Sample viewer

vx.netlux.org/Virus.DOS.Leprosy.666.v

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:58:30.553706054Z	44	PC: 12b99 \| Get time 0x12b99: cmp byte ptr [0x106], 0 0x12b9e: je 0x12ba5 0x12ba0: cmp dh, 0xf 0x12ba3: jg 0x12bae 0x12ba5: cmp dl, 0 0x12ba8: je 0x12b95 0x12baa: mov byte ptr [0x106], dl 0x12bae: mov byte ptr [0x24a], 0 0x12bb3: mov byte ptr [0x24b], 4 0x12bb8: mov byte ptr [0x254], 0 0x12bbd: mov cx, 0x27 0x12bc0: mov dx, 0x133 0x12bc3: mov ah, 0x4e 0x12bc5: int 0x21 0x12bc7: cmp ax, 0x12 0x12bca: je 0x12bcf 0x12bcc: call 0x12bf1 0x12bcf: mov cx, 0x27 0x12bd2: mov dx, 0x139 0x12bd5: mov ah, 0x4e
2018-12-17T22:58:30.556930973Z	78	PC: 12bc7 \| Find first file
2018-12-17T22:58:30.562697081Z	78	PC: 12bd9 \| Find first file
2018-12-17T22:58:30.56836631Z	67	PC: 12c12 \| Get or set file attributes
2018-12-17T22:58:30.587928284Z	61	PC: 12c18 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:58:30.594434667Z	63	PC: 12c27 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:58:30.60065425Z	62	PC: 12c5b \| Close file
2018-12-17T22:58:30.60265733Z	61	PC: 12c64 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:58:30.628497041Z	64	PC: 12a5b \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:58:30.645402311Z	87	PC: 12c8c \| Get or set file date and time
2018-12-17T22:58:30.648123179Z	62	PC: 12c94 \| Close file
2018-12-17T22:58:30.672821534Z	67	PC: 12ca1 \| Get or set file attributes
2018-12-17T22:58:30.681473516Z	79	PC: 12c4b \| Find next file
2018-12-17T22:58:30.684070418Z	67	PC: 12c12 \| Get or set file attributes
2018-12-17T22:58:30.694438448Z	61	PC: 12c18 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:58:30.701497102Z	63	PC: 12c27 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:58:30.708248439Z	62	PC: 12c5b \| Close file
2018-12-17T22:58:30.711199554Z	61	PC: 12c64 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:58:30.718386821Z	64	PC: 12a5b \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:58:30.726702438Z	87	PC: 12c8c \| Get or set file date and time
2018-12-17T22:58:30.728685738Z	62	PC: 12c94 \| Close file
2018-12-17T22:58:30.736538378Z	67	PC: 12ca1 \| Get or set file attributes
2018-12-17T22:58:30.741414471Z	79	PC: 12c4b \| Find next file
2018-12-17T22:58:30.744234052Z	67	PC: 12c12 \| Get or set file attributes
2018-12-17T22:58:30.754440434Z	61	PC: 12c18 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:58:30.765841254Z	63	PC: 12c27 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:58:30.772722582Z	62	PC: 12c5b \| Close file
2018-12-17T22:58:30.775086545Z	61	PC: 12c64 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:58:30.782274383Z	64	PC: 12a5b \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:58:30.790471327Z	87	PC: 12c8c \| Get or set file date and time
2018-12-17T22:58:30.792567962Z	62	PC: 12c94 \| Close file
2018-12-17T22:58:30.803943711Z	67	PC: 12ca1 \| Get or set file attributes
2018-12-17T22:58:30.808509982Z	79	PC: 12c4b \| Find next file
2018-12-17T22:58:30.812018299Z	67	PC: 12c12 \| Get or set file attributes
2018-12-17T22:58:30.821804801Z	61	PC: 12c18 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:58:30.833478736Z	63	PC: 12c27 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:58:30.840519873Z	62	PC: 12c5b \| Close file
2018-12-17T22:58:30.842581512Z	61	PC: 12c64 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:58:30.849640585Z	64	PC: 12a5b \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:58:30.858552359Z	87	PC: 12c8c \| Get or set file date and time
2018-12-17T22:58:30.860325985Z	62	PC: 12c94 \| Close file
2018-12-17T22:58:30.868061379Z	67	PC: 12ca1 \| Get or set file attributes
2018-12-17T22:58:30.873735628Z	9	PC: 12ccf \| Display string (String= ' Program too big to fit in memory')
2018-12-17T22:58:30.877998674Z	76	PC: 12cd3 \| Terminate with return code (Return code = '36')