Sample viewer

vx.netlux.org/Virus.DOS.Leprosy.946

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:57:50.850249041Z	44	PC: 12c73 \| Get time 0x12c73: cmp byte ptr [0x106], 0 0x12c78: jmp 0x12c7b 0x12c7a: nop 0x12c7b: cmp dl, 0 0x12c7e: je 0x12c6f 0x12c80: mov byte ptr [0x106], dl 0x12c84: mov byte ptr [0x31f], 0 0x12c89: mov byte ptr [0x320], 4 0x12c8e: mov byte ptr [0x329], 0 0x12c93: mov cx, 0x27 0x12c96: mov dx, 0x130 0x12c99: mov ah, 0x4e 0x12c9b: int 0x21 0x12c9d: cmp ax, 0x12 0x12ca0: je 0x12ca5 0x12ca2: call 0x12cc7 0x12ca5: mov cx, 0x27 0x12ca8: mov dx, 0x136 0x12cab: mov ah, 0x4e 0x12cad: int 0x21
2018-12-17T22:57:50.852909702Z	78	PC: 12c9d \| Find first file
2018-12-17T22:57:50.859409046Z	78	PC: 12caf \| Find first file
2018-12-17T22:57:50.865212315Z	67	PC: 12ce8 \| Get or set file attributes
2018-12-17T22:57:50.885355713Z	61	PC: 12cee \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:57:50.897970431Z	63	PC: 12cfd \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:57:50.90512222Z	62	PC: 12d31 \| Close file
2018-12-17T22:57:50.907155055Z	61	PC: 12d3a \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:57:50.915646965Z	64	PC: 12a59 \| Write file or device (Write 946 bytes on handle 5)
2018-12-17T22:57:50.92404506Z	87	PC: 12d62 \| Get or set file date and time
2018-12-17T22:57:50.925758904Z	62	PC: 12d6a \| Close file
2018-12-17T22:57:50.933570453Z	67	PC: 12d77 \| Get or set file attributes
2018-12-17T22:57:50.938395831Z	79	PC: 12d21 \| Find next file
2018-12-17T22:57:50.940959925Z	67	PC: 12ce8 \| Get or set file attributes
2018-12-17T22:57:50.951048017Z	61	PC: 12cee \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:57:50.957958412Z	63	PC: 12cfd \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:57:50.962310068Z	62	PC: 12d31 \| Close file
2018-12-17T22:57:50.963873603Z	61	PC: 12d3a \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:57:50.968354928Z	64	PC: 12a59 \| Write file or device (Write 946 bytes on handle 5)
2018-12-17T22:57:50.973564848Z	87	PC: 12d62 \| Get or set file date and time
2018-12-17T22:57:50.975011108Z	62	PC: 12d6a \| Close file
2018-12-17T22:57:50.995964787Z	67	PC: 12d77 \| Get or set file attributes
2018-12-17T22:57:51.001335715Z	79	PC: 12d21 \| Find next file
2018-12-17T22:57:51.005398862Z	67	PC: 12ce8 \| Get or set file attributes
2018-12-17T22:57:51.033558044Z	61	PC: 12cee \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:57:51.040975412Z	63	PC: 12cfd \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:57:51.048048961Z	62	PC: 12d31 \| Close file
2018-12-17T22:57:51.06116741Z	61	PC: 12d3a \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:57:51.068341713Z	64	PC: 12a59 \| Write file or device (Write 946 bytes on handle 5)
2018-12-17T22:57:51.077328837Z	87	PC: 12d62 \| Get or set file date and time
2018-12-17T22:57:51.079922415Z	62	PC: 12d6a \| Close file
2018-12-17T22:57:51.101511453Z	67	PC: 12d77 \| Get or set file attributes
2018-12-17T22:57:51.106489974Z	79	PC: 12d21 \| Find next file
2018-12-17T22:57:51.111639754Z	67	PC: 12ce8 \| Get or set file attributes
2018-12-17T22:57:51.132208333Z	61	PC: 12cee \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:57:51.140507442Z	63	PC: 12cfd \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:57:51.149226401Z	62	PC: 12d31 \| Close file
2018-12-17T22:57:51.151462083Z	61	PC: 12d3a \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:57:51.158893041Z	64	PC: 12a59 \| Write file or device (Write 946 bytes on handle 5)
2018-12-17T22:57:51.169429965Z	87	PC: 12d62 \| Get or set file date and time
2018-12-17T22:57:51.171200785Z	62	PC: 12d6a \| Close file
2018-12-17T22:57:51.178969015Z	67	PC: 12d77 \| Get or set file attributes
2018-12-17T22:57:51.184876594Z	9	PC: 12dee \| Display string (String= ' Error in Executable')
2018-12-17T22:57:51.189226418Z	76	PC: 12df2 \| Terminate with return code (Return code = '36')