Eng
  1. Skip to navigation
  2. Skip to content
  3. Skip to sidebar


Qrry


Aliases:


Qrry
Query, Essex

Malware

W32

Summary

The Qrry virus is a reasonably simple diskette and Master Boot Record infector. It is only able to infect a hard disk when you try to boot the machine from an infected diskette. At this time Qrry infects the Main Boot Record, and after that it will go resident to high DOS memory during every boot-up from the hard disk.

Once Qrry gets resident to memory, it will infect practicly all non-writeprotected diskettes used in the machine.

Qrry contains the text 'QRry'. It doesn't recognize 1.44MB HD correctly, and overwrites one sector in the middle of the data area. This area is cylinder 39, Side 1, Sector 9.

Qrry activates in December, when it overwrites part of the hard disk.



Disinfection & Removal

Automatic Disinfection

Allow F-Secure Anti-Virus to disinfect the relevant files.

For more general information on disinfection, please see Removal Instructions.









Submit a sample




Wondering if a file or URL is malicious? Submit a sample to our Lab for analysis via the Sample Analysis System (SAS)

Give And Get Advice




Give advice. Get advice. Share the knowledge on our free discussion forum.