Sample viewer

vx.netlux.org/Virus.DOS.Leprosy.666.x

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:00:54.845415102Z	44	PC: 12b37 \| Get time 0x12b37: cmp byte ptr [0x10c], 0 0x12b3c: je 0x12b43 0x12b3e: cmp dh, 0xf 0x12b41: jg 0x12b4c 0x12b43: cmp dl, 0 0x12b46: je 0x12b33 0x12b48: mov byte ptr [0x10c], dl 0x12b4c: mov byte ptr [0x1e8], 0 0x12b51: mov byte ptr [0x1e9], 4 0x12b56: mov byte ptr [0x1f2], 0 0x12b5b: mov cx, 0x27 0x12b5e: mov dx, 0x137 0x12b61: mov ah, 0x4e 0x12b63: int 0x21 0x12b65: cmp ax, 0x12 0x12b68: je 0x12b6d 0x12b6a: call 0x12b8f 0x12b6d: mov cx, 0x27 0x12b70: mov dx, 0x13d 0x12b73: mov ah, 0x4e
2018-12-17T23:00:54.849580635Z	78	PC: 12b65 \| Find first file
2018-12-17T23:00:54.854402446Z	78	PC: 12b77 \| Find first file
2018-12-17T23:00:54.860512739Z	67	PC: 12bb0 \| Get or set file attributes
2018-12-17T23:00:54.87531013Z	61	PC: 12bb6 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T23:00:54.880517375Z	63	PC: 12bc5 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T23:00:54.88512907Z	62	PC: 12bf9 \| Close file
2018-12-17T23:00:54.886527398Z	61	PC: 12c02 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T23:00:54.894808169Z	64	PC: 12a60 \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T23:00:54.900210645Z	87	PC: 12c2a \| Get or set file date and time
2018-12-17T23:00:54.901456126Z	62	PC: 12c32 \| Close file
2018-12-17T23:00:54.907511981Z	67	PC: 12c3f \| Get or set file attributes
2018-12-17T23:00:54.910486963Z	79	PC: 12be9 \| Find next file
2018-12-17T23:00:54.912466346Z	67	PC: 12bb0 \| Get or set file attributes
2018-12-17T23:00:54.918880304Z	61	PC: 12bb6 \| Open file (Filename = 'PRINT.COM')
2018-12-17T23:00:54.92408627Z	63	PC: 12bc5 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T23:00:54.928094044Z	62	PC: 12bf9 \| Close file
2018-12-17T23:00:54.929529139Z	61	PC: 12c02 \| Open file (Filename = 'PRINT.COM')
2018-12-17T23:00:54.935382418Z	64	PC: 12a60 \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T23:00:54.942901912Z	87	PC: 12c2a \| Get or set file date and time
2018-12-17T23:00:54.94414463Z	62	PC: 12c32 \| Close file
2018-12-17T23:00:54.961751327Z	67	PC: 12c3f \| Get or set file attributes
2018-12-17T23:00:54.982483269Z	79	PC: 12be9 \| Find next file
2018-12-17T23:00:54.988951996Z	67	PC: 12bb0 \| Get or set file attributes
2018-12-17T23:00:54.999730547Z	61	PC: 12bb6 \| Open file (Filename = 'HELLO.COM')
2018-12-17T23:00:55.006186874Z	63	PC: 12bc5 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T23:00:55.012698517Z	62	PC: 12bf9 \| Close file
2018-12-17T23:00:55.016071982Z	61	PC: 12c02 \| Open file (Filename = 'HELLO.COM')
2018-12-17T23:00:55.023201797Z	64	PC: 12a60 \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T23:00:55.03163109Z	87	PC: 12c2a \| Get or set file date and time
2018-12-17T23:00:55.034284847Z	62	PC: 12c32 \| Close file
2018-12-17T23:00:55.041899064Z	67	PC: 12c3f \| Get or set file attributes
2018-12-17T23:00:55.047260891Z	79	PC: 12be9 \| Find next file
2018-12-17T23:00:55.050692541Z	67	PC: 12bb0 \| Get or set file attributes
2018-12-17T23:00:55.060505132Z	61	PC: 12bb6 \| Open file (Filename = 'PHANG.COM')
2018-12-17T23:00:55.067316645Z	63	PC: 12bc5 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T23:00:55.074644995Z	62	PC: 12bf9 \| Close file
2018-12-17T23:00:55.077058709Z	61	PC: 12c02 \| Open file (Filename = 'PHANG.COM')
2018-12-17T23:00:55.08720539Z	64	PC: 12a60 \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T23:00:55.096105153Z	87	PC: 12c2a \| Get or set file date and time
2018-12-17T23:00:55.098784702Z	62	PC: 12c32 \| Close file
2018-12-17T23:00:55.10651308Z	67	PC: 12c3f \| Get or set file attributes
2018-12-17T23:00:55.112369461Z	9	PC: 12c6e \| Display string (String= ' Program too big to fit in memory')
2018-12-17T23:00:55.117672475Z	76	PC: 12c72 \| Terminate with return code (Return code = '36')