Sample viewer

vx.netlux.org/Virus.DOS.Leprosy.666.f

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:35:35.77318635Z	44	PC: 12bea \| Get time 0x12bea: cmp byte ptr [0x106], 0 0x12bef: je 0x12bf6 0x12bf1: cmp dh, 0xf 0x12bf4: jg 0x12bff 0x12bf6: cmp dl, 0 0x12bf9: je 0x12be6 0x12bfb: mov byte ptr [0x106], dl 0x12bff: mov byte ptr [0x29b], 0 0x12c04: mov byte ptr [0x29c], 4 0x12c09: mov byte ptr [0x2a5], 0 0x12c0e: mov cx, 0x27 0x12c11: mov dx, 0x131 0x12c14: mov ah, 0x4e 0x12c16: int 0x21 0x12c18: cmp ax, 0x12 0x12c1b: je 0x12c20 0x12c1d: call 0x12c42 0x12c20: mov cx, 0x27 0x12c23: mov dx, 0x137 0x12c26: mov ah, 0x4e
2018-12-17T22:35:35.778768358Z	78	PC: 12c18 \| Find first file
2018-12-17T22:35:35.786966924Z	78	PC: 12c2a \| Find first file
2018-12-17T22:35:35.793649097Z	67	PC: 12c63 \| Get or set file attributes
2018-12-17T22:35:35.817287299Z	61	PC: 12c69 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:35:35.83005255Z	63	PC: 12c78 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:35:35.836821805Z	62	PC: 12cac \| Close file
2018-12-17T22:35:35.839577263Z	61	PC: 12cb5 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:35:35.849346775Z	64	PC: 12a5a \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:35:35.858365399Z	87	PC: 12cdd \| Get or set file date and time
2018-12-17T22:35:35.860401017Z	62	PC: 12ce5 \| Close file
2018-12-17T22:35:35.86847577Z	67	PC: 12cf2 \| Get or set file attributes
2018-12-17T22:35:35.88115512Z	79	PC: 12c9c \| Find next file
2018-12-17T22:35:35.88590062Z	67	PC: 12c63 \| Get or set file attributes
2018-12-17T22:35:35.899229878Z	61	PC: 12c69 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:35:35.912852908Z	63	PC: 12c78 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:35:35.923866974Z	62	PC: 12cac \| Close file
2018-12-17T22:35:35.925866354Z	61	PC: 12cb5 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:35:35.935400374Z	64	PC: 12a5a \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:35:35.944854665Z	87	PC: 12cdd \| Get or set file date and time
2018-12-17T22:35:35.946882248Z	62	PC: 12ce5 \| Close file
2018-12-17T22:35:35.956274533Z	67	PC: 12cf2 \| Get or set file attributes
2018-12-17T22:35:35.961361283Z	79	PC: 12c9c \| Find next file
2018-12-17T22:35:35.964309733Z	67	PC: 12c63 \| Get or set file attributes
2018-12-17T22:35:35.975139804Z	61	PC: 12c69 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:35:35.982467927Z	63	PC: 12c78 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:35:35.989767187Z	62	PC: 12cac \| Close file
2018-12-17T22:35:35.991726642Z	61	PC: 12cb5 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:35:36.004062657Z	64	PC: 12a5a \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:35:36.013088304Z	87	PC: 12cdd \| Get or set file date and time
2018-12-17T22:35:36.014970334Z	62	PC: 12ce5 \| Close file
2018-12-17T22:35:36.023605449Z	67	PC: 12cf2 \| Get or set file attributes
2018-12-17T22:35:36.028743174Z	79	PC: 12c9c \| Find next file
2018-12-17T22:35:36.031800438Z	67	PC: 12c63 \| Get or set file attributes
2018-12-17T22:35:36.042903111Z	61	PC: 12c69 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:35:36.050082265Z	63	PC: 12c78 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:35:36.060501005Z	62	PC: 12cac \| Close file
2018-12-17T22:35:36.063030659Z	61	PC: 12cb5 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:35:36.079839203Z	64	PC: 12a5a \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:35:36.090634489Z	87	PC: 12cdd \| Get or set file date and time
2018-12-17T22:35:36.093637571Z	62	PC: 12ce5 \| Close file
2018-12-17T22:35:36.106222473Z	67	PC: 12cf2 \| Get or set file attributes
2018-12-17T22:35:36.111463653Z	9	PC: 12d21 \| Display string (String= ' Program too big to fit in memory')
2018-12-17T22:35:36.117383826Z	76	PC: 12d25 \| Terminate with return code (Return code = '36')