Welcome to the Computer Security Wiki! You can help us by expanding stubs, create new articles and improve current articles.
You can also help us by logging-in or creating an account!

Japanese Christmas

From Malware Wiki
Jump to: navigation, search

Stubsymbol.png This article is a stub. You can help by editing it.

MultipleIssues.png This page has multiple issues. These issues most likely include issues with references and manual of style violations. Please help Malware Wiki by correcting these issues.

Japanese Christmas
TypeVirus
DateSeptember 1st, 1981
OriginJapan
PlatformMS-DOS
File TypeDOS executable (.COM)
Size600 bytes
This box: view  talk  edit

Japanese Christmas is an early DOS file virus (file infector), believed to be written in either VBS or QBasic. It was widespread in Japan (and mostly confined to that country) in 1989-1990, with variants developed as late as 1992. This virus, although very primitive when compared to later DOS viruses, uses very similar techniques of infection. This virus is benign, and causes no damage to software or hardware other than the risk of corruption.

Payload

When an infected file is executed, it infects one DOS .COM file in its directory, appending itself to the end of the file. It can infect all .com files, including COMMAND.COM. Infected files will be 600 bytes larger than their original size. The virus will not be memory-resident.

If an infected file is executed on December 25, the message "A merry christmas to you", will appear on the screen. It will flash and have an underline for about half the time it is displayed. After some time the message disappears, and will not appear again until another infected file is executed.

Variants

Sources

F-Secure, F-Secure Virus Information Pages, "Japanese Xmas".

Kaspersky Labs. VirusList.com, Virus.DOS.Christmas.600

McAffee Threat Center. "Japanese Christmas".