Sample viewer

vx.netlux.org/Virus.DOS.HLLC.13760

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:51:39.920926102Z 53 PC: 14a1a | Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:51:39.923219099Z 53 PC: 14a1a | Get interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:51:39.9253508Z 53 PC: 14a1a | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:51:39.926885243Z 53 PC: 14a1a | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:51:39.928874322Z 53 PC: 14a1a | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:51:39.930802526Z 53 PC: 14a1a | Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:51:39.932235262Z 53 PC: 14a1a | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:51:39.942238694Z 53 PC: 14a1a | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:51:39.954126337Z 53 PC: 14a1a | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:51:39.956120421Z 53 PC: 14a1a | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:51:39.958057445Z 53 PC: 14a1a | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:51:39.960314899Z 53 PC: 14a1a | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:51:39.961960984Z 53 PC: 14a1a | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:51:39.963600038Z 53 PC: 14a1a | Get interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:51:39.966136055Z 53 PC: 14a1a | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:51:39.967946729Z 53 PC: 14a1a | Get interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:51:39.969660084Z 53 PC: 14a1a | Get interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:51:39.971948953Z 53 PC: 14a1a | Get interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:51:39.973714951Z 53 PC: 14a1a | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:51:39.975492233Z 37 PC: 14a2f | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:51:39.977589932Z 37 PC: 14a37 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:51:39.979202161Z 37 PC: 14a3f | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:51:39.980684681Z 37 PC: 14a47 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:51:39.983153044Z 68 PC: 15780 | I/O control for devices (Set for = '��������MQV�Z����[+�Yˋ��ԧ')
2018-12-17T22:51:40.083250721Z 37 PC: 141f1 | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:51:40.085897649Z 25 PC: 15338 | Get default drive
2018-12-17T22:51:40.08844695Z 71 PC: 1534b | Get current directory
2018-12-17T22:51:40.106680093Z 26 PC: 1487d | Set disk transfer address
2018-12-17T22:51:40.108148683Z 78 PC: 14889 | Find first file
2018-12-17T22:51:40.123706485Z 25 PC: 15338 | Get default drive
2018-12-17T22:51:40.126287314Z 71 PC: 1534b | Get current directory
2018-12-17T22:51:40.130473065Z 26 PC: 1487d | Set disk transfer address
2018-12-17T22:51:40.132521254Z 78 PC: 14889 | Find first file
2018-12-17T22:51:40.147873666Z 26 PC: 1487d | Set disk transfer address
2018-12-17T22:51:40.158612416Z 78 PC: 14889 | Find first file
2018-12-17T22:51:40.166898158Z 61 PC: 15171 | Open file (Filename = 'A:\\TEST.EXE')
2018-12-17T22:51:40.171349379Z 37 PC: 14b71 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:51:40.173535833Z 37 PC: 14b71 | Set interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:51:40.175664918Z 37 PC: 14b71 | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:51:40.178826377Z 37 PC: 14b71 | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:51:40.180284444Z 37 PC: 14b71 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:51:40.181695937Z 37 PC: 14b71 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:51:40.183990459Z 37 PC: 14b71 | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:51:40.185593552Z 37 PC: 14b71 | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:51:40.187223048Z 37 PC: 14b71 | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:51:40.189444314Z 37 PC: 14b71 | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:51:40.190864468Z 37 PC: 14b71 | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:51:40.192330651Z 37 PC: 14b71 | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:51:40.194226158Z 37 PC: 14b71 | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:51:40.195610374Z 37 PC: 14b71 | Set interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:51:40.196919643Z 37 PC: 14b71 | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:51:40.198461009Z 37 PC: 14b71 | Set interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:51:40.215539488Z 37 PC: 14b71 | Set interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:51:40.217195553Z 37 PC: 14b71 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:51:40.219819303Z 37 PC: 14b71 | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:51:40.221909586Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.224500167Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.22721786Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.230269214Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.232903582Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.235583169Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.251315343Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.253940249Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.256643065Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.26009826Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.262613955Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.276231545Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.279362072Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.281720077Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.284118645Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.287087952Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.290317803Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.292697112Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.296057752Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.299112036Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.301792799Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.305330942Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.322580518Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.334698724Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.337442783Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.340479329Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.343014319Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.345598045Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.348722261Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.35137247Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.354032042Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.358363136Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.36091558Z 6 PC: 14bf8 | Direct console I/O
2018-12-17T22:51:40.365323095Z 76 PC: 14bb0 | Terminate with return code (Return code = '5')