Sample viewer

vx.netlux.org/Virus.DOS.BadSize.369

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:50:30.49695651Z	26	PC: 12b41 \| Set disk transfer address
2018-12-17T22:50:30.49809548Z	78	PC: 12b4b \| Find first file
2018-12-17T22:50:30.502014291Z	2	PC: 12b0b \| Character output (Char = '53')
2018-12-17T22:50:30.503536704Z	2	PC: 12b0b \| Character output (Char = '4c')
2018-12-17T22:50:30.505842238Z	2	PC: 12b0b \| Character output (Char = '45')
2018-12-17T22:50:30.507570404Z	2	PC: 12b0b \| Character output (Char = '45')
2018-12-17T22:50:30.509320728Z	2	PC: 12b0b \| Character output (Char = '50')
2018-12-17T22:50:30.513214199Z	2	PC: 12b0b \| Character output (Char = '2e')
2018-12-17T22:50:30.514962815Z	2	PC: 12b0b \| Character output (Char = '43')
2018-12-17T22:50:30.516427802Z	2	PC: 12b0b \| Character output (Char = '4f')
2018-12-17T22:50:30.517757379Z	2	PC: 12b0b \| Character output (Char = '4d')
2018-12-17T22:50:30.51952451Z	61	PC: 12b60 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:50:30.523435924Z	63	PC: 12b74 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:50:30.527413617Z	66	PC: 12b8e \| Move file pointer
2018-12-17T22:50:30.533393933Z	64	PC: 12baf \| Write file or device (Write 369 bytes on handle 5)
2018-12-17T22:50:30.555680561Z	66	PC: 12bc8 \| Move file pointer
2018-12-17T22:50:30.556793962Z	64	PC: 12bd4 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:50:30.570926895Z	2	PC: 12b0b \| Character output (Char = '20')
2018-12-17T22:50:30.572888083Z	2	PC: 12b0b \| Character output (Char = '2d')
2018-12-17T22:50:30.574957663Z	2	PC: 12b0b \| Character output (Char = '20')
2018-12-17T22:50:30.577669826Z	2	PC: 12b0b \| Character output (Char = '69')
2018-12-17T22:50:30.579853122Z	2	PC: 12b0b \| Character output (Char = '6e')
2018-12-17T22:50:30.581893434Z	2	PC: 12b0b \| Character output (Char = '66')
2018-12-17T22:50:30.584975563Z	2	PC: 12b0b \| Character output (Char = '65')
2018-12-17T22:50:30.58796073Z	2	PC: 12b0b \| Character output (Char = '63')
2018-12-17T22:50:30.589892843Z	2	PC: 12b0b \| Character output (Char = '74')
2018-12-17T22:50:30.592260784Z	2	PC: 12b0b \| Character output (Char = '65')
2018-12-17T22:50:30.60018813Z	2	PC: 12b0b \| Character output (Char = '64')
2018-12-17T22:50:30.602487676Z	2	PC: 12b0b \| Character output (Char = '0d')
2018-12-17T22:50:30.604958018Z	2	PC: 12b0b \| Character output (Char = '0a')
2018-12-17T22:50:30.609223752Z	62	PC: 12be3 \| Close file
2018-12-17T22:50:30.617651693Z	79	PC: 12be9 \| Find next file
2018-12-17T22:50:30.620785522Z	2	PC: 12b0b \| Character output (Char = '50')
2018-12-17T22:50:30.623850666Z	2	PC: 12b0b \| Character output (Char = '52')
2018-12-17T22:50:30.625970033Z	2	PC: 12b0b \| Character output (Char = '49')
2018-12-17T22:50:30.628057585Z	2	PC: 12b0b \| Character output (Char = '4e')
2018-12-17T22:50:30.637849819Z	2	PC: 12b0b \| Character output (Char = '54')
2018-12-17T22:50:30.640216109Z	2	PC: 12b0b \| Character output (Char = '2e')
2018-12-17T22:50:30.642368332Z	2	PC: 12b0b \| Character output (Char = '43')
2018-12-17T22:50:30.645254278Z	2	PC: 12b0b \| Character output (Char = '4f')
2018-12-17T22:50:30.647308841Z	2	PC: 12b0b \| Character output (Char = '4d')
2018-12-17T22:50:30.649371478Z	61	PC: 12b60 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:50:30.656389526Z	63	PC: 12b74 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:50:30.663015693Z	66	PC: 12b8e \| Move file pointer
2018-12-17T22:50:30.664320221Z	64	PC: 12baf \| Write file or device (Write 369 bytes on handle 5)
2018-12-17T22:50:30.667546964Z	66	PC: 12bc8 \| Move file pointer
2018-12-17T22:50:30.668930588Z	64	PC: 12bd4 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:50:30.671546442Z	2	PC: 12b0b \| Character output (Char = '20')
2018-12-17T22:50:30.674401545Z	2	PC: 12b0b \| Character output (Char = '2d')
2018-12-17T22:50:30.676476762Z	2	PC: 12b0b \| Character output (Char = '20')
2018-12-17T22:50:30.678552649Z	2	PC: 12b0b \| Character output (Char = '69')
2018-12-17T22:50:30.681450177Z	2	PC: 12b0b \| Character output (Char = '6e')
2018-12-17T22:50:30.683751587Z	2	PC: 12b0b \| Character output (Char = '66')
2018-12-17T22:50:30.686061799Z	2	PC: 12b0b \| Character output (Char = '65')
2018-12-17T22:50:30.68944682Z	2	PC: 12b0b \| Character output (Char = '63')
2018-12-17T22:50:30.692119385Z	2	PC: 12b0b \| Character output (Char = '74')
2018-12-17T22:50:30.694687197Z	2	PC: 12b0b \| Character output (Char = '65')
2018-12-17T22:50:30.697839849Z	2	PC: 12b0b \| Character output (Char = '64')
2018-12-17T22:50:30.700333987Z	2	PC: 12b0b \| Character output (Char = '0d')
2018-12-17T22:50:30.702767384Z	2	PC: 12b0b \| Character output (Char = '0a')
2018-12-17T22:50:30.707629712Z	62	PC: 12be3 \| Close file
2018-12-17T22:50:30.715507101Z	79	PC: 12be9 \| Find next file
2018-12-17T22:50:30.718356275Z	2	PC: 12b0b \| Character output (Char = '48')
2018-12-17T22:50:30.721568817Z	2	PC: 12b0b \| Character output (Char = '45')
2018-12-17T22:50:30.724185276Z	2	PC: 12b0b \| Character output (Char = '4c')
2018-12-17T22:50:30.73109455Z	2	PC: 12b0b \| Character output (Char = '4c')
2018-12-17T22:50:30.733579866Z	2	PC: 12b0b \| Character output (Char = '4f')
2018-12-17T22:50:30.736117912Z	2	PC: 12b0b \| Character output (Char = '2e')
2018-12-17T22:50:30.738144074Z	2	PC: 12b0b \| Character output (Char = '43')
2018-12-17T22:50:30.740330562Z	2	PC: 12b0b \| Character output (Char = '4f')
2018-12-17T22:50:30.742745593Z	2	PC: 12b0b \| Character output (Char = '4d')
2018-12-17T22:50:30.744777648Z	61	PC: 12b60 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:50:30.751860999Z	63	PC: 12b74 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:50:30.758368202Z	66	PC: 12b8e \| Move file pointer
2018-12-17T22:50:30.759632358Z	64	PC: 12baf \| Write file or device (Write 369 bytes on handle 5)
2018-12-17T22:50:30.762442551Z	66	PC: 12bc8 \| Move file pointer
2018-12-17T22:50:30.764023664Z	64	PC: 12bd4 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:50:30.766497326Z	2	PC: 12b0b \| Character output (Char = '20')
2018-12-17T22:50:30.768693868Z	2	PC: 12b0b \| Character output (Char = '2d')
2018-12-17T22:50:30.772033843Z	2	PC: 12b0b \| Character output (Char = '20')
2018-12-17T22:50:30.773969345Z	2	PC: 12b0b \| Character output (Char = '69')
2018-12-17T22:50:30.777658086Z	2	PC: 12b0b \| Character output (Char = '6e')
2018-12-17T22:50:30.780669877Z	2	PC: 12b0b \| Character output (Char = '66')
2018-12-17T22:50:30.783031036Z	2	PC: 12b0b \| Character output (Char = '65')
2018-12-17T22:50:30.78525376Z	2	PC: 12b0b \| Character output (Char = '63')
2018-12-17T22:50:30.787685254Z	2	PC: 12b0b \| Character output (Char = '74')
2018-12-17T22:50:30.78995949Z	2	PC: 12b0b \| Character output (Char = '65')
2018-12-17T22:50:30.792233487Z	2	PC: 12b0b \| Character output (Char = '64')
2018-12-17T22:50:30.79475882Z	2	PC: 12b0b \| Character output (Char = '0d')
2018-12-17T22:50:30.796595779Z	2	PC: 12b0b \| Character output (Char = '0a')
2018-12-17T22:50:30.800023862Z	62	PC: 12be3 \| Close file
2018-12-17T22:50:30.808008174Z	79	PC: 12be9 \| Find next file
2018-12-17T22:50:30.810643759Z	2	PC: 12b0b \| Character output (Char = '50')
2018-12-17T22:50:30.812763742Z	2	PC: 12b0b \| Character output (Char = '48')
2018-12-17T22:50:30.815390912Z	2	PC: 12b0b \| Character output (Char = '41')
2018-12-17T22:50:30.819095406Z	2	PC: 12b0b \| Character output (Char = '4e')
2018-12-17T22:50:30.821542176Z	2	PC: 12b0b \| Character output (Char = '47')
2018-12-17T22:50:30.824890649Z	2	PC: 12b0b \| Character output (Char = '2e')
2018-12-17T22:50:30.827000142Z	2	PC: 12b0b \| Character output (Char = '43')
2018-12-17T22:50:30.82941119Z	2	PC: 12b0b \| Character output (Char = '4f')
2018-12-17T22:50:30.832342389Z	2	PC: 12b0b \| Character output (Char = '4d')
2018-12-17T22:50:30.834438997Z	61	PC: 12b60 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:50:30.840728694Z	63	PC: 12b74 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:50:30.84791667Z	66	PC: 12b8e \| Move file pointer
2018-12-17T22:50:30.849447293Z	64	PC: 12baf \| Write file or device (Write 369 bytes on handle 5)
2018-12-17T22:50:30.852053778Z	66	PC: 12bc8 \| Move file pointer
2018-12-17T22:50:30.854457173Z	64	PC: 12bd4 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:50:30.857663303Z	2	PC: 12b0b \| Character output (Char = '20')
2018-12-17T22:50:30.860031028Z	2	PC: 12b0b \| Character output (Char = '2d')
2018-12-17T22:50:30.863243299Z	2	PC: 12b0b \| Character output (Char = '20')
2018-12-17T22:50:30.865504799Z	2	PC: 12b0b \| Character output (Char = '69')
2018-12-17T22:50:30.867754478Z	2	PC: 12b0b \| Character output (Char = '6e')
2018-12-17T22:50:30.870768254Z	2	PC: 12b0b \| Character output (Char = '66')
2018-12-17T22:50:30.873365915Z	2	PC: 12b0b \| Character output (Char = '65')
2018-12-17T22:50:30.875654302Z	2	PC: 12b0b \| Character output (Char = '63')
2018-12-17T22:50:30.878270544Z	2	PC: 12b0b \| Character output (Char = '74')
2018-12-17T22:50:30.881380833Z	2	PC: 12b0b \| Character output (Char = '65')
2018-12-17T22:50:30.883386457Z	2	PC: 12b0b \| Character output (Char = '64')
2018-12-17T22:50:30.885431315Z	2	PC: 12b0b \| Character output (Char = '0d')
2018-12-17T22:50:30.887883967Z	2	PC: 12b0b \| Character output (Char = '0a')
2018-12-17T22:50:30.891304137Z	62	PC: 12be3 \| Close file
2018-12-17T22:50:30.899848963Z	79	PC: 12be9 \| Find next file
2018-12-17T22:50:30.903669703Z	2	PC: 12b0b \| Character output (Char = '50')
2018-12-17T22:50:30.905801999Z	2	PC: 12b0b \| Character output (Char = '52')
2018-12-17T22:50:30.910433894Z	2	PC: 12b0b \| Character output (Char = '49')
2018-12-17T22:50:30.913207798Z	2	PC: 12b0b \| Character output (Char = '4e')
2018-12-17T22:50:30.915272514Z	2	PC: 12b0b \| Character output (Char = '54')
2018-12-17T22:50:30.917373088Z	2	PC: 12b0b \| Character output (Char = '41')
2018-12-17T22:50:30.920072604Z	2	PC: 12b0b \| Character output (Char = '7e')
2018-12-17T22:50:30.921654428Z	2	PC: 12b0b \| Character output (Char = '31')
2018-12-17T22:50:30.923149114Z	2	PC: 12b0b \| Character output (Char = '2e')
2018-12-17T22:50:30.92545002Z	2	PC: 12b0b \| Character output (Char = '43')
2018-12-17T22:50:30.926920992Z	2	PC: 12b0b \| Character output (Char = '4f')
2018-12-17T22:50:30.928567388Z	2	PC: 12b0b \| Character output (Char = '4d')
2018-12-17T22:50:30.930801475Z	61	PC: 12b60 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:50:30.935369341Z	63	PC: 12b74 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:50:30.940410195Z	66	PC: 12b8e \| Move file pointer
2018-12-17T22:50:30.94201616Z	64	PC: 12baf \| Write file or device (Write 369 bytes on handle 5)
2018-12-17T22:50:30.943799952Z	66	PC: 12bc8 \| Move file pointer
2018-12-17T22:50:30.944840636Z	64	PC: 12bd4 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:50:30.947492406Z	2	PC: 12b0b \| Character output (Char = '20')
2018-12-17T22:50:30.948951022Z	2	PC: 12b0b \| Character output (Char = '2d')
2018-12-17T22:50:30.95041324Z	2	PC: 12b0b \| Character output (Char = '20')
2018-12-17T22:50:30.952598541Z	2	PC: 12b0b \| Character output (Char = '69')
2018-12-17T22:50:30.954371218Z	2	PC: 12b0b \| Character output (Char = '6e')
2018-12-17T22:50:30.95612638Z	2	PC: 12b0b \| Character output (Char = '66')
2018-12-17T22:50:30.958856072Z	2	PC: 12b0b \| Character output (Char = '65')
2018-12-17T22:50:30.960706478Z	2	PC: 12b0b \| Character output (Char = '63')
2018-12-17T22:50:30.962501182Z	2	PC: 12b0b \| Character output (Char = '74')
2018-12-17T22:50:30.96478106Z	2	PC: 12b0b \| Character output (Char = '65')
2018-12-17T22:50:30.966281615Z	2	PC: 12b0b \| Character output (Char = '64')
2018-12-17T22:50:30.968758456Z	2	PC: 12b0b \| Character output (Char = '0d')
2018-12-17T22:50:30.970688799Z	2	PC: 12b0b \| Character output (Char = '0a')
2018-12-17T22:50:30.973262382Z	62	PC: 12be3 \| Close file
2018-12-17T22:50:30.978133521Z	79	PC: 12be9 \| Find next file
2018-12-17T22:50:30.980400633Z	2	PC: 12b0b \| Character output (Char = '4d')
2018-12-17T22:50:30.981829616Z	2	PC: 12b0b \| Character output (Char = '41')
2018-12-17T22:50:30.983229653Z	2	PC: 12b0b \| Character output (Char = '4e')
2018-12-17T22:50:30.985159864Z	2	PC: 12b0b \| Character output (Char = '44')
2018-12-17T22:50:30.9865443Z	2	PC: 12b0b \| Character output (Char = '45')
2018-12-17T22:50:30.987990611Z	2	PC: 12b0b \| Character output (Char = '4c')
2018-12-17T22:50:30.990076682Z	2	PC: 12b0b \| Character output (Char = '2e')
2018-12-17T22:50:30.991508579Z	2	PC: 12b0b \| Character output (Char = '43')
2018-12-17T22:50:30.993660406Z	2	PC: 12b0b \| Character output (Char = '4f')
2018-12-17T22:50:30.99550335Z	2	PC: 12b0b \| Character output (Char = '4d')
2018-12-17T22:50:30.997328122Z	61	PC: 12b60 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:50:31.001542482Z	63	PC: 12b74 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:50:31.006166141Z	66	PC: 12b8e \| Move file pointer
2018-12-17T22:50:31.007439848Z	64	PC: 12baf \| Write file or device (Write 369 bytes on handle 5)
2018-12-17T22:50:31.012945782Z	66	PC: 12bc8 \| Move file pointer
2018-12-17T22:50:31.014103296Z	64	PC: 12bd4 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:50:31.017970565Z	2	PC: 12b0b \| Character output (Char = '20')
2018-12-17T22:50:31.019205141Z	2	PC: 12b0b \| Character output (Char = '2d')
2018-12-17T22:50:31.020677182Z	2	PC: 12b0b \| Character output (Char = '20')
2018-12-17T22:50:31.021911796Z	2	PC: 12b0b \| Character output (Char = '69')
2018-12-17T22:50:31.023106229Z	2	PC: 12b0b \| Character output (Char = '6e')
2018-12-17T22:50:31.024488522Z	2	PC: 12b0b \| Character output (Char = '66')
2018-12-17T22:50:31.025720953Z	2	PC: 12b0b \| Character output (Char = '65')
2018-12-17T22:50:31.027044937Z	2	PC: 12b0b \| Character output (Char = '63')
2018-12-17T22:50:31.028574248Z	2	PC: 12b0b \| Character output (Char = '74')
2018-12-17T22:50:31.029779575Z	2	PC: 12b0b \| Character output (Char = '65')
2018-12-17T22:50:31.031004659Z	2	PC: 12b0b \| Character output (Char = '64')
2018-12-17T22:50:31.03238283Z	2	PC: 12b0b \| Character output (Char = '0d')
2018-12-17T22:50:31.033524779Z	2	PC: 12b0b \| Character output (Char = '0a')
2018-12-17T22:50:31.035427286Z	62	PC: 12be3 \| Close file
2018-12-17T22:50:31.040686223Z	79	PC: 12be9 \| Find next file
2018-12-17T22:50:31.042222047Z	2	PC: 12b0b \| Character output (Char = '50')
2018-12-17T22:50:31.043444621Z	2	PC: 12b0b \| Character output (Char = '41')
2018-12-17T22:50:31.045194629Z	2	PC: 12b0b \| Character output (Char = '48')
2018-12-17T22:50:31.04676102Z	2	PC: 12b0b \| Character output (Char = '2e')
2018-12-17T22:50:31.048324275Z	2	PC: 12b0b \| Character output (Char = '43')
2018-12-17T22:50:31.049871628Z	2	PC: 12b0b \| Character output (Char = '4f')
2018-12-17T22:50:31.051228496Z	2	PC: 12b0b \| Character output (Char = '4d')
2018-12-17T22:50:31.053414203Z	61	PC: 12b60 \| Open file (Filename = 'PAH.COM')
2018-12-17T22:50:31.058130408Z	63	PC: 12b74 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:50:31.064294191Z	66	PC: 12b8e \| Move file pointer
2018-12-17T22:50:31.066300388Z	64	PC: 12baf \| Write file or device (Write 369 bytes on handle 5)
2018-12-17T22:50:31.068788911Z	66	PC: 12bc8 \| Move file pointer
2018-12-17T22:50:31.069994589Z	64	PC: 12bd4 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:50:31.072958451Z	2	PC: 12b0b \| Character output (Char = '20')
2018-12-17T22:50:31.075014836Z	2	PC: 12b0b \| Character output (Char = '2d')
2018-12-17T22:50:31.076947387Z	2	PC: 12b0b \| Character output (Char = '20')
2018-12-17T22:50:31.079592603Z	2	PC: 12b0b \| Character output (Char = '69')
2018-12-17T22:50:31.08160021Z	2	PC: 12b0b \| Character output (Char = '6e')
2018-12-17T22:50:31.084351074Z	2	PC: 12b0b \| Character output (Char = '66')
2018-12-17T22:50:31.087662745Z	2	PC: 12b0b \| Character output (Char = '65')
2018-12-17T22:50:31.089974028Z	2	PC: 12b0b \| Character output (Char = '63')
2018-12-17T22:50:31.092225888Z	2	PC: 12b0b \| Character output (Char = '74')
2018-12-17T22:50:31.095277657Z	2	PC: 12b0b \| Character output (Char = '65')
2018-12-17T22:50:31.09748041Z	2	PC: 12b0b \| Character output (Char = '64')
2018-12-17T22:50:31.09973361Z	2	PC: 12b0b \| Character output (Char = '0d')
2018-12-17T22:50:31.102436871Z	2	PC: 12b0b \| Character output (Char = '0a')
2018-12-17T22:50:31.106050002Z	62	PC: 12be3 \| Close file
2018-12-17T22:50:31.112860293Z	79	PC: 12be9 \| Find next file
2018-12-17T22:50:31.116125447Z	2	PC: 12b0b \| Character output (Char = '46')
2018-12-17T22:50:31.118462981Z	2	PC: 12b0b \| Character output (Char = '72')
2018-12-17T22:50:31.119920538Z	2	PC: 12b0b \| Character output (Char = '6f')
2018-12-17T22:50:31.121680028Z	2	PC: 12b0b \| Character output (Char = '64')
2018-12-17T22:50:31.123199509Z	2	PC: 12b0b \| Character output (Char = '6f')
2018-12-17T22:50:31.124876951Z	2	PC: 12b0b \| Character output (Char = '20')
2018-12-17T22:50:31.12663799Z	2	PC: 12b0b \| Character output (Char = '6c')
2018-12-17T22:50:31.128112381Z	2	PC: 12b0b \| Character output (Char = '69')
2018-12-17T22:50:31.130133567Z	2	PC: 12b0b \| Character output (Char = '76')
2018-12-17T22:50:31.131668733Z	2	PC: 12b0b \| Character output (Char = '65')
2018-12-17T22:50:31.133165443Z	2	PC: 12b0b \| Character output (Char = '73')
2018-12-17T22:50:31.135203931Z	2	PC: 12b0b \| Character output (Char = '20')
2018-12-17T22:50:31.136756554Z	2	PC: 12b0b \| Character output (Char = '21')
2018-12-17T22:50:31.138437976Z	2	PC: 12b0b \| Character output (Char = '21')
2018-12-17T22:50:31.140592058Z	2	PC: 12b0b \| Character output (Char = '21')
2018-12-17T22:50:31.142162679Z	2	PC: 12b0b \| Character output (Char = '0d')
2018-12-17T22:50:31.143636037Z	2	PC: 12b0b \| Character output (Char = '0a')
2018-12-17T22:50:31.147353267Z	26	PC: 12c05 \| Set disk transfer address
2018-12-17T22:50:31.148349469Z	9	PC: 12a82 \| Display string (String= 'Goat file (COM). Size=00000064h/0000000100d bytes. ')
2018-12-17T22:50:31.151525317Z	76	PC: 12a86 \| Terminate with return code (Return code = '36')