The V800 virus (Live after Death)

 


             *********************************************

             ***   Reports collected and collated by   ***

             ***            PC-Virus Index             ***

             ***      with full acknowledgements       ***

             ***            to the authors             ***

             *********************************************




  Vesselin Bontchev reported in May 1990:


  The V800 virus (Live after Death)

  =================================


  I was already sending this letter, when a new virus popped up.  I

  haven't studied it yet. At a first glance, it has the following

  properties:


  - The virus infects .COM-files in a rather strange way.  Large parts

  of them can be found in the virus body and parts of the virus can be

  found in the file (before the end of the original - non-infected -

  file). It does not infect files with size less than 1024 bytes.  It

  seems that COMMAND.COM is never infected (there is a check for 'CO'

  and 'MM' in the virus body).  Sometimes the virus can attach itself

  multiple times to a file.  Files grow by 800 bytes after each

  infection.


  - Files are infected both when one executes them and when one copies

  them.


  - The virus is memory resident. It uses 8 K of memory.  I still

  cannot figure out why so much memory is needed.


  - The virus is able to fetch the original INT 13h handler in PC-DOS

  version 3.30. This is achieved in the same manner as in the Number

  of the Beast (512) virus.


  - The virus does not intercept INT 21h. Instead, it intercepts INT

  2Ah, function 82h. This interrupt is called on every DOS function

  call, which deals with files.


  - The virus is encrypted. It seems that the encrypted part does not

  change from file to file (as the Cascade virus does), but I'm not

  sure.


  - When the virus decrypts itself in memory, the string "Live after

  Death" appears in its body. I have suspicions that this virus was

  also created by the Dark Avenger.



  ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

  ++++++++++++++++++++++++++ end of reports ++++++++++++++++++++++++

  ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++



Comments

Post a Comment

Popular posts from this blog

BOTTOM LIVE script

                                  BOTTOM                                   ======                     by Adrian Edmondson and Rik Mayall                                 Bottom Live                                 ===========                               Richie  Rik Mayall                                Eddie  Adrian Edmondson Introduction ------------ [Opening shot of theatre, with huge pictures of Richie and Eddie. Caption: "Live from the Mayflower Theatre, Southampton".] Vox Pop 1:  So I'm hoping that this is a lot ruder than the TV, because             they can get away with it. [Cut to Ade's dressing-room door. It opens to reveal a clothes rail, its only contents a brown jacket.] Vox Pop 2:  I just think they're ace, you know, absolutely excellent. [Cut to dressing-gown, pan across a pair of glasses and a revolver.] Vox Pop 3:  It couldn't be too rude, I mean that's what young people want. [Rik's dressing-room door.]
Read more

Fawlty Towers script for "A Touch of Class"

Fawlty Towers A Touch of Class Written by John Cleese and Connie Booth First of first series, first broadcast on September 19, 1975 on BBC2 Transcribed by Jason R. Heimbaugh (jrh@uiuc.edu) on October 10, 1993 Basil Fawlty  John Cleese Sybil Fawlty  Prunella Scales Manuel        Andrew Sachs Polly         Connie Booth Major Gowen   Ballard Berkeley Miss Tibbs    Gilly Flower Miss Gatsby   Renee Roberts Lord Melbury  Michael Gwynn Danny Brown   Robin Ellis Sir Richard   Morris Martin Wyldeck Mr Watson     Lionel Wheeler Mr Wareing    Terence Conoley Mr Mackenzie  David Simeon               [The Fawlty Towers reception lobby. The main entrance is at the               back, with the stairs to the right. The entrance to the dining               room is in the right wall; on the left, the reception desk               running along the left wall, with the entrance to the office               behind it. The entrance to the bar is beyond the desk.] Basil         [on th
Read more