Sample viewer

vx.netlux.org/Virus.DOS.Derma.798

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:51:38.279898251Z 42 PC: 12b55 | Get date 0x12b55: ret
0x12b56: lea dx, word ptr [bp + 0x3dd]
0x12b5a: mov ah, 0x3b
0x12b5c: int 0x21
0x12b5e: jae 0x12b62
0x12b60: jmp 0x12b2d
0x12b62: jmp 0x12a99
0x12b65: mov ah, 9
0x12b67: lea dx, word ptr [bp + 0x2b2]
0x12b6b: int 0x21
0x12b6d: jmp 0x12a85
0x12b70: mov ah, 0x2a
0x12b72: call 0x22b53
0x12b75: mov dl, byte ptr ds:[bp + 0x272]
0x12b7a: cmp dl, 9
0x12b7d: je 0x12b65
0x12b7f: jmp 0x12a85
0x12b82: push ax
0x12b83: pop ax
0x12b84: dec sp
2018-12-17T22:51:38.283865163Z 71 PC: 12b55 | Get current directory
2018-12-17T22:51:38.287675Z 26 PC: 12b55 | Set disk transfer address
2018-12-17T22:51:38.289364584Z 78 PC: 12b55 | Find first file
2018-12-17T22:51:38.296146824Z 61 PC: 12b55 | Open file (Filename = 'SLEEP.COM')
2018-12-17T22:51:38.30372998Z 87 PC: 12b55 | Get or set file date and time
2018-12-17T22:51:38.30523094Z 63 PC: 12b55 | Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:51:38.312163714Z 66 PC: 12b55 | Move file pointer
2018-12-17T22:51:38.314515151Z 64 PC: 12b55 | Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:51:38.317590458Z 66 PC: 12b55 | Move file pointer
2018-12-17T22:51:38.319532977Z 64 PC: 12b55 | Write file or device (Write 798 bytes on handle 5)
2018-12-17T22:51:38.335972049Z 87 PC: 12b55 | Get or set file date and time
2018-12-17T22:51:38.337802427Z 62 PC: 12b55 | Close file
2018-12-17T22:51:38.34582096Z 79 PC: 12b55 | Find next file
2018-12-17T22:51:38.349201572Z 61 PC: 12b55 | Open file (Filename = 'PRINT.COM')
2018-12-17T22:51:38.357415302Z 87 PC: 12b55 | Get or set file date and time
2018-12-17T22:51:38.359393528Z 63 PC: 12b55 | Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:51:38.36750755Z 66 PC: 12b55 | Move file pointer
2018-12-17T22:51:38.369288105Z 64 PC: 12b55 | Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:51:38.372540325Z 66 PC: 12b55 | Move file pointer
2018-12-17T22:51:38.374994365Z 64 PC: 12b55 | Write file or device (Write 798 bytes on handle 5)
2018-12-17T22:51:38.384358626Z 87 PC: 12b55 | Get or set file date and time
2018-12-17T22:51:38.386077184Z 62 PC: 12b55 | Close file
2018-12-17T22:51:38.394913344Z 79 PC: 12b55 | Find next file
2018-12-17T22:51:38.398554685Z 61 PC: 12b55 | Open file (Filename = 'HELLO.COM')
2018-12-17T22:51:38.406392689Z 87 PC: 12b55 | Get or set file date and time
2018-12-17T22:51:38.408187019Z 63 PC: 12b55 | Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:51:38.416596998Z 66 PC: 12b55 | Move file pointer
2018-12-17T22:51:38.418334412Z 64 PC: 12b55 | Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:51:38.421529403Z 66 PC: 12b55 | Move file pointer
2018-12-17T22:51:38.424554717Z 64 PC: 12b55 | Write file or device (Write 798 bytes on handle 5)
2018-12-17T22:51:38.441297229Z 87 PC: 12b55 | Get or set file date and time
2018-12-17T22:51:38.443467877Z 62 PC: 12b55 | Close file
2018-12-17T22:51:38.453293695Z 79 PC: 12b55 | Find next file
2018-12-17T22:51:38.456636745Z 61 PC: 12b55 | Open file (Filename = 'PHANG.COM')
2018-12-17T22:51:38.464023141Z 87 PC: 12b55 | Get or set file date and time
2018-12-17T22:51:38.467050047Z 63 PC: 12b55 | Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:51:38.474281151Z 66 PC: 12b55 | Move file pointer
2018-12-17T22:51:38.475953382Z 64 PC: 12b55 | Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:51:38.478872876Z 66 PC: 12b55 | Move file pointer
2018-12-17T22:51:38.481676213Z 64 PC: 12b55 | Write file or device (Write 798 bytes on handle 5)
2018-12-17T22:51:38.490841832Z 87 PC: 12b55 | Get or set file date and time
2018-12-17T22:51:38.492759464Z 62 PC: 12b55 | Close file
2018-12-17T22:51:38.502563191Z 79 PC: 12b55 | Find next file
2018-12-17T22:51:38.506588803Z 61 PC: 12b55 | Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:51:38.514185504Z 87 PC: 12b55 | Get or set file date and time
2018-12-17T22:51:38.51652042Z 63 PC: 12b55 | Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:51:38.523582236Z 66 PC: 12b55 | Move file pointer
2018-12-17T22:51:38.525109916Z 64 PC: 12b55 | Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:51:38.530656024Z 66 PC: 12b55 | Move file pointer
2018-12-17T22:51:38.532306796Z 64 PC: 12b55 | Write file or device (Write 798 bytes on handle 5)
2018-12-17T22:51:38.541245107Z 87 PC: 12b55 | Get or set file date and time
2018-12-17T22:51:38.543585343Z 62 PC: 12b55 | Close file
2018-12-17T22:51:38.553155792Z 79 PC: 12b55 | Find next file
2018-12-17T22:51:38.55649271Z 61 PC: 12b55 | Open file (Filename = 'MANDEL.COM')
2018-12-17T22:51:38.563868436Z 87 PC: 12b55 | Get or set file date and time
2018-12-17T22:51:38.566525588Z 63 PC: 12b55 | Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:51:38.573783752Z 66 PC: 12b55 | Move file pointer
2018-12-17T22:51:38.576384859Z 64 PC: 12b55 | Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:51:38.580108103Z 66 PC: 12b55 | Move file pointer
2018-12-17T22:51:38.581804621Z 64 PC: 12b55 | Write file or device (Write 798 bytes on handle 5)
2018-12-17T22:51:38.591924892Z 87 PC: 12b55 | Get or set file date and time
2018-12-17T22:51:38.594667945Z 62 PC: 12b55 | Close file
2018-12-17T22:51:38.603489026Z 79 PC: 12b55 | Find next file
2018-12-17T22:51:38.606696882Z 61 PC: 12b55 | Open file (Filename = 'PAH.COM')
2018-12-17T22:51:38.614567076Z 87 PC: 12b55 | Get or set file date and time
2018-12-17T22:51:38.616406061Z 63 PC: 12b55 | Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:51:38.623289272Z 66 PC: 12b55 | Move file pointer
2018-12-17T22:51:38.625759833Z 64 PC: 12b55 | Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:51:38.62869114Z 66 PC: 12b55 | Move file pointer
2018-12-17T22:51:38.630319008Z 64 PC: 12b55 | Write file or device (Write 798 bytes on handle 5)
2018-12-17T22:51:38.639119149Z 87 PC: 12b55 | Get or set file date and time
2018-12-17T22:51:38.640887922Z 62 PC: 12b55 | Close file
2018-12-17T22:51:38.649349598Z 79 PC: 12b55 | Find next file
2018-12-17T22:51:38.65203355Z 61 PC: 12b55 | Open file (Filename = 'TEST.COM')
2018-12-17T22:51:38.659197928Z 87 PC: 12b55 | Get or set file date and time
2018-12-17T22:51:38.660799607Z 63 PC: 12b55 | Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:51:38.665807184Z 66 PC: 12b55 | Move file pointer
2018-12-17T22:51:38.668750653Z 64 PC: 12b55 | Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:51:38.671962948Z 66 PC: 12b55 | Move file pointer
2018-12-17T22:51:38.673888456Z 64 PC: 12b55 | Write file or device (Write 798 bytes on handle 5)
2018-12-17T22:51:38.683860839Z 87 PC: 12b55 | Get or set file date and time
2018-12-17T22:51:38.685677793Z 62 PC: 12b55 | Close file
2018-12-17T22:51:38.694411299Z 79 PC: 12b55 | Find next file
2018-12-17T22:51:38.697944246Z 59 PC: 12b5e | Change current directory
2018-12-17T22:51:38.702373436Z 59 PC: 12b55 | Change current directory
2018-12-17T22:51:38.706805051Z 44 PC: 12b55 | Get time 0x12b55: ret
0x12b56: lea dx, word ptr [bp + 0x3dd]
0x12b5a: mov ah, 0x3b
0x12b5c: int 0x21
0x12b5e: jae 0x12b62
0x12b60: jmp 0x12b2d
0x12b62: jmp 0x12a99
0x12b65: mov ah, 9
0x12b67: lea dx, word ptr [bp + 0x2b2]
0x12b6b: int 0x21
0x12b6d: jmp 0x12a85
0x12b70: mov ah, 0x2a
0x12b72: call 0x22b53
0x12b75: mov dl, byte ptr ds:[bp + 0x272]
0x12b7a: cmp dl, 9
0x12b7d: je 0x12b65
0x12b7f: jmp 0x12a85
0x12b82: push ax
0x12b83: pop ax
0x12b84: dec sp
2018-12-17T22:51:38.70962028Z 26 PC: 12b55 | Set disk transfer address