| Description:
|
Details
Blazer.1000
It is a very dangerous nonmemory resident encrypted parasitic virus. It searches for the C:COMMAND.COM file, then for .COM files of the current directory, then writes itself to the end of the file. Before return to the host program the virus checks the system date and time. If the day number is the same as the month number, and the hour is equal to the minutes, the virus deletes all files of the current directory and displays the message:
///////////////////// CSEG:OFFS OPCODE PSEUDO INSTR. /
/ 1F47:0103 90 NOP 1F47:0104 0000 ADD [BX+SI],AL /
/ 1F47:0106 E80000 CALL 0109 1F47:0109 5D POP BP /
/ 1F47:010A 81ED0901 SUB BP,0109 /////////////////////
-=_ßL/Z_R_=- (c)'1994
The virus also contains the text string:
*.com c:command.com *.* |
