Sample viewer

vx.netlux.org/Virus.DOS.Leprosy.Taz.2209.b

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T23:05:41.124133297Z 44 PC: 1314e | Get time 0x1314e: cmp byte ptr [0x103], 0
0x13153: je 0x1315a
0x13155: cmp dh, 0x1e
0x13158: jg 0x13163
0x1315a: cmp dl, 0
0x1315d: je 0x1314a
0x1315f: mov byte ptr [0x103], dl
0x13163: mov byte ptr [0x7ff], 0
0x13168: mov byte ptr [0x800], 4
0x1316d: mov byte ptr [0x809], 0
0x13172: mov cx, 0x27
0x13175: mov dx, 0x115
0x13178: mov ah, 0x4e
0x1317a: int 0x21
0x1317c: cmp ax, 0x12
0x1317f: je 0x13184
0x13181: call 0x131a6
0x13184: mov cx, 0x27
0x13187: mov dx, 0x11b
0x1318a: mov ah, 0x4e
2018-12-17T23:05:41.12716786Z 78 PC: 1317c | Find first file
2018-12-17T23:05:41.13304279Z 67 PC: 131c7 | Get or set file attributes
2018-12-17T23:05:41.156500117Z 61 PC: 131cd | Open file (Filename = 'TEST.EXE')
2018-12-17T23:05:41.16888359Z 63 PC: 131dc | Read file or device (Read 20 bytes on handle 5)
2018-12-17T23:05:41.172097357Z 62 PC: 13210 | Close file
2018-12-17T23:05:41.173947374Z 61 PC: 13219 | Open file (Filename = 'TEST.EXE')
2018-12-17T23:05:41.181738605Z 64 PC: 12a54 | Write file or device (Write 2209 bytes on handle 5)
2018-12-17T23:05:41.189409104Z 87 PC: 13241 | Get or set file date and time
2018-12-17T23:05:41.191520504Z 62 PC: 13249 | Close file
2018-12-17T23:05:41.199397626Z 67 PC: 13256 | Get or set file attributes
2018-12-17T23:05:41.204734399Z 79 PC: 13200 | Find next file
2018-12-17T23:05:41.207487602Z 78 PC: 1318e | Find first file
2018-12-17T23:05:41.213631357Z 67 PC: 131c7 | Get or set file attributes
2018-12-17T23:05:41.223732234Z 61 PC: 131cd | Open file (Filename = 'SLEEP.COM')
2018-12-17T23:05:41.230290041Z 63 PC: 131dc | Read file or device (Read 20 bytes on handle 5)
2018-12-17T23:05:41.237002892Z 62 PC: 13210 | Close file
2018-12-17T23:05:41.239509567Z 61 PC: 13219 | Open file (Filename = 'SLEEP.COM')
2018-12-17T23:05:41.250886699Z 64 PC: 12a54 | Write file or device (Write 2209 bytes on handle 5)
2018-12-17T23:05:41.25965972Z 87 PC: 13241 | Get or set file date and time
2018-12-17T23:05:41.26259956Z 62 PC: 13249 | Close file
2018-12-17T23:05:41.270287045Z 67 PC: 13256 | Get or set file attributes
2018-12-17T23:05:41.274778659Z 79 PC: 13200 | Find next file
2018-12-17T23:05:41.283107307Z 67 PC: 131c7 | Get or set file attributes
2018-12-17T23:05:41.292489521Z 61 PC: 131cd | Open file (Filename = 'PRINT.COM')
2018-12-17T23:05:41.299097666Z 63 PC: 131dc | Read file or device (Read 20 bytes on handle 5)
2018-12-17T23:05:41.306078936Z 62 PC: 13210 | Close file
2018-12-17T23:05:41.308049485Z 61 PC: 13219 | Open file (Filename = 'PRINT.COM')
2018-12-17T23:05:41.319163219Z 64 PC: 12a54 | Write file or device (Write 2209 bytes on handle 5)
2018-12-17T23:05:41.329222133Z 87 PC: 13241 | Get or set file date and time
2018-12-17T23:05:41.331110517Z 62 PC: 13249 | Close file
2018-12-17T23:05:41.339191811Z 67 PC: 13256 | Get or set file attributes
2018-12-17T23:05:41.344952153Z 79 PC: 13200 | Find next file
2018-12-17T23:05:41.347638083Z 67 PC: 131c7 | Get or set file attributes
2018-12-17T23:05:41.357064471Z 61 PC: 131cd | Open file (Filename = 'HELLO.COM')
2018-12-17T23:05:41.371021727Z 63 PC: 131dc | Read file or device (Read 20 bytes on handle 5)
2018-12-17T23:05:41.377558581Z 62 PC: 13210 | Close file
2018-12-17T23:05:41.379704378Z 61 PC: 13219 | Open file (Filename = 'HELLO.COM')
2018-12-17T23:05:41.391874126Z 64 PC: 12a54 | Write file or device (Write 2209 bytes on handle 5)
2018-12-17T23:05:41.400747554Z 87 PC: 13241 | Get or set file date and time
2018-12-17T23:05:41.402545168Z 62 PC: 13249 | Close file
2018-12-17T23:05:41.411541505Z 67 PC: 13256 | Get or set file attributes
2018-12-17T23:05:41.416541268Z 9 PC: 132d4 | Display string (String= ' Error #2307 - Too big to fit in memory')
2018-12-17T23:05:41.42130713Z 76 PC: 132d8 | Terminate with return code (Return code = '36')