Sample viewer

vx.netlux.org/Virus.DOS.Indonga.3551

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:49:47.129890837Z	74	PC: 1386e \| Reallocate memory
2018-12-17T22:49:47.132259178Z	72	PC: 13875 \| Allocate memory
2018-12-17T22:49:47.133971985Z	74	PC: 1387d \| Reallocate memory
2018-12-17T22:49:47.135408076Z	88	PC: 13882 \| case 0xGet or set allocation strateg:
2018-12-17T22:49:47.137236202Z	88	PC: 1388b \| case 0xGet or set allocation strateg:
2018-12-17T22:49:47.138780098Z	72	PC: 13892 \| Allocate memory
2018-12-17T22:49:47.140252929Z	88	PC: 1389b \| case 0xGet or set allocation strateg:
2018-12-17T22:49:47.141708599Z	53	PC: 13907 \| Get interrupt vector (Interrupt = '133' AKA 'UNKNOWN!')
2018-12-17T22:49:47.143552756Z	74	PC: 13947 \| Reallocate memory
2018-12-17T22:49:47.144928477Z	72	PC: 1394e \| Allocate memory
2018-12-17T22:49:47.146607086Z	74	PC: 13956 \| Reallocate memory
2018-12-17T22:49:47.149626031Z	54	PC: 9f687 \| Get free disk space
2018-12-17T22:49:47.195732679Z	53	PC: 9f6a7 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:49:47.197093641Z	37	PC: 9f6b6 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:49:47.199062789Z	67	PC: 9f6c0 \| Get or set file attributes
2018-12-17T22:49:47.208482887Z	67	PC: 9f6c0 \| Get or set file attributes
2018-12-17T22:49:47.214484833Z	67	PC: 9f6da \| Get or set file attributes
2018-12-17T22:49:47.224006428Z	67	PC: 9f6ec \| Get or set file attributes
2018-12-17T22:49:47.574343495Z	61	PC: 9f6f1 \| Open file (Filename = '��W')
2018-12-17T22:49:47.58365272Z	87	PC: 9f701 \| Get or set file date and time
2018-12-17T22:49:47.586434347Z	63	PC: 9f722 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:49:47.593610356Z	66	PC: 9f161 \| Move file pointer
2018-12-17T22:49:47.596435976Z	66	PC: 9f161 \| Move file pointer
2018-12-17T22:49:47.598867013Z	72	PC: 9f18a \| Allocate memory
2018-12-17T22:49:47.600911636Z	66	PC: 9f157 \| Move file pointer
2018-12-17T22:49:47.602467204Z	63	PC: 9f913 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:49:47.605264993Z	66	PC: 9f161 \| Move file pointer
2018-12-17T22:49:47.608668001Z	64	PC: 9f54e \| Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:49:47.616028293Z	66	PC: 9f161 \| Move file pointer
2018-12-17T22:49:47.618118226Z	64	PC: 9f54e \| Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:49:47.622060498Z	66	PC: 9f161 \| Move file pointer
2018-12-17T22:49:47.623823419Z	64	PC: 9f54e \| Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:49:47.626746214Z	66	PC: 9f161 \| Move file pointer
2018-12-17T22:49:47.629228854Z	64	PC: 9f54e \| Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:49:47.632164192Z	66	PC: 9f161 \| Move file pointer
2018-12-17T22:49:47.63367675Z	64	PC: 9f54e \| Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:49:47.639145488Z	66	PC: 9f161 \| Move file pointer
2018-12-17T22:49:47.640854998Z	66	PC: 9f157 \| Move file pointer
2018-12-17T22:49:47.642349037Z	64	PC: 9f960 \| Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:49:47.646227189Z	66	PC: 9f161 \| Move file pointer
2018-12-17T22:49:47.647749494Z	64	PC: 9f3f4 \| Write file or device (Write 3561 bytes on handle 5)
2018-12-17T22:49:47.658475755Z	73	PC: 9f3fc \| Release memory
2018-12-17T22:49:47.660503261Z	87	PC: 9f98f \| Get or set file date and time
2018-12-17T22:49:47.66247834Z	62	PC: 9f997 \| Close file
2018-12-17T22:49:47.671039775Z	67	PC: 9f9a3 \| Get or set file attributes
2018-12-17T22:49:47.676079757Z	37	PC: 9f9aa \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:49:47.679176097Z	48	PC: 1397f \| Get DOS version
2018-12-17T22:49:47.680933188Z	9	PC: 13328 \| Display string (Could not find end pointer)
2018-12-17T22:49:47.689587155Z	48	PC: 13331 \| Get DOS version
2018-12-17T22:49:47.692571026Z	54	PC: 9f687 \| Get free disk space
2018-12-17T22:49:47.704351416Z	53	PC: 9f6a7 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:49:47.706106526Z	37	PC: 9f6b6 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:49:47.708861563Z	67	PC: 9f6c0 \| Get or set file attributes
2018-12-17T22:49:47.715767555Z	67	PC: 9f6c0 \| Get or set file attributes
2018-12-17T22:49:47.722559439Z	67	PC: 9f6da \| Get or set file attributes
2018-12-17T22:49:47.730958976Z	67	PC: 9f6ec \| Get or set file attributes
2018-12-17T22:49:47.747674877Z	61	PC: 9f6f1 \| Open file (Filename = '')
2018-12-17T22:49:47.759668375Z	87	PC: 9f701 \| Get or set file date and time
2018-12-17T22:49:47.762473119Z	63	PC: 9f722 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:49:47.768897027Z	66	PC: 9f161 \| Move file pointer
2018-12-17T22:49:47.770666458Z	66	PC: 9f157 \| Move file pointer
2018-12-17T22:49:47.773695574Z	63	PC: 9f768 \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:49:47.776092499Z	66	PC: 9f161 \| Move file pointer
2018-12-17T22:49:47.777511812Z	66	PC: 9f157 \| Move file pointer
2018-12-17T22:49:47.779780428Z	63	PC: 9f7a0 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:49:47.783158602Z	72	PC: 9f18a \| Allocate memory
2018-12-17T22:49:47.785150341Z	66	PC: 9f157 \| Move file pointer
2018-12-17T22:49:47.786762184Z	63	PC: 9f7ce \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:49:47.790217699Z	63	PC: 9f7dd \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:49:47.792767423Z	66	PC: 9f157 \| Move file pointer
2018-12-17T22:49:47.794343428Z	63	PC: 9f7ed \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:49:47.797756033Z	63	PC: 9f7f7 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:49:47.800117842Z	66	PC: 9f161 \| Move file pointer
2018-12-17T22:49:47.801809557Z	66	PC: 9f157 \| Move file pointer
2018-12-17T22:49:47.80425006Z	63	PC: 9f826 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:49:47.806951274Z	66	PC: 9f157 \| Move file pointer
2018-12-17T22:49:47.808600419Z	64	PC: 9f840 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:49:47.811463344Z	66	PC: 9f157 \| Move file pointer
2018-12-17T22:49:47.814165188Z	64	PC: 9f865 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:49:47.81729401Z	66	PC: 9f161 \| Move file pointer
2018-12-17T22:49:47.819041811Z	64	PC: 9f3f4 \| Write file or device (Write 3789 bytes on handle 5)
2018-12-17T22:49:47.82795477Z	73	PC: 9f3fc \| Release memory
2018-12-17T22:49:47.829384998Z	66	PC: 9f157 \| Move file pointer
2018-12-17T22:49:47.831476937Z	63	PC: 9f886 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:49:47.835144065Z	66	PC: 9f157 \| Move file pointer
2018-12-17T22:49:47.836728833Z	64	PC: 9f89c \| Write file or device (Write 2 bytes on handle 5)
2018-12-17T22:49:47.839803561Z	66	PC: 9f157 \| Move file pointer
2018-12-17T22:49:47.846211554Z	63	PC: 9f8ac \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:49:47.848900685Z	66	PC: 9f157 \| Move file pointer
2018-12-17T22:49:47.850299972Z	64	PC: 9f8e3 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:49:47.853063212Z	87	PC: 9f98f \| Get or set file date and time
2018-12-17T22:49:47.855402142Z	62	PC: 9f997 \| Close file
2018-12-17T22:49:47.862563287Z	67	PC: 9f9a3 \| Get or set file attributes
2018-12-17T22:49:47.871340839Z	37	PC: 9f9aa \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:49:47.873209773Z	61	PC: 133fe \| Open file (Filename = '')
2018-12-17T22:49:47.879323592Z	93	PC: 133a0 \| File sharing functions
2018-12-17T22:49:47.88112336Z	9	PC: 13328 \| Display string (String= 'Size change=1D53h/07507d. ')
2018-12-17T22:49:47.885128907Z	76	PC: 13385 \| Terminate with return code (Return code = '1')