Sample viewer

vx.netlux.org/Virus.DOS.Leprosy.666.s

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T21:54:33.071692636Z	44	PC: 12b9d \| Get time 0x12b9d: cmp byte ptr [0x106], 0 0x12ba2: je 0x12ba9 0x12ba4: cmp dh, 0xf 0x12ba7: jg 0x12bb2 0x12ba9: cmp dl, 0 0x12bac: je 0x12b99 0x12bae: mov byte ptr [0x106], dl 0x12bb2: mov byte ptr [0x24e], 0 0x12bb7: mov byte ptr [0x24f], 4 0x12bbc: mov byte ptr [0x258], 0 0x12bc1: mov cx, 0x27 0x12bc4: mov dx, 0x137 0x12bc7: mov ah, 0x4e 0x12bc9: int 0x21 0x12bcb: cmp ax, 0x12 0x12bce: je 0x12bd3 0x12bd0: call 0x12bf5 0x12bd3: mov cx, 0x27 0x12bd6: mov dx, 0x13d 0x12bd9: mov ah, 0x4e
2018-12-17T21:54:33.07445101Z	78	PC: 12bcb \| Find first file
2018-12-17T21:54:33.080247669Z	78	PC: 12bdd \| Find first file
2018-12-17T21:54:33.085899687Z	67	PC: 12c16 \| Get or set file attributes
2018-12-17T21:54:33.104263122Z	61	PC: 12c1c \| Open file (Filename = 'SLEEP.COM')
2018-12-17T21:54:33.115660893Z	63	PC: 12c2b \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T21:54:33.119830948Z	62	PC: 12c5f \| Close file
2018-12-17T21:54:33.126533673Z	61	PC: 12c68 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T21:54:33.131762297Z	64	PC: 12a5a \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T21:54:33.137258538Z	87	PC: 12c90 \| Get or set file date and time
2018-12-17T21:54:33.139334975Z	62	PC: 12c98 \| Close file
2018-12-17T21:54:33.146603635Z	67	PC: 12ca5 \| Get or set file attributes
2018-12-17T21:54:33.152073765Z	79	PC: 12c4f \| Find next file
2018-12-17T21:54:33.155725753Z	67	PC: 12c16 \| Get or set file attributes
2018-12-17T21:54:33.166903072Z	61	PC: 12c1c \| Open file (Filename = 'PRINT.COM')
2018-12-17T21:54:33.178059974Z	63	PC: 12c2b \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T21:54:33.188457993Z	62	PC: 12c5f \| Close file
2018-12-17T21:54:33.191421883Z	61	PC: 12c68 \| Open file (Filename = 'PRINT.COM')
2018-12-17T21:54:33.197023599Z	64	PC: 12a5a \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T21:54:33.204075519Z	87	PC: 12c90 \| Get or set file date and time
2018-12-17T21:54:33.206439175Z	62	PC: 12c98 \| Close file
2018-12-17T21:54:33.21154924Z	67	PC: 12ca5 \| Get or set file attributes
2018-12-17T21:54:33.215485646Z	79	PC: 12c4f \| Find next file
2018-12-17T21:54:33.21908254Z	67	PC: 12c16 \| Get or set file attributes
2018-12-17T21:54:33.226806341Z	61	PC: 12c1c \| Open file (Filename = 'HELLO.COM')
2018-12-17T21:54:33.233715656Z	63	PC: 12c2b \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T21:54:33.241551144Z	62	PC: 12c5f \| Close file
2018-12-17T21:54:33.243716082Z	61	PC: 12c68 \| Open file (Filename = 'HELLO.COM')
2018-12-17T21:54:33.256592132Z	64	PC: 12a5a \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T21:54:33.266103828Z	87	PC: 12c90 \| Get or set file date and time
2018-12-17T21:54:33.268470517Z	62	PC: 12c98 \| Close file
2018-12-17T21:54:33.276893141Z	67	PC: 12ca5 \| Get or set file attributes
2018-12-17T21:54:33.282305677Z	79	PC: 12c4f \| Find next file
2018-12-17T21:54:33.284938953Z	67	PC: 12c16 \| Get or set file attributes
2018-12-17T21:54:33.294637311Z	61	PC: 12c1c \| Open file (Filename = 'PHANG.COM')
2018-12-17T21:54:33.302371177Z	63	PC: 12c2b \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T21:54:33.308717493Z	62	PC: 12c5f \| Close file
2018-12-17T21:54:33.310559585Z	61	PC: 12c68 \| Open file (Filename = 'PHANG.COM')
2018-12-17T21:54:33.320685197Z	64	PC: 12a5a \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T21:54:33.326140038Z	87	PC: 12c90 \| Get or set file date and time
2018-12-17T21:54:33.327347773Z	62	PC: 12c98 \| Close file
2018-12-17T21:54:33.332813833Z	67	PC: 12ca5 \| Get or set file attributes
2018-12-17T21:54:33.337580137Z	9	PC: 12cd4 \| Display string (String= ' ')
2018-12-17T21:54:33.34141777Z	76	PC: 12cd8 \| Terminate with return code (Return code = '36')