| Alias: | -- |
| Strain: | Dotty |
| detected when: | |
| where: | |
| Classification: | System virus (bootblock), resident |
| Length: | 1. Length on storage medium: 1024 bytes 2. Length in RAM: 1024 bytes |
Preconditions | |
| Operating System(s): | AMIGA-OS |
| Version/Release: | all system releases |
| Computer model(s): | all models |
| Caroname: | Dotty.Original |
Attributes | |
| Easy identification: | Typical texts: ' - -*< Dotty by P.A.L >*- - ' and: Made by the mysterious RT for P.A.L (People Against' ' Lameness) Watch for your mousepointer. It might go' ' nuts or fuck up your screen Greetz only to the BE' 'ST OF THE BEST: Vision. Skid Row. Kefrens. Flash. Sc' 'oopex. Fica. ' |
Type of Infection: | |
| Infection Technique: | |
| Infection Trigger: | booting from infected disk, reset |
| Storage Media affected: | |
| Interrupts hooked: | |
| Stealth: | |
| Tunneling/Selfprot: | |
| Oligo/Polymorphism: | |
| Encoding Method: | |
| Damage: | Permanent damage: a) overwriting the bootblock Transient damage: a) clearing the CoolCapture b) hooking DoIO c) hooking IVVERTB d) all windows will be filled with pots (some kind of snowy outlook) |
| Damage Trigger: | Permanent damage: a) Read DoIO call reading the rootblock Transient damage: a) booting from infected disk b) reset c) Read DoIO call reading the rootlock d) 21000th IVVERTB interrupt |
| Particularities: | Once started the routine - to display the snow on the screen - blocks the display refresh, so nothing should be shown on your monitor (I never tested it). |
| Similarities: | -- |
Agents | |
| Countermeasures: | VirusZ II 1.09, VT 2.67, Virus Checker 6.43, Virus Workshop 3.6 |
| Standard means: | VirusZ II 1.09, VT 2.67, Virus Checker 6.43, Virus Workshop 3.6 |
Acknowledgements | |
| Location: | Virus Test Center, University Hamburg, Germany |
| Classification by: | Jens Vogler |
| Documentation by: | Jens Vogler |
| Date: | 1-July-1994 |
| Information Source: | reverse engeneering of original virus |
(c) 1996 Virus-Test-Center, University of Hamburg