Bait.425
Description Bait.425
This is a dangerous, non-memory resident encrypted parasitic virus. It searches for COM files, and writes itself to their ends. In September, it halts a PC, and contains the following internal text string:
DOS *.COM Bait Virus 2.0. Finland (C) 1994 JH
Check other viruses! Be aware! Use Antiviral Software
Bat2Exec
Description Bat2Exec
Bat2Exec is a dangerous not memory resident overwriting virus. It searches for .COM- and .EXE-files and overwrites them. The virus code is of EXE-format, but the virus source code is the BAT-file with the commands such as:
FOR %%i IN (*.com) DO copy %0 %%i > nul
FOR %%i IN (*.exe) DO copy %0 %%i > nul
That source BAT-file was converted to EXE-file with BAT2EXEC utility, and then packed with PRO-PACK compression utility.
The virus (EXE-file) contains the internal text string (after unpacking):
Compiled by BAT2EXEC 1.5
PC Magazine Douglas Boling
DUMMY FCB DUMMY FCB
COMSPEC
nul *.com /C COPY %0 %
nul *.exe /C COPY %0 %
Bauhaus.974
Description Bauhaus.974
It is not a dangerous memory resident encrypted parasitic virus. It hooks INT 21h and writes itself to the beginning of .COM files that are executed. While installing memory resident the virus also infects the C:DOSKEYB.COM file. The virus deletes anti-virus data files CHKLIST.*. On 12th of any month it displays the message:
BAUHAUS est vivo
On 28th of any month it also hooks INT 15h and changes register AL value on some INT 15h calls.
|