------------------------
Amiga Virus Encyclopedia
Alien New Beat Virus
------------------------
=== Computer Virus Catalog 1.2: ALIEN NEW BEAT Virus (15-July-1991) ==
Entry...............: ALIEN NEW BEAT Virus
Alias(es)...........: ---
Virus Strain........: ---
Virus detected when.: 1990
where.: Elmshorn, FRG
Classification......: system virus (bootblock), resident
Length of Virus.....: 1.length on storage medium : 1024 byte
2.length in RAM : 1024 byte
--------------------- Preconditions ----------------------------------
Operating System(s).: AMIGA-DOS
Version/Release.....: 1.2/33.166, 1.2/33.180 and 1.3/34.20
Computer model(s)...: AMIGA 500, AMIGA 1000, AMIGA 2000A, AMIGA 2000B
--------------------- Attributes -------------------------------------
Easy Identification.: typical text on bootblock:
' THIS IS THE ALIEN NEW BEAT BOOT! THE BOOT '
'WHICH CREATES A NEW DIMENSION IN MEMORY. THIS'
' IS A NEW STYLE OF VIRUS HUNTING!!! 179092 V'
'1.0 Ir 04/01/1989 '
' You won't believe it, but this thing'
' kills the SCA, ByteBandit, Dasa (ByteWarrior)'
', AIDS AND NorthStar virus!!!!!'
Self-identification.: String 'DO' at address $20000
Type of infection...: System infection : RAM resident, reset resident,
bootblock
Infection Trigger...: reset, any disk access
Storage media affected: only floppy disks (3.5" and 5.25")
Interrupts hooked...: ---
Damage..............: Permanent damage: overwriting bootblock,
allocates 1296 Bytes at address $20000
Transient damage: some beeps and a black screen
with a few colored lines, then screen becomes
green
Damage Trigger......: Permanent damage: reset, any DoIO-Function call
Transient damage:after 65535 DoIO-Function calls
Particularities.....: uses SartIOVector; FindResident Function is
changed; other resident programs using system
resident list (KickTagPointer) are shutdown;
copy counter at address $2037E; DoIO-Function
call counter at address $20410
Similarities........: ---
--------------------- Agents -----------------------------------------
Countermeasures.....: Names of tested products of Category 1-6:
Category 1: .2 Monitoring System Vectors:
CHECKVECTORS 2.2
.3 Monitoring System Areas:
CHECKVECTORS 2.2, GUARDIAN 1.2,
VIRUSX 4.0'
Category 2: Alteration Detection: ---
Category 3: Eradication: CHECKVECTORS 2.2
VIRUSX 4.0
Category 4: Vaccine: ---
Category 5: Hardware Methods: ---
Category 6: Cryptographic Methods : ---
Countermeasures successful: without restrictions: CHECKVECTORS 2.2,
VIRUSX 4.0, GUARDIAN 1.2
Standard means......: CHECKVECTORS 2.2
--------------------- Acknowledgement --------------------------------
Location............: Virus Test Center, University Hamburg, Germany
Classification by...: Wolfram Schmidt
Documentation by....: Wolfram Schmidt
Date................: 15-July-1991
Information Source..: ---
===================== End of ALIEN NEW BEAT ==========================
Antivirus removal...: Kickstart 1.2 & 1.3 : VT-Schutz v3.17
Kickstart all others: VirusZ III with Xvs.library installed
Ascii of Alien New Beat Bootblock virus:
