Summary

This is a DOS boot sector virus. It infects DOS boot sectors on floppies and on the active partition on a hard disk. It does not infect MBRs.

Additional Details

The virus is 3 sectors long. When it infects a hard disk it hides the original boot sector and its own two sectors to the last three sectors of the first partition. When it infects a floppy it hides the original boot sector and rest of itself to the two first unused clusters and

On the 7th of February this virus displays the following message and overwrites part of the hard disk:

        Schaft die Schweizer Armee ab !

The Swiss_Boot virus is not related to the ExeBug virus at all, although one antivirus program will identify ExeBug as the 'Swiss' virus.

[Analysis: Mikko Hypponen, F-Secure]