Sample viewer

vx.netlux.org/Virus.DOS.Leprosy.666.o

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:27:40.637581605Z	44	PC: 12b9a \| Get time 0x12b9a: cmp byte ptr [0x106], 0 0x12b9f: je 0x12ba6 0x12ba1: cmp dh, 0xf 0x12ba4: jg 0x12baf 0x12ba6: cmp dl, 0 0x12ba9: je 0x12b96 0x12bab: mov byte ptr [0x106], dl 0x12baf: mov byte ptr [0x24b], 0 0x12bb4: mov byte ptr [0x24c], 4 0x12bb9: mov byte ptr [0x255], 0 0x12bbe: mov cx, 0x27 0x12bc1: mov dx, 0x134 0x12bc4: mov ah, 0x4e 0x12bc6: int 0x21 0x12bc8: cmp ax, 0x12 0x12bcb: je 0x12bd0 0x12bcd: call 0x12bf2 0x12bd0: mov cx, 0x27 0x12bd3: mov dx, 0x13a 0x12bd6: mov ah, 0x4e
2018-12-17T22:27:40.639888269Z	78	PC: 12bc8 \| Find first file
2018-12-17T22:27:40.647632438Z	78	PC: 12bda \| Find first file
2018-12-17T22:27:40.654390741Z	67	PC: 12c13 \| Get or set file attributes
2018-12-17T22:27:40.675139001Z	61	PC: 12c19 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:27:40.683109924Z	63	PC: 12c28 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:27:40.690409538Z	62	PC: 12c5c \| Close file
2018-12-17T22:27:40.692381551Z	61	PC: 12c65 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:27:40.706404394Z	64	PC: 12a5d \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:27:40.716159607Z	87	PC: 12c8d \| Get or set file date and time
2018-12-17T22:27:40.717911332Z	62	PC: 12c95 \| Close file
2018-12-17T22:27:40.727708203Z	67	PC: 12ca2 \| Get or set file attributes
2018-12-17T22:27:40.733008552Z	79	PC: 12c4c \| Find next file
2018-12-17T22:27:40.736821321Z	67	PC: 12c13 \| Get or set file attributes
2018-12-17T22:27:40.747745842Z	61	PC: 12c19 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:27:40.755986325Z	63	PC: 12c28 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:27:40.763100301Z	62	PC: 12c5c \| Close file
2018-12-17T22:27:40.765020192Z	61	PC: 12c65 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:27:40.773238835Z	64	PC: 12a5d \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:27:40.782403582Z	87	PC: 12c8d \| Get or set file date and time
2018-12-17T22:27:40.784161926Z	62	PC: 12c95 \| Close file
2018-12-17T22:27:40.793239181Z	67	PC: 12ca2 \| Get or set file attributes
2018-12-17T22:27:40.799161197Z	79	PC: 12c4c \| Find next file
2018-12-17T22:27:40.801928942Z	67	PC: 12c13 \| Get or set file attributes
2018-12-17T22:27:40.813210175Z	61	PC: 12c19 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:27:40.820486045Z	63	PC: 12c28 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:27:40.827517488Z	62	PC: 12c5c \| Close file
2018-12-17T22:27:40.829880048Z	61	PC: 12c65 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:27:40.836484071Z	64	PC: 12a5d \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:27:40.84667693Z	87	PC: 12c8d \| Get or set file date and time
2018-12-17T22:27:40.848656602Z	62	PC: 12c95 \| Close file
2018-12-17T22:27:40.858037151Z	67	PC: 12ca2 \| Get or set file attributes
2018-12-17T22:27:40.864993344Z	79	PC: 12c4c \| Find next file
2018-12-17T22:27:40.868028287Z	67	PC: 12c13 \| Get or set file attributes
2018-12-17T22:27:40.879991417Z	61	PC: 12c19 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:27:40.88723067Z	63	PC: 12c28 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:27:40.894247317Z	62	PC: 12c5c \| Close file
2018-12-17T22:27:40.896461691Z	61	PC: 12c65 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:27:40.904089754Z	64	PC: 12a5d \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:27:40.913385316Z	87	PC: 12c8d \| Get or set file date and time
2018-12-17T22:27:40.915434844Z	62	PC: 12c95 \| Close file
2018-12-17T22:27:40.924455766Z	67	PC: 12ca2 \| Get or set file attributes
2018-12-17T22:27:40.930001301Z	9	PC: 12cd1 \| Display string (String= ' Program too big to fit in memory')
2018-12-17T22:27:40.934941652Z	76	PC: 12cd5 \| Terminate with return code (Return code = '36')