Sample viewer

vx.netlux.org/Virus.DOS.Leprosy.562

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:43:25.285772286Z	44	PC: 12b2f \| Get time 0x12b2f: cmp byte ptr [0x103], 0 0x12b34: je 0x12b3b 0x12b36: cmp dh, 0xf 0x12b39: jg 0x12b44 0x12b3b: cmp dl, 0 0x12b3e: je 0x12b2b 0x12b40: mov byte ptr [0x103], dl 0x12b44: mov byte ptr [0x1e0], 0 0x12b49: mov byte ptr [0x1e1], 4 0x12b4e: mov byte ptr [0x1ea], 0 0x12b53: mov cx, 0x27 0x12b56: mov dx, 0x115 0x12b59: mov ah, 0x4e 0x12b5b: int 0x21 0x12b5d: cmp ax, 0x12 0x12b60: je 0x12b65 0x12b62: call 0x12b87 0x12b65: mov cx, 0x27 0x12b68: mov dx, 0x11b 0x12b6b: mov ah, 0x4e
2018-12-17T22:43:25.289473892Z	78	PC: 12b5d \| Find first file
2018-12-17T22:43:25.297958937Z	78	PC: 12b6f \| Find first file
2018-12-17T22:43:25.305471255Z	67	PC: 12ba8 \| Get or set file attributes
2018-12-17T22:43:25.323949608Z	61	PC: 12bae \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:43:25.346588955Z	63	PC: 12bbd \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:43:25.357084973Z	62	PC: 12bf1 \| Close file
2018-12-17T22:43:25.359567496Z	61	PC: 12bfa \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:43:25.368269037Z	64	PC: 12a54 \| Write file or device (Write 562 bytes on handle 5)
2018-12-17T22:43:25.377588366Z	87	PC: 12c22 \| Get or set file date and time
2018-12-17T22:43:25.37967766Z	62	PC: 12c2a \| Close file
2018-12-17T22:43:25.393698127Z	67	PC: 12c37 \| Get or set file attributes
2018-12-17T22:43:25.399948753Z	79	PC: 12be1 \| Find next file
2018-12-17T22:43:25.403234973Z	67	PC: 12ba8 \| Get or set file attributes
2018-12-17T22:43:25.4157565Z	61	PC: 12bae \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:43:25.427828993Z	63	PC: 12bbd \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:43:25.435354687Z	62	PC: 12bf1 \| Close file
2018-12-17T22:43:25.437956577Z	61	PC: 12bfa \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:43:25.445924786Z	64	PC: 12a54 \| Write file or device (Write 562 bytes on handle 5)
2018-12-17T22:43:25.463825294Z	87	PC: 12c22 \| Get or set file date and time
2018-12-17T22:43:25.466613285Z	62	PC: 12c2a \| Close file
2018-12-17T22:43:25.47606824Z	67	PC: 12c37 \| Get or set file attributes
2018-12-17T22:43:25.486622483Z	79	PC: 12be1 \| Find next file
2018-12-17T22:43:25.499552848Z	67	PC: 12ba8 \| Get or set file attributes
2018-12-17T22:43:25.511306319Z	61	PC: 12bae \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:43:25.518800157Z	63	PC: 12bbd \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:43:25.526465809Z	62	PC: 12bf1 \| Close file
2018-12-17T22:43:25.529618128Z	61	PC: 12bfa \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:43:25.537469051Z	64	PC: 12a54 \| Write file or device (Write 562 bytes on handle 5)
2018-12-17T22:43:25.546852849Z	87	PC: 12c22 \| Get or set file date and time
2018-12-17T22:43:25.550341165Z	62	PC: 12c2a \| Close file
2018-12-17T22:43:25.559067966Z	67	PC: 12c37 \| Get or set file attributes
2018-12-17T22:43:25.564556512Z	79	PC: 12be1 \| Find next file
2018-12-17T22:43:25.583316513Z	67	PC: 12ba8 \| Get or set file attributes
2018-12-17T22:43:25.594970909Z	61	PC: 12bae \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:43:25.608359031Z	63	PC: 12bbd \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:43:25.616916242Z	62	PC: 12bf1 \| Close file
2018-12-17T22:43:25.619642481Z	61	PC: 12bfa \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:43:25.627759965Z	64	PC: 12a54 \| Write file or device (Write 562 bytes on handle 5)
2018-12-17T22:43:25.637278768Z	87	PC: 12c22 \| Get or set file date and time
2018-12-17T22:43:25.640065463Z	62	PC: 12c2a \| Close file
2018-12-17T22:43:25.648674223Z	67	PC: 12c37 \| Get or set file attributes
2018-12-17T22:43:25.654056254Z	9	PC: 12c66 \| Display string (String= ' Program too big to fit in memory')
2018-12-17T22:43:25.659537887Z	76	PC: 12c6a \| Terminate with return code (Return code = '36')