Sample viewer

vx.netlux.org/Virus.DOS.Leprosy.Taz.2197

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:48:41.961462416Z 44 PC: 13138 | Get time 0x13138: cmp byte ptr [0x106], 0
0x1313d: je 0x13144
0x1313f: cmp dh, 0xf
0x13142: jg 0x1314d
0x13144: cmp dl, 0
0x13147: je 0x13134
0x13149: mov byte ptr [0x106], dl
0x1314d: mov byte ptr [0x7e9], 0
0x13152: mov byte ptr [0x7ea], 4
0x13157: mov byte ptr [0x7f3], 0
0x1315c: mov cx, 0x27
0x1315f: mov dx, 0x131
0x13162: mov ah, 0x4e
0x13164: int 0x21
0x13166: cmp ax, 0x12
0x13169: je 0x1316e
0x1316b: call 0x13190
0x1316e: mov cx, 0x27
0x13171: mov dx, 0x137
0x13174: mov ah, 0x4e
2018-12-17T22:48:41.963851355Z 78 PC: 13166 | Find first file
2018-12-17T22:48:41.970867808Z 78 PC: 13178 | Find first file
2018-12-17T22:48:41.979020978Z 67 PC: 131b1 | Get or set file attributes
2018-12-17T22:48:41.995300315Z 61 PC: 131b7 | Open file (Filename = 'SLEEP.COM')
2018-12-17T22:48:42.003567529Z 63 PC: 131c6 | Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:48:42.010740848Z 62 PC: 131fa | Close file
2018-12-17T22:48:42.01304647Z 61 PC: 13203 | Open file (Filename = 'SLEEP.COM')
2018-12-17T22:48:42.022013989Z 64 PC: 12a5a | Write file or device (Write 2197 bytes on handle 5)
2018-12-17T22:48:42.031842536Z 87 PC: 1322b | Get or set file date and time
2018-12-17T22:48:42.033816605Z 62 PC: 13233 | Close file
2018-12-17T22:48:42.050028977Z 67 PC: 13240 | Get or set file attributes
2018-12-17T22:48:42.057254744Z 79 PC: 131ea | Find next file
2018-12-17T22:48:42.060282623Z 67 PC: 131b1 | Get or set file attributes
2018-12-17T22:48:42.070913027Z 61 PC: 131b7 | Open file (Filename = 'PRINT.COM')
2018-12-17T22:48:42.079099429Z 63 PC: 131c6 | Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:48:42.086223203Z 62 PC: 131fa | Close file
2018-12-17T22:48:42.088407438Z 61 PC: 13203 | Open file (Filename = 'PRINT.COM')
2018-12-17T22:48:42.097927645Z 64 PC: 12a5a | Write file or device (Write 2197 bytes on handle 5)
2018-12-17T22:48:42.107624014Z 87 PC: 1322b | Get or set file date and time
2018-12-17T22:48:42.109393509Z 62 PC: 13233 | Close file
2018-12-17T22:48:42.122365973Z 67 PC: 13240 | Get or set file attributes
2018-12-17T22:48:42.127633651Z 79 PC: 131ea | Find next file
2018-12-17T22:48:42.130875562Z 67 PC: 131b1 | Get or set file attributes
2018-12-17T22:48:42.142130529Z 61 PC: 131b7 | Open file (Filename = 'HELLO.COM')
2018-12-17T22:48:42.149751979Z 63 PC: 131c6 | Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:48:42.156946758Z 62 PC: 131fa | Close file
2018-12-17T22:48:42.159185164Z 61 PC: 13203 | Open file (Filename = 'HELLO.COM')
2018-12-17T22:48:42.16814025Z 64 PC: 12a5a | Write file or device (Write 2197 bytes on handle 5)
2018-12-17T22:48:42.190910303Z 87 PC: 1322b | Get or set file date and time
2018-12-17T22:48:42.192943313Z 62 PC: 13233 | Close file
2018-12-17T22:48:42.20277191Z 67 PC: 13240 | Get or set file attributes
2018-12-17T22:48:42.20829062Z 79 PC: 131ea | Find next file
2018-12-17T22:48:42.211479451Z 67 PC: 131b1 | Get or set file attributes
2018-12-17T22:48:42.223101749Z 61 PC: 131b7 | Open file (Filename = 'PHANG.COM')
2018-12-17T22:48:42.230540465Z 63 PC: 131c6 | Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:48:42.237737639Z 62 PC: 131fa | Close file
2018-12-17T22:48:42.240861067Z 61 PC: 13203 | Open file (Filename = 'PHANG.COM')
2018-12-17T22:48:42.254990115Z 64 PC: 12a5a | Write file or device (Write 2197 bytes on handle 5)
2018-12-17T22:48:42.264841715Z 87 PC: 1322b | Get or set file date and time
2018-12-17T22:48:42.26765978Z 62 PC: 13233 | Close file
2018-12-17T22:48:42.276332385Z 67 PC: 13240 | Get or set file attributes
2018-12-17T22:48:42.281516096Z 9 PC: 132c9 | Display string (String= ' Program too big to fit in memory')
2018-12-17T22:48:42.286703843Z 76 PC: 132cd | Terminate with return code (Return code = '36')