Sample viewer

vx.netlux.org/Virus.DOS.Leprosy.666.j

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:33:41.925760336Z	44	PC: 12b29 \| Get time 0x12b29: cmp byte ptr [0x106], 0 0x12b2e: je 0x12b35 0x12b30: cmp dh, 0xf 0x12b33: jg 0x12b3e 0x12b35: cmp dl, 0 0x12b38: je 0x12b25 0x12b3a: mov byte ptr [0x106], dl 0x12b3e: mov byte ptr [0x1da], 0 0x12b43: mov byte ptr [0x1db], 4 0x12b48: mov byte ptr [0x1e4], 0 0x12b4d: mov cx, 0x27 0x12b50: mov dx, 0x131 0x12b53: mov ah, 0x4e 0x12b55: int 0x21 0x12b57: cmp ax, 0x12 0x12b5a: je 0x12b5f 0x12b5c: call 0x12b81 0x12b5f: mov cx, 0x27 0x12b62: mov dx, 0x137 0x12b65: mov ah, 0x4e
2018-12-17T22:33:41.928359429Z	78	PC: 12b57 \| Find first file
2018-12-17T22:33:41.9365674Z	78	PC: 12b69 \| Find first file
2018-12-17T22:33:41.94250941Z	67	PC: 12ba2 \| Get or set file attributes
2018-12-17T22:33:41.962967913Z	61	PC: 12ba8 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:33:41.970034318Z	63	PC: 12bb7 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:33:41.977505808Z	62	PC: 12beb \| Close file
2018-12-17T22:33:41.97989583Z	61	PC: 12bf4 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:33:41.986706787Z	64	PC: 12a5a \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:33:41.994873611Z	87	PC: 12c1c \| Get or set file date and time
2018-12-17T22:33:41.996633619Z	62	PC: 12c24 \| Close file
2018-12-17T22:33:42.004628534Z	67	PC: 12c31 \| Get or set file attributes
2018-12-17T22:33:42.010860859Z	79	PC: 12bdb \| Find next file
2018-12-17T22:33:42.0134131Z	67	PC: 12ba2 \| Get or set file attributes
2018-12-17T22:33:42.024203064Z	61	PC: 12ba8 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:33:42.035409525Z	63	PC: 12bb7 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:33:42.042048762Z	62	PC: 12beb \| Close file
2018-12-17T22:33:42.044541617Z	61	PC: 12bf4 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:33:42.05901167Z	64	PC: 12a5a \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:33:42.068565365Z	87	PC: 12c1c \| Get or set file date and time
2018-12-17T22:33:42.071294941Z	62	PC: 12c24 \| Close file
2018-12-17T22:33:42.079388982Z	67	PC: 12c31 \| Get or set file attributes
2018-12-17T22:33:42.084294791Z	79	PC: 12bdb \| Find next file
2018-12-17T22:33:42.087872169Z	67	PC: 12ba2 \| Get or set file attributes
2018-12-17T22:33:42.097628316Z	61	PC: 12ba8 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:33:42.116020569Z	63	PC: 12bb7 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:33:42.126751934Z	62	PC: 12beb \| Close file
2018-12-17T22:33:42.128554289Z	61	PC: 12bf4 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:33:42.135508398Z	64	PC: 12a5a \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:33:42.155057173Z	87	PC: 12c1c \| Get or set file date and time
2018-12-17T22:33:42.157514843Z	62	PC: 12c24 \| Close file
2018-12-17T22:33:42.166513716Z	67	PC: 12c31 \| Get or set file attributes
2018-12-17T22:33:42.171677386Z	79	PC: 12bdb \| Find next file
2018-12-17T22:33:42.176311764Z	67	PC: 12ba2 \| Get or set file attributes
2018-12-17T22:33:42.184707077Z	61	PC: 12ba8 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:33:42.190219737Z	63	PC: 12bb7 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:33:42.195560002Z	62	PC: 12beb \| Close file
2018-12-17T22:33:42.197580358Z	61	PC: 12bf4 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:33:42.204795367Z	64	PC: 12a5a \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:33:42.214217831Z	87	PC: 12c1c \| Get or set file date and time
2018-12-17T22:33:42.215676883Z	62	PC: 12c24 \| Close file
2018-12-17T22:33:42.222055884Z	67	PC: 12c31 \| Get or set file attributes
2018-12-17T22:33:42.232556839Z	9	PC: 12c5b \| Display string (String= ' File allocation error.')
2018-12-17T22:33:42.236760525Z	76	PC: 12c5f \| Terminate with return code (Return code = '36')