Sample viewer

vx.netlux.org/Virus.DOS.Leprosy.Busted.570

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:03:59.145640913Z	44	PC: 12b52 \| Get time 0x12b52: cmp byte ptr [0x106], 0 0x12b57: je 0x12b59 0x12b59: cmp dl, 0 0x12b5c: je 0x12b4e 0x12b5e: mov byte ptr [0x106], dl 0x12b62: mov byte ptr [0x107], dh 0x12b66: mov byte ptr [0x203], 0 0x12b6b: mov byte ptr [0x204], 4 0x12b70: mov byte ptr [0x20d], 0 0x12b75: mov cx, 0x27 0x12b78: mov dx, 0x141 0x12b7b: mov ah, 0x4e 0x12b7d: int 0x21 0x12b7f: cmp ax, 0x12 0x12b82: je 0x12b87 0x12b84: call 0x12ba9 0x12b87: mov cx, 0x27 0x12b8a: mov dx, 0x147 0x12b8d: mov ah, 0x4e 0x12b8f: int 0x21
2018-12-17T23:03:59.148082868Z	78	PC: 12b7f \| Find first file
2018-12-17T23:03:59.155314494Z	78	PC: 12b91 \| Find first file
2018-12-17T23:03:59.174950023Z	67	PC: 12bca \| Get or set file attributes
2018-12-17T23:03:59.19718631Z	61	PC: 12bd0 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T23:03:59.206230548Z	63	PC: 12bdf \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T23:03:59.212774888Z	62	PC: 12c13 \| Close file
2018-12-17T23:03:59.214468425Z	61	PC: 12c1c \| Open file (Filename = 'SLEEP.COM')
2018-12-17T23:03:59.219851603Z	64	PC: 12a5b \| Write file or device (Write 570 bytes on handle 5)
2018-12-17T23:03:59.227745532Z	87	PC: 12c44 \| Get or set file date and time
2018-12-17T23:03:59.231856055Z	62	PC: 12c4c \| Close file
2018-12-17T23:03:59.259651018Z	67	PC: 12c59 \| Get or set file attributes
2018-12-17T23:03:59.266564713Z	79	PC: 12c03 \| Find next file
2018-12-17T23:03:59.26969678Z	67	PC: 12bca \| Get or set file attributes
2018-12-17T23:03:59.289973202Z	61	PC: 12bd0 \| Open file (Filename = 'PRINT.COM')
2018-12-17T23:03:59.309215632Z	63	PC: 12bdf \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T23:03:59.323092988Z	62	PC: 12c13 \| Close file
2018-12-17T23:03:59.325568001Z	61	PC: 12c1c \| Open file (Filename = 'PRINT.COM')
2018-12-17T23:03:59.338288442Z	64	PC: 12a5b \| Write file or device (Write 570 bytes on handle 5)
2018-12-17T23:03:59.347689207Z	87	PC: 12c44 \| Get or set file date and time
2018-12-17T23:03:59.349708627Z	62	PC: 12c4c \| Close file
2018-12-17T23:03:59.360507345Z	67	PC: 12c59 \| Get or set file attributes
2018-12-17T23:03:59.366177668Z	79	PC: 12c03 \| Find next file
2018-12-17T23:03:59.36942915Z	67	PC: 12bca \| Get or set file attributes
2018-12-17T23:03:59.380814947Z	61	PC: 12bd0 \| Open file (Filename = 'HELLO.COM')
2018-12-17T23:03:59.388580884Z	63	PC: 12bdf \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T23:03:59.395786321Z	62	PC: 12c13 \| Close file
2018-12-17T23:03:59.398001712Z	61	PC: 12c1c \| Open file (Filename = 'HELLO.COM')
2018-12-17T23:03:59.411705422Z	64	PC: 12a5b \| Write file or device (Write 570 bytes on handle 5)
2018-12-17T23:03:59.421919391Z	87	PC: 12c44 \| Get or set file date and time
2018-12-17T23:03:59.424140134Z	62	PC: 12c4c \| Close file
2018-12-17T23:03:59.434269053Z	67	PC: 12c59 \| Get or set file attributes
2018-12-17T23:03:59.440534508Z	79	PC: 12c03 \| Find next file
2018-12-17T23:03:59.443844395Z	67	PC: 12bca \| Get or set file attributes
2018-12-17T23:03:59.456126602Z	61	PC: 12bd0 \| Open file (Filename = 'PHANG.COM')
2018-12-17T23:03:59.463828516Z	63	PC: 12bdf \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T23:03:59.47121256Z	62	PC: 12c13 \| Close file
2018-12-17T23:03:59.474348999Z	61	PC: 12c1c \| Open file (Filename = 'PHANG.COM')
2018-12-17T23:03:59.482920229Z	64	PC: 12a5b \| Write file or device (Write 570 bytes on handle 5)
2018-12-17T23:03:59.493569634Z	87	PC: 12c44 \| Get or set file date and time
2018-12-17T23:03:59.496158796Z	62	PC: 12c4c \| Close file
2018-12-17T23:03:59.505000349Z	67	PC: 12c59 \| Get or set file attributes
2018-12-17T23:03:59.51068287Z	9	PC: 12c76 \| Display string (String= ' Program too big to fit in memory')
2018-12-17T23:03:59.515861375Z	76	PC: 12c7a \| Terminate with return code (Return code = '36')