x2a
0x12a5f: int 0x21
0x12a61: cmp dh, 0xb
0x12a64: je 0x12a69
0x12a66: jmp 0x12a81
0x12a68: nop
0x12a69: mov ah, 0x2a
0x12a6b: int 0x21
0x12a6d: cmp dl, 0x19
0x12a70: je 0x12ab0
0x12a72: jmp 0x12a81
0x12a74: nop
0x12a75: mov ah, 0x2c
0x12a77: int 0x21
0x12a79: cmp cl, 0x1e
0x12a7c: jge 0x12aa6
2018-12-25T12:29:57.434792612Z 44 PC: 12a79 | Get time 0x12a79: cmp cl, 0x1e
0x12a7c: jge 0x12aa6
0x12a7e: jmp 0x12a81
0x12a80: nop
0x12a81: mov dx, 0x277
0x12a84: mov ah, 0x4e
0x12a86: xor cx, cx
0x12a88: int 0x21
0x12a8a: jb 0x12a9b
0x12a8c: jmp 0x12ac7
0x12a8e: nop
0x12a8f: mov ah, 0x4f
0x12a91: int 0x21
0x12a93: cmp ax, 0x12
0x12a96: je 0x12a9b
0x12a98: jmp 0x12ac7
0x12a9a: nop
0x12a9b: mov dx, 0x27d
0x12a9e: mov ah, 0x3b
0x12aa0: int 0x21
2018-12-25T12:29:57.436730065Z 78 PC: 12a8a | Find first file
2018-12-25T12:29:57.440588318Z 59 PC: 12aa2 | Change current directory