Sample viewer

vx.netlux.org/Virus.DOS.Leprosy.666.l

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:59:29.980281637Z 44 PC: 12c03 | Get time 0x12c03: cmp byte ptr [0x106], 0
0x12c08: je 0x12c0f
0x12c0a: cmp dh, 0xf
0x12c0d: jg 0x12c18
0x12c0f: cmp dl, 0
0x12c12: je 0x12bff
0x12c14: mov byte ptr [0x106], dl
0x12c18: mov byte ptr [0x2b4], 0
0x12c1d: mov byte ptr [0x2b5], 4
0x12c22: mov byte ptr [0x2be], 0
0x12c27: mov cx, 0x27
0x12c2a: mov dx, 0x131
0x12c2d: mov ah, 0x4e
0x12c2f: int 0x21
0x12c31: cmp ax, 0x12
0x12c34: je 0x12c39
0x12c36: call 0x12c5b
0x12c39: mov cx, 0x27
0x12c3c: mov dx, 0x137
0x12c3f: mov ah, 0x4e
2018-12-17T22:59:29.983328223Z 78 PC: 12c31 | Find first file
2018-12-17T22:59:29.990192613Z 78 PC: 12c43 | Find first file
2018-12-17T22:59:30.002003791Z 67 PC: 12c7c | Get or set file attributes
2018-12-17T22:59:30.019897439Z 61 PC: 12c82 | Open file (Filename = 'SLEEP.COM')
2018-12-17T22:59:30.027200384Z 63 PC: 12c91 | Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:59:30.035117513Z 62 PC: 12cc5 | Close file
2018-12-17T22:59:30.038296387Z 61 PC: 12cce | Open file (Filename = 'SLEEP.COM')
2018-12-17T22:59:30.045866645Z 64 PC: 12a5a | Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:59:30.054997625Z 87 PC: 12cf6 | Get or set file date and time
2018-12-17T22:59:30.057743335Z 62 PC: 12cfe | Close file
2018-12-17T22:59:30.066071627Z 67 PC: 12d0b | Get or set file attributes
2018-12-17T22:59:30.071421191Z 79 PC: 12cb5 | Find next file
2018-12-17T22:59:30.075521296Z 67 PC: 12c7c | Get or set file attributes
2018-12-17T22:59:30.086204303Z 61 PC: 12c82 | Open file (Filename = 'PRINT.COM')
2018-12-17T22:59:30.09337003Z 63 PC: 12c91 | Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:59:30.101024827Z 62 PC: 12cc5 | Close file
2018-12-17T22:59:30.103120525Z 61 PC: 12cce | Open file (Filename = 'PRINT.COM')
2018-12-17T22:59:30.111223473Z 64 PC: 12a5a | Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:59:30.121271597Z 87 PC: 12cf6 | Get or set file date and time
2018-12-17T22:59:30.123285082Z 62 PC: 12cfe | Close file
2018-12-17T22:59:30.131982618Z 67 PC: 12d0b | Get or set file attributes
2018-12-17T22:59:30.137864151Z 79 PC: 12cb5 | Find next file
2018-12-17T22:59:30.141708747Z 67 PC: 12c7c | Get or set file attributes
2018-12-17T22:59:30.152286596Z 61 PC: 12c82 | Open file (Filename = 'HELLO.COM')
2018-12-17T22:59:30.159470116Z 63 PC: 12c91 | Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:59:30.167180407Z 62 PC: 12cc5 | Close file
2018-12-17T22:59:30.169381834Z 61 PC: 12cce | Open file (Filename = 'HELLO.COM')
2018-12-17T22:59:30.17824442Z 64 PC: 12a5a | Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:59:30.188193188Z 87 PC: 12cf6 | Get or set file date and time
2018-12-17T22:59:30.189982159Z 62 PC: 12cfe | Close file
2018-12-17T22:59:30.198545042Z 67 PC: 12d0b | Get or set file attributes
2018-12-17T22:59:30.204895998Z 79 PC: 12cb5 | Find next file
2018-12-17T22:59:30.207833198Z 67 PC: 12c7c | Get or set file attributes
2018-12-17T22:59:30.218979546Z 61 PC: 12c82 | Open file (Filename = 'PHANG.COM')
2018-12-17T22:59:30.227882267Z 63 PC: 12c91 | Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:59:30.235471821Z 62 PC: 12cc5 | Close file
2018-12-17T22:59:30.238390726Z 61 PC: 12cce | Open file (Filename = 'PHANG.COM')
2018-12-17T22:59:30.246887235Z 64 PC: 12a5a | Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:59:30.255815895Z 87 PC: 12cf6 | Get or set file date and time
2018-12-17T22:59:30.257506462Z 62 PC: 12cfe | Close file
2018-12-17T22:59:30.266445111Z 67 PC: 12d0b | Get or set file attributes
2018-12-17T22:59:30.272098656Z 9 PC: 12d3a | Display string (String= ' Practice safe sex, use write protect tabs!')
2018-12-17T22:59:30.276403516Z 9 PC: 12d3f | Display string (String= ' -Andy Hobbs (203)644-0155')
2018-12-17T22:59:30.282020522Z 76 PC: 12d43 | Terminate with return code (Return code = '36')