Sample viewer

vx.netlux.org/Virus.DOS.Leprosy.Taz.622

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:34:41.32733153Z	44	PC: 12b6e \| Get time 0x12b6e: cmp byte ptr [0x103], 0 0x12b73: je 0x12b7a 0x12b75: cmp dh, 0xf 0x12b78: jg 0x12b83 0x12b7a: cmp dl, 0 0x12b7d: je 0x12b6a 0x12b7f: mov byte ptr [0x103], dl 0x12b83: mov byte ptr [0x21f], 0 0x12b88: mov byte ptr [0x220], 0xa 0x12b8d: mov byte ptr [0x229], 0 0x12b92: mov cx, 0x27 0x12b95: mov dx, 0x115 0x12b98: mov ah, 0x4e 0x12b9a: int 0x21 0x12b9c: cmp ax, 0x12 0x12b9f: je 0x12ba4 0x12ba1: call 0x12bc6 0x12ba4: mov cx, 0x27 0x12ba7: mov dx, 0x11b 0x12baa: mov ah, 0x4e
2018-12-17T22:34:41.330813681Z	78	PC: 12b9c \| Find first file
2018-12-17T22:34:41.339488334Z	78	PC: 12bae \| Find first file
2018-12-17T22:34:41.346310898Z	67	PC: 12be7 \| Get or set file attributes
2018-12-17T22:34:41.365914619Z	61	PC: 12bed \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:34:41.374680421Z	63	PC: 12bfc \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:34:41.382597924Z	62	PC: 12c30 \| Close file
2018-12-17T22:34:41.385481673Z	61	PC: 12c39 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:34:41.394970777Z	64	PC: 12a54 \| Write file or device (Write 622 bytes on handle 5)
2018-12-17T22:34:41.404912784Z	87	PC: 12c61 \| Get or set file date and time
2018-12-17T22:34:41.406704414Z	62	PC: 12c69 \| Close file
2018-12-17T22:34:41.416590243Z	67	PC: 12c76 \| Get or set file attributes
2018-12-17T22:34:41.422759018Z	79	PC: 12c20 \| Find next file
2018-12-17T22:34:41.426820282Z	67	PC: 12be7 \| Get or set file attributes
2018-12-17T22:34:41.439601749Z	61	PC: 12bed \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:34:41.448479288Z	63	PC: 12bfc \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:34:41.456005493Z	62	PC: 12c30 \| Close file
2018-12-17T22:34:41.458868484Z	61	PC: 12c39 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:34:41.472704436Z	64	PC: 12a54 \| Write file or device (Write 622 bytes on handle 5)
2018-12-17T22:34:41.482708801Z	87	PC: 12c61 \| Get or set file date and time
2018-12-17T22:34:41.484893921Z	62	PC: 12c69 \| Close file
2018-12-17T22:34:41.503981125Z	67	PC: 12c76 \| Get or set file attributes
2018-12-17T22:34:41.51168631Z	79	PC: 12c20 \| Find next file
2018-12-17T22:34:41.515088374Z	67	PC: 12be7 \| Get or set file attributes
2018-12-17T22:34:41.527812993Z	61	PC: 12bed \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:34:41.535531279Z	63	PC: 12bfc \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:34:41.543610226Z	62	PC: 12c30 \| Close file
2018-12-17T22:34:41.546468213Z	61	PC: 12c39 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:34:41.554556539Z	64	PC: 12a54 \| Write file or device (Write 622 bytes on handle 5)
2018-12-17T22:34:41.564360544Z	87	PC: 12c61 \| Get or set file date and time
2018-12-17T22:34:41.582747584Z	62	PC: 12c69 \| Close file
2018-12-17T22:34:41.591807906Z	67	PC: 12c76 \| Get or set file attributes
2018-12-17T22:34:41.597584524Z	79	PC: 12c20 \| Find next file
2018-12-17T22:34:41.601037111Z	67	PC: 12be7 \| Get or set file attributes
2018-12-17T22:34:41.613618672Z	61	PC: 12bed \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:34:41.621386425Z	63	PC: 12bfc \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:34:41.628914209Z	62	PC: 12c30 \| Close file
2018-12-17T22:34:41.631703709Z	61	PC: 12c39 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:34:41.639081044Z	64	PC: 12a54 \| Write file or device (Write 622 bytes on handle 5)
2018-12-17T22:34:41.648140842Z	87	PC: 12c61 \| Get or set file date and time
2018-12-17T22:34:41.650427768Z	62	PC: 12c69 \| Close file
2018-12-17T22:34:41.669173714Z	67	PC: 12c76 \| Get or set file attributes
2018-12-17T22:34:41.675506497Z	79	PC: 12c20 \| Find next file
2018-12-17T22:34:41.679606907Z	67	PC: 12be7 \| Get or set file attributes
2018-12-17T22:34:41.690926045Z	61	PC: 12bed \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:34:41.698997327Z	63	PC: 12bfc \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:34:41.707656667Z	62	PC: 12c30 \| Close file
2018-12-17T22:34:41.709980441Z	61	PC: 12c39 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:34:41.718025643Z	64	PC: 12a54 \| Write file or device (Write 622 bytes on handle 5)
2018-12-17T22:34:41.727116827Z	87	PC: 12c61 \| Get or set file date and time
2018-12-17T22:34:41.732602444Z	62	PC: 12c69 \| Close file
2018-12-17T22:34:41.747934004Z	67	PC: 12c76 \| Get or set file attributes
2018-12-17T22:34:41.754301738Z	79	PC: 12c20 \| Find next file
2018-12-17T22:34:41.758902134Z	67	PC: 12be7 \| Get or set file attributes
2018-12-17T22:34:41.770742414Z	61	PC: 12bed \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:34:41.778792757Z	63	PC: 12bfc \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:34:41.787880927Z	62	PC: 12c30 \| Close file
2018-12-17T22:34:41.790508248Z	61	PC: 12c39 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:34:41.798612837Z	64	PC: 12a54 \| Write file or device (Write 622 bytes on handle 5)
2018-12-17T22:34:41.809463562Z	87	PC: 12c61 \| Get or set file date and time
2018-12-17T22:34:41.812264816Z	62	PC: 12c69 \| Close file
2018-12-17T22:34:41.821234152Z	67	PC: 12c76 \| Get or set file attributes
2018-12-17T22:34:41.828312258Z	79	PC: 12c20 \| Find next file
2018-12-17T22:34:41.831452965Z	67	PC: 12be7 \| Get or set file attributes
2018-12-17T22:34:41.842529938Z	61	PC: 12bed \| Open file (Filename = 'PAH.COM')
2018-12-17T22:34:41.850249045Z	63	PC: 12bfc \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:34:41.858628945Z	62	PC: 12c30 \| Close file
2018-12-17T22:34:41.861262308Z	61	PC: 12c39 \| Open file (Filename = 'PAH.COM')
2018-12-17T22:34:41.875278887Z	64	PC: 12a54 \| Write file or device (Write 622 bytes on handle 5)
2018-12-17T22:34:41.88591598Z	87	PC: 12c61 \| Get or set file date and time
2018-12-17T22:34:41.88837522Z	62	PC: 12c69 \| Close file
2018-12-17T22:34:41.897672076Z	67	PC: 12c76 \| Get or set file attributes
2018-12-17T22:34:41.904839383Z	79	PC: 12c20 \| Find next file
2018-12-17T22:34:41.908193158Z	67	PC: 12be7 \| Get or set file attributes
2018-12-17T22:34:41.919399578Z	61	PC: 12bed \| Open file (Filename = 'TEST.COM')
2018-12-17T22:34:41.927791103Z	63	PC: 12bfc \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:34:41.935354833Z	62	PC: 12c30 \| Close file
2018-12-17T22:34:41.938412034Z	61	PC: 12c39 \| Open file (Filename = 'TEST.COM')
2018-12-17T22:34:41.946041763Z	64	PC: 12a54 \| Write file or device (Write 622 bytes on handle 5)
2018-12-17T22:34:41.955188378Z	87	PC: 12c61 \| Get or set file date and time
2018-12-17T22:34:41.957308981Z	62	PC: 12c69 \| Close file
2018-12-17T22:34:41.965269484Z	67	PC: 12c76 \| Get or set file attributes
2018-12-17T22:34:41.971711635Z	79	PC: 12c20 \| Find next file
2018-12-17T22:34:41.974561313Z	59	PC: 12bbd \| Change current directory
2018-12-17T22:34:41.979337883Z	78	PC: 12b9c \| Find first file
2018-12-17T22:34:41.986240537Z	78	PC: 12bae \| Find first file
2018-12-17T22:34:41.994594269Z	67	PC: 12be7 \| Get or set file attributes
2018-12-17T22:34:42.009177985Z	61	PC: 12bed \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:34:42.014281115Z	63	PC: 12bfc \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:34:42.018747684Z	62	PC: 12c30 \| Close file
2018-12-17T22:34:42.020262991Z	61	PC: 12c39 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:34:42.027594478Z	64	PC: 12a54 \| Write file or device (Write 622 bytes on handle 5)
2018-12-17T22:34:42.037034382Z	87	PC: 12c61 \| Get or set file date and time
2018-12-17T22:34:42.039407221Z	62	PC: 12c69 \| Close file
2018-12-17T22:34:42.0491234Z	67	PC: 12c76 \| Get or set file attributes
2018-12-17T22:34:42.054877121Z	9	PC: 12caa \| Display string (String= ' Bad command or file name')
2018-12-17T22:34:42.05767312Z	76	PC: 12cae \| Terminate with return code (Return code = '36')