Sample viewer

vx.netlux.org/Virus.DOS.TPE.Demo10.1733

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:49:46.751321463Z	44	PC: 134b6 \| Get time 0x134b6: in al, 0x40 0x134b8: mov ah, al 0x134ba: in al, 0x40 0x134bc: xor ax, cx 0x134be: xor dx, ax 0x134c0: jmp 0x134e7 0x134c2: call 0x134ca 0x134c5: or ax, ax 0x134c7: je 0x134c2 0x134c9: ret 0x134ca: push dx 0x134cb: push cx 0x134cc: push bx 0x134cd: in al, 0x40 0x134cf: add ax, 0x4e8a 0x134d2: mov dx, 0xf8f1 0x134d5: mov cx, 7 0x134d8: shl ax, 1 0x134da: rcl dx, 1 0x134dc: mov bl, al
2018-12-17T22:49:46.754907347Z	53	PC: 12eae \| Get interrupt vector (Interrupt = '19' AKA 'Delete file')
2018-12-17T22:49:46.757165661Z	37	PC: 12ec1 \| Set interrupt vector (Interrupt = '19' AKA 'Delete file')
2018-12-17T22:49:46.758735534Z	37	PC: 12ecb \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:49:46.760595025Z	26	PC: 12ed1 \| Set disk transfer address
2018-12-17T22:49:46.762336299Z	78	PC: 12edb \| Find first file
2018-12-17T22:49:46.769102931Z	67	PC: 12f1d \| Get or set file attributes
2018-12-17T22:49:46.786724482Z	61	PC: 12f28 \| Open file (Filename = '')
2018-12-17T22:49:46.794162632Z	63	PC: 12f32 \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:49:46.800757275Z	66	PC: 12fb3 \| Move file pointer
2018-12-17T22:49:46.807477423Z	64	PC: 12f70 \| Write file or device (Write 1846 bytes on handle 5)
2018-12-17T22:49:46.816854248Z	66	PC: 12fb3 \| Move file pointer
2018-12-17T22:49:46.818649195Z	64	PC: 12f90 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:49:46.826115933Z	87	PC: 12f9c \| Get or set file date and time
2018-12-17T22:49:46.82811456Z	62	PC: 12fa0 \| Close file
2018-12-17T22:49:46.836625811Z	67	PC: 12faa \| Get or set file attributes
2018-12-17T22:49:46.841210145Z	79	PC: 12ee7 \| Find next file
2018-12-17T22:49:46.844562087Z	67	PC: 12f1d \| Get or set file attributes
2018-12-17T22:49:46.855557402Z	61	PC: 12f28 \| Open file (Filename = '')
2018-12-17T22:49:46.863566241Z	63	PC: 12f32 \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:49:46.871071029Z	66	PC: 12fb3 \| Move file pointer
2018-12-17T22:49:46.874290728Z	64	PC: 12f70 \| Write file or device (Write 1813 bytes on handle 5)
2018-12-17T22:49:46.879973515Z	66	PC: 12fb3 \| Move file pointer
2018-12-17T22:49:46.882681777Z	64	PC: 12f90 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:49:46.890157822Z	87	PC: 12f9c \| Get or set file date and time
2018-12-17T22:49:46.891688306Z	62	PC: 12fa0 \| Close file
2018-12-17T22:49:46.900375438Z	67	PC: 12faa \| Get or set file attributes
2018-12-17T22:49:46.906175464Z	79	PC: 12ee7 \| Find next file
2018-12-17T22:49:46.909651733Z	67	PC: 12f1d \| Get or set file attributes
2018-12-17T22:49:46.920208519Z	61	PC: 12f28 \| Open file (Filename = '')
2018-12-17T22:49:46.928630486Z	63	PC: 12f32 \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:49:46.935403465Z	66	PC: 12fb3 \| Move file pointer
2018-12-17T22:49:46.940804573Z	64	PC: 12f70 \| Write file or device (Write 1814 bytes on handle 5)
2018-12-17T22:49:46.950589528Z	66	PC: 12fb3 \| Move file pointer
2018-12-17T22:49:46.952053751Z	64	PC: 12f90 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:49:46.958803025Z	87	PC: 12f9c \| Get or set file date and time
2018-12-17T22:49:46.960940457Z	62	PC: 12fa0 \| Close file
2018-12-17T22:49:46.969535919Z	67	PC: 12faa \| Get or set file attributes
2018-12-17T22:49:46.97422326Z	79	PC: 12ee7 \| Find next file
2018-12-17T22:49:46.977990837Z	67	PC: 12f1d \| Get or set file attributes
2018-12-17T22:49:46.988936032Z	61	PC: 12f28 \| Open file (Filename = '')
2018-12-17T22:49:46.996478547Z	63	PC: 12f32 \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:49:47.004574134Z	66	PC: 12fb3 \| Move file pointer
2018-12-17T22:49:47.011712206Z	64	PC: 12f70 \| Write file or device (Write 1852 bytes on handle 5)
2018-12-17T22:49:47.022281211Z	66	PC: 12fb3 \| Move file pointer
2018-12-17T22:49:47.024186143Z	64	PC: 12f90 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:49:47.031302742Z	87	PC: 12f9c \| Get or set file date and time
2018-12-17T22:49:47.03276262Z	62	PC: 12fa0 \| Close file
2018-12-17T22:49:47.041088298Z	67	PC: 12faa \| Get or set file attributes
2018-12-17T22:49:47.045800674Z	79	PC: 12ee7 \| Find next file
2018-12-17T22:49:47.048801784Z	67	PC: 12f1d \| Get or set file attributes
2018-12-17T22:49:47.059116383Z	61	PC: 12f28 \| Open file (Filename = '')
2018-12-17T22:49:47.067404241Z	63	PC: 12f32 \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:49:47.074249197Z	66	PC: 12fb3 \| Move file pointer
2018-12-17T22:49:47.080629371Z	64	PC: 12f70 \| Write file or device (Write 1796 bytes on handle 5)
2018-12-17T22:49:47.09028336Z	66	PC: 12fb3 \| Move file pointer
2018-12-17T22:49:47.091885378Z	64	PC: 12f90 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:49:47.101313554Z	87	PC: 12f9c \| Get or set file date and time
2018-12-17T22:49:47.103608928Z	62	PC: 12fa0 \| Close file
2018-12-17T22:49:47.112481305Z	67	PC: 12faa \| Get or set file attributes
2018-12-17T22:49:47.117190563Z	79	PC: 12ee7 \| Find next file
2018-12-17T22:49:47.120753715Z	67	PC: 12f1d \| Get or set file attributes
2018-12-17T22:49:47.131042665Z	61	PC: 12f28 \| Open file (Filename = '')
2018-12-17T22:49:47.136082435Z	63	PC: 12f32 \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:49:47.140688116Z	66	PC: 12fb3 \| Move file pointer
2018-12-17T22:49:47.145208706Z	64	PC: 12f70 \| Write file or device (Write 1826 bytes on handle 5)
2018-12-17T22:49:47.151136119Z	66	PC: 12fb3 \| Move file pointer
2018-12-17T22:49:47.152326214Z	64	PC: 12f90 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:49:47.156706452Z	87	PC: 12f9c \| Get or set file date and time
2018-12-17T22:49:47.162783132Z	62	PC: 12fa0 \| Close file
2018-12-17T22:49:47.168420778Z	67	PC: 12faa \| Get or set file attributes
2018-12-17T22:49:47.172272197Z	79	PC: 12ee7 \| Find next file
2018-12-17T22:49:47.17425769Z	67	PC: 12f1d \| Get or set file attributes
2018-12-17T22:49:47.180938082Z	61	PC: 12f28 \| Open file (Filename = '')
2018-12-17T22:49:47.18564536Z	63	PC: 12f32 \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:49:47.189919452Z	66	PC: 12fb3 \| Move file pointer
2018-12-17T22:49:47.192814586Z	64	PC: 12f70 \| Write file or device (Write 1768 bytes on handle 5)
2018-12-17T22:49:47.198846208Z	66	PC: 12fb3 \| Move file pointer
2018-12-17T22:49:47.20031255Z	64	PC: 12f90 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:49:47.20731898Z	87	PC: 12f9c \| Get or set file date and time
2018-12-17T22:49:47.209426606Z	62	PC: 12fa0 \| Close file
2018-12-17T22:49:47.218200016Z	67	PC: 12faa \| Get or set file attributes
2018-12-17T22:49:47.222862946Z	79	PC: 12ee7 \| Find next file
2018-12-17T22:49:47.226280466Z	67	PC: 12f1d \| Get or set file attributes
2018-12-17T22:49:47.426090061Z	61	PC: 12f28 \| Open file (Filename = '')
2018-12-17T22:49:47.433521752Z	63	PC: 12f32 \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:49:47.43758782Z	87	PC: 12f9c \| Get or set file date and time
2018-12-17T22:49:47.439421311Z	62	PC: 12fa0 \| Close file
2018-12-17T22:49:47.572205474Z	67	PC: 12faa \| Get or set file attributes
2018-12-17T22:49:47.583476879Z	79	PC: 12ee7 \| Find next file
2018-12-17T22:49:47.590833988Z	26	PC: 12ef2 \| Set disk transfer address
2018-12-17T22:49:47.591918896Z	37	PC: 12efb \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:49:47.593129351Z	37	PC: 12f02 \| Set interrupt vector (Interrupt = '19' AKA 'Delete file')