Sample viewer

vx.netlux.org/Virus.DOS.Leprosy.600

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:45:06.442865231Z	78	PC: 12b77 \| Find first file
2018-12-17T22:45:06.449667867Z	78	PC: 12b86 \| Find first file
2018-12-17T22:45:06.456768443Z	67	PC: 12bb6 \| Get or set file attributes
2018-12-17T22:45:06.47325092Z	61	PC: 12bbb \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:45:06.480786763Z	63	PC: 12bca \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:45:06.488667765Z	62	PC: 12bf5 \| Close file
2018-12-17T22:45:06.49103457Z	61	PC: 12bfd \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:45:06.505268794Z	64	PC: 12a5a \| Write file or device (Write 600 bytes on handle 5)
2018-12-17T22:45:06.515570552Z	87	PC: 12c2d \| Get or set file date and time
2018-12-17T22:45:06.518197115Z	62	PC: 12c31 \| Close file
2018-12-17T22:45:06.526304602Z	67	PC: 12c3d \| Get or set file attributes
2018-12-17T22:45:06.531399161Z	79	PC: 12bea \| Find next file
2018-12-17T22:45:06.534693618Z	67	PC: 12bb6 \| Get or set file attributes
2018-12-17T22:45:06.545287375Z	61	PC: 12bbb \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:45:06.552847143Z	63	PC: 12bca \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:45:06.560863438Z	62	PC: 12bf5 \| Close file
2018-12-17T22:45:06.563248087Z	61	PC: 12bfd \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:45:06.577209169Z	64	PC: 12a5a \| Write file or device (Write 600 bytes on handle 5)
2018-12-17T22:45:06.587076331Z	87	PC: 12c2d \| Get or set file date and time
2018-12-17T22:45:06.588683439Z	62	PC: 12c31 \| Close file
2018-12-17T22:45:06.597223399Z	67	PC: 12c3d \| Get or set file attributes
2018-12-17T22:45:06.603095908Z	79	PC: 12bea \| Find next file
2018-12-17T22:45:06.606474814Z	67	PC: 12bb6 \| Get or set file attributes
2018-12-17T22:45:06.61960832Z	61	PC: 12bbb \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:45:06.628279847Z	63	PC: 12bca \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:45:06.635394179Z	62	PC: 12bf5 \| Close file
2018-12-17T22:45:06.637606874Z	61	PC: 12bfd \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:45:06.651016389Z	64	PC: 12a5a \| Write file or device (Write 600 bytes on handle 5)
2018-12-17T22:45:06.660209686Z	87	PC: 12c2d \| Get or set file date and time
2018-12-17T22:45:06.662179866Z	62	PC: 12c31 \| Close file
2018-12-17T22:45:06.670753388Z	67	PC: 12c3d \| Get or set file attributes
2018-12-17T22:45:06.676191452Z	9	PC: 12c75 \| Display string (String= 'Program too big to fit in memory ')

{"DateBased":false,"Day":0,"Month":0,"Year":0,"Hour":0,"Min":0,"Second":0,"TimeBased":true,"OriginalID":8434,"SideJobID":0}

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T13:07:11.425234613Z	78	PC: 12b77 \| Find first file
2018-12-25T13:07:11.431218422Z	78	PC: 12b86 \| Find first file
2018-12-25T13:07:11.437240186Z	67	PC: 12bb6 \| Get or set file attributes
2018-12-25T13:07:11.458048243Z	61	PC: 12bbb \| Open file (Filename = 'SLEEP.COM')
2018-12-25T13:07:11.464711929Z	63	PC: 12bca \| Read file or device (Read 20 bytes on handle 5)
2018-12-25T13:07:11.469323211Z	62	PC: 12bf5 \| Close file
2018-12-25T13:07:11.470440561Z	61	PC: 12bfd \| Open file (Filename = 'SLEEP.COM')
2018-12-25T13:07:11.478005274Z	64	PC: 12a5a \| Write file or device (Write 600 bytes on handle 5)
2018-12-25T13:07:11.484048236Z	87	PC: 12c2d \| Get or set file date and time
2018-12-25T13:07:11.485179146Z	62	PC: 12c31 \| Close file
2018-12-25T13:07:11.489969623Z	67	PC: 12c3d \| Get or set file attributes
2018-12-25T13:07:11.493844414Z	79	PC: 12bea \| Find next file
2018-12-25T13:07:11.495823418Z	67	PC: 12bb6 \| Get or set file attributes (See above)
2018-12-25T13:07:11.50273609Z	61	PC: 12bbb \| Open file (See above)
2018-12-25T13:07:11.509818048Z	63	PC: 12bca \| Read file or device (See above)
2018-12-25T13:07:11.515969556Z	62	PC: 12bf5 \| Close file (See above)
2018-12-25T13:07:11.51790069Z	61	PC: 12bfd \| Open file (See above)
2018-12-25T13:07:11.52525679Z	64	PC: 12a5a \| Write file or device (See above)
2018-12-25T13:07:11.533258234Z	87	PC: 12c2d \| Get or set file date and time (See above)
2018-12-25T13:07:11.534571313Z	62	PC: 12c31 \| Close file (See above)
2018-12-25T13:07:11.542996376Z	67	PC: 12c3d \| Get or set file attributes (See above)
2018-12-25T13:07:11.553012845Z	79	PC: 12bea \| Find next file (See above)
2018-12-25T13:07:11.559239771Z	67	PC: 12bb6 \| Get or set file attributes (See above)
2018-12-25T13:07:11.574463919Z	61	PC: 12bbb \| Open file (See above)
2018-12-25T13:07:11.58105675Z	63	PC: 12bca \| Read file or device (See above)
2018-12-25T13:07:11.587218282Z	62	PC: 12bf5 \| Close file (See above)
2018-12-25T13:07:11.589403729Z	61	PC: 12bfd \| Open file (See above)
2018-12-25T13:07:11.595973848Z	64	PC: 12a5a \| Write file or device (See above)
2018-12-25T13:07:11.604587321Z	87	PC: 12c2d \| Get or set file date and time (See above)
2018-12-25T13:07:11.606150578Z	62	PC: 12c31 \| Close file (See above)
2018-12-25T13:07:11.611376111Z	67	PC: 12c3d \| Get or set file attributes (See above)
2018-12-25T13:07:11.617501293Z	9	PC: 12c75 \| Display string (String= 'Program too big to fit in memory ')

{"DateBased":false,"Day":0,"Month":0,"Year":0,"Hour":0,"Min":0,"Second":56,"TimeBased":true,"OriginalID":8434,"SideJobID":0}

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:04:40.23261597Z	78	PC: 12b77 \| Find first file
2018-12-25T12:04:40.238732647Z	78	PC: 12b86 \| Find first file
2018-12-25T12:04:40.244312052Z	67	PC: 12bb6 \| Get or set file attributes
2018-12-25T12:04:40.26413284Z	61	PC: 12bbb \| Open file (Filename = 'SLEEP.COM')
2018-12-25T12:04:40.268813055Z	63	PC: 12bca \| Read file or device (Read 20 bytes on handle 5)
2018-12-25T12:04:40.275190425Z	62	PC: 12bf5 \| Close file
2018-12-25T12:04:40.276759873Z	61	PC: 12bfd \| Open file (Filename = 'SLEEP.COM')
2018-12-25T12:04:40.287550721Z	64	PC: 12a5a \| Write file or device (Write 600 bytes on handle 5)
2018-12-25T12:04:40.29556027Z	87	PC: 12c2d \| Get or set file date and time
2018-12-25T12:04:40.296937413Z	62	PC: 12c31 \| Close file
2018-12-25T12:04:40.304077637Z	67	PC: 12c3d \| Get or set file attributes
2018-12-25T12:04:40.309261752Z	79	PC: 12bea \| Find next file
2018-12-25T12:04:40.311970598Z	67	PC: 12bb6 \| Get or set file attributes (See above)
2018-12-25T12:04:40.324305346Z	61	PC: 12bbb \| Open file (See above)
2018-12-25T12:04:40.331011472Z	63	PC: 12bca \| Read file or device (See above)
2018-12-25T12:04:40.350464908Z	62	PC: 12bf5 \| Close file (See above)
2018-12-25T12:04:40.352124731Z	61	PC: 12bfd \| Open file (See above)
2018-12-25T12:04:40.360396806Z	64	PC: 12a5a \| Write file or device (See above)
2018-12-25T12:04:40.368156933Z	87	PC: 12c2d \| Get or set file date and time (See above)
2018-12-25T12:04:40.369473732Z	62	PC: 12c31 \| Close file (See above)
2018-12-25T12:04:40.378371238Z	67	PC: 12c3d \| Get or set file attributes (See above)
2018-12-25T12:04:40.384954773Z	79	PC: 12bea \| Find next file (See above)
2018-12-25T12:04:40.387566628Z	67	PC: 12bb6 \| Get or set file attributes (See above)
2018-12-25T12:04:40.397689872Z	61	PC: 12bbb \| Open file (See above)
2018-12-25T12:04:40.404450151Z	63	PC: 12bca \| Read file or device (See above)
2018-12-25T12:04:40.411164964Z	62	PC: 12bf5 \| Close file (See above)
2018-12-25T12:04:40.413608669Z	61	PC: 12bfd \| Open file (See above)
2018-12-25T12:04:40.420985401Z	64	PC: 12a5a \| Write file or device (See above)
2018-12-25T12:04:40.429140413Z	87	PC: 12c2d \| Get or set file date and time (See above)
2018-12-25T12:04:40.431258574Z	62	PC: 12c31 \| Close file (See above)
2018-12-25T12:04:40.439578714Z	67	PC: 12c3d \| Get or set file attributes (See above)
2018-12-25T12:04:40.445531979Z	9	PC: 12c75 \| Display string (String= 'Program too big to fit in memory ')