Sample viewer

vx.netlux.org/Virus.DOS.Leprosy.666.p

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:40:45.745573685Z	44	PC: 12b99 \| Get time 0x12b99: cmp byte ptr [0x106], 0 0x12b9e: je 0x12ba5 0x12ba0: cmp dh, 0xf 0x12ba3: jg 0x12bae 0x12ba5: cmp dl, 0 0x12ba8: je 0x12b95 0x12baa: mov byte ptr [0x106], dl 0x12bae: mov byte ptr [0x24a], 0 0x12bb3: mov byte ptr [0x24b], 4 0x12bb8: mov byte ptr [0x254], 0 0x12bbd: mov cx, 0x27 0x12bc0: mov dx, 0x133 0x12bc3: mov ah, 0x4e 0x12bc5: int 0x21 0x12bc7: cmp ax, 0x12 0x12bca: je 0x12bcf 0x12bcc: call 0x12bf1 0x12bcf: mov cx, 0x27 0x12bd2: mov dx, 0x139 0x12bd5: mov ah, 0x4e
2018-12-17T22:40:45.748202094Z	78	PC: 12bc7 \| Find first file
2018-12-17T22:40:45.754340625Z	78	PC: 12bd9 \| Find first file
2018-12-17T22:40:45.760336117Z	67	PC: 12c12 \| Get or set file attributes
2018-12-17T22:40:45.777636302Z	61	PC: 12c18 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:40:45.785881342Z	63	PC: 12c27 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:40:45.792463301Z	62	PC: 12c5b \| Close file
2018-12-17T22:40:45.794703967Z	61	PC: 12c64 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:40:45.801976631Z	64	PC: 12a5a \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:40:45.810593436Z	87	PC: 12c8c \| Get or set file date and time
2018-12-17T22:40:45.812716053Z	62	PC: 12c94 \| Close file
2018-12-17T22:40:45.820910072Z	67	PC: 12ca1 \| Get or set file attributes
2018-12-17T22:40:45.823872646Z	79	PC: 12c4b \| Find next file
2018-12-17T22:40:45.825660984Z	67	PC: 12c12 \| Get or set file attributes
2018-12-17T22:40:45.832567662Z	61	PC: 12c18 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:40:45.839506341Z	63	PC: 12c27 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:40:45.843589367Z	62	PC: 12c5b \| Close file
2018-12-17T22:40:45.845592022Z	61	PC: 12c64 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:40:45.850079313Z	64	PC: 12a5a \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:40:45.858356612Z	87	PC: 12c8c \| Get or set file date and time
2018-12-17T22:40:45.860416027Z	62	PC: 12c94 \| Close file
2018-12-17T22:40:45.868289236Z	67	PC: 12ca1 \| Get or set file attributes
2018-12-17T22:40:45.873221372Z	79	PC: 12c4b \| Find next file
2018-12-17T22:40:45.876417895Z	67	PC: 12c12 \| Get or set file attributes
2018-12-17T22:40:45.889575743Z	61	PC: 12c18 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:40:45.901208421Z	63	PC: 12c27 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:40:45.908155491Z	62	PC: 12c5b \| Close file
2018-12-17T22:40:45.910648695Z	61	PC: 12c64 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:40:45.91750025Z	64	PC: 12a5a \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:40:45.925883176Z	87	PC: 12c8c \| Get or set file date and time
2018-12-17T22:40:45.929303495Z	62	PC: 12c94 \| Close file
2018-12-17T22:40:45.937090087Z	67	PC: 12ca1 \| Get or set file attributes
2018-12-17T22:40:45.94220295Z	79	PC: 12c4b \| Find next file
2018-12-17T22:40:45.946373256Z	67	PC: 12c12 \| Get or set file attributes
2018-12-17T22:40:45.956624442Z	61	PC: 12c18 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:40:45.968414437Z	63	PC: 12c27 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:40:45.976241392Z	62	PC: 12c5b \| Close file
2018-12-17T22:40:45.978344411Z	61	PC: 12c64 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:40:45.982722165Z	64	PC: 12a5a \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:40:45.988467419Z	87	PC: 12c8c \| Get or set file date and time
2018-12-17T22:40:45.989684895Z	62	PC: 12c94 \| Close file
2018-12-17T22:40:45.994590053Z	67	PC: 12ca1 \| Get or set file attributes
2018-12-17T22:40:45.997600208Z	9	PC: 12cd0 \| Display string (String= ' Program too big to fit in memory')
2018-12-17T22:40:46.000271615Z	76	PC: 12cd4 \| Terminate with return code (Return code = '36')