Sample viewer

vx.netlux.org/Virus.DOS.Trux.1291

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:51:59.458168394Z	48	PC: 12c5c \| Get DOS version
2018-12-17T22:51:59.459615417Z	74	PC: 12c6b \| Reallocate memory
2018-12-17T22:51:59.461407718Z	74	PC: 12c76 \| Reallocate memory
2018-12-17T22:51:59.462776981Z	72	PC: 12c7d \| Allocate memory
2018-12-17T22:51:59.465154415Z	53	PC: 9f7ea \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:51:59.466576555Z	37	PC: 9f7fe \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:51:59.467690389Z	67	PC: 9f80a \| Get or set file attributes
2018-12-17T22:51:59.478091743Z	67	PC: 9f816 \| Get or set file attributes
2018-12-17T22:51:59.488317211Z	37	PC: 9f8d6 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:51:59.489960497Z	67	PC: 12ce4 \| Get or set file attributes
2018-12-17T22:51:59.497433359Z	53	PC: 9f7ea \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:51:59.500209571Z	37	PC: 9f7fe \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:51:59.501839987Z	67	PC: 9f80a \| Get or set file attributes
2018-12-17T22:51:59.50870292Z	67	PC: 9f816 \| Get or set file attributes
2018-12-17T22:52:00.163915282Z	61	PC: 9f820 \| Open file (Filename = '��>')
2018-12-17T22:52:00.178279018Z	63	PC: 9f831 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:00.182369534Z	87	PC: 9f853 \| Get or set file date and time
2018-12-17T22:52:00.185068019Z	66	PC: 9f863 \| Move file pointer
2018-12-17T22:52:00.186415989Z	64	PC: 9f897 \| Write file or device (Write 1291 bytes on handle 5)
2018-12-17T22:52:00.195321999Z	66	PC: 9f89f \| Move file pointer
2018-12-17T22:52:00.197618383Z	64	PC: 9f8a9 \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:52:00.204172407Z	87	PC: 9f8bc \| Get or set file date and time
2018-12-17T22:52:00.205993088Z	62	PC: 9f8c0 \| Close file
2018-12-17T22:52:00.214314221Z	67	PC: 9f8cc \| Get or set file attributes
2018-12-17T22:52:00.226679067Z	37	PC: 9f8d6 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:52:00.228026977Z	67	PC: 12ced \| Get or set file attributes
2018-12-17T22:52:00.235144195Z	53	PC: 9f7ea \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:52:00.237336067Z	37	PC: 9f7fe \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:52:00.238978976Z	67	PC: 9f80a \| Get or set file attributes
2018-12-17T22:52:00.246226956Z	67	PC: 9f816 \| Get or set file attributes
2018-12-17T22:52:00.258592522Z	61	PC: 9f820 \| Open file (Filename = '�1F��t��6��I��\|�6��:�>')
2018-12-17T22:52:00.267717342Z	63	PC: 9f831 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:00.274855409Z	87	PC: 9f853 \| Get or set file date and time
2018-12-17T22:52:00.278106833Z	66	PC: 9f863 \| Move file pointer
2018-12-17T22:52:00.280238874Z	64	PC: 9f897 \| Write file or device (Write 1291 bytes on handle 5)
2018-12-17T22:52:00.289702789Z	66	PC: 9f89f \| Move file pointer
2018-12-17T22:52:00.292581158Z	64	PC: 9f8a9 \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:52:00.296694875Z	87	PC: 9f8bc \| Get or set file date and time
2018-12-17T22:52:00.299175417Z	62	PC: 9f8c0 \| Close file
2018-12-17T22:52:00.314924346Z	67	PC: 9f8cc \| Get or set file attributes
2018-12-17T22:52:00.326610389Z	37	PC: 9f8d6 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:52:00.329094842Z	67	PC: 12cf6 \| Get or set file attributes
2018-12-17T22:52:00.336281942Z	53	PC: 9f7ea \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:52:00.339025206Z	37	PC: 9f7fe \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:52:00.340751719Z	67	PC: 9f80a \| Get or set file attributes
2018-12-17T22:52:00.34881814Z	67	PC: 9f816 \| Get or set file attributes
2018-12-17T22:52:00.362725671Z	61	PC: 9f820 \| Open file (Filename = '��I��\|�6��:�>')
2018-12-17T22:52:00.389983647Z	63	PC: 9f831 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:00.397219161Z	87	PC: 9f853 \| Get or set file date and time
2018-12-17T22:52:00.400085166Z	66	PC: 9f863 \| Move file pointer
2018-12-17T22:52:00.407431887Z	64	PC: 9f897 \| Write file or device (Write 1291 bytes on handle 5)
2018-12-17T22:52:00.419137447Z	66	PC: 9f89f \| Move file pointer
2018-12-17T22:52:00.421085875Z	64	PC: 9f8a9 \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:52:00.424947178Z	87	PC: 9f8bc \| Get or set file date and time
2018-12-17T22:52:00.426928101Z	62	PC: 9f8c0 \| Close file
2018-12-17T22:52:00.435194107Z	67	PC: 9f8cc \| Get or set file attributes
2018-12-17T22:52:00.447030382Z	37	PC: 9f8d6 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:52:00.44880873Z	67	PC: 12cff \| Get or set file attributes
2018-12-17T22:52:00.456240949Z	53	PC: 9f7ea \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:52:00.460156471Z	37	PC: 9f7fe \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:52:00.461913901Z	67	PC: 9f80a \| Get or set file attributes
2018-12-17T22:52:00.469178968Z	67	PC: 9f816 \| Get or set file attributes
2018-12-17T22:52:00.481580524Z	61	PC: 9f820 \| Open file (Filename = '��:�>')
2018-12-17T22:52:00.490434756Z	63	PC: 9f831 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:00.496943271Z	87	PC: 9f853 \| Get or set file date and time
2018-12-17T22:52:00.520138717Z	66	PC: 9f863 \| Move file pointer
2018-12-17T22:52:00.5238191Z	64	PC: 9f897 \| Write file or device (Write 1291 bytes on handle 5)
2018-12-17T22:52:00.534919126Z	66	PC: 9f89f \| Move file pointer
2018-12-17T22:52:00.53715781Z	64	PC: 9f8a9 \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:52:00.541597525Z	87	PC: 9f8bc \| Get or set file date and time
2018-12-17T22:52:00.544173001Z	62	PC: 9f8c0 \| Close file
2018-12-17T22:52:00.552875776Z	67	PC: 9f8cc \| Get or set file attributes
2018-12-17T22:52:00.566617838Z	37	PC: 9f8d6 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:52:00.568331094Z	67	PC: 12d08 \| Get or set file attributes
2018-12-17T22:52:00.575839754Z	53	PC: 9f7ea \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:52:00.578517269Z	37	PC: 9f7fe \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:52:00.580579489Z	67	PC: 9f80a \| Get or set file attributes
2018-12-17T22:52:00.588098398Z	67	PC: 9f816 \| Get or set file attributes
2018-12-17T22:52:00.596318447Z	37	PC: 9f8d6 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:52:00.599165533Z	67	PC: 12d11 \| Get or set file attributes
2018-12-17T22:52:00.606821307Z	53	PC: 9f7ea \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:52:00.608602021Z	37	PC: 9f7fe \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:52:00.611357726Z	67	PC: 9f80a \| Get or set file attributes
2018-12-17T22:52:00.621288956Z	67	PC: 9f816 \| Get or set file attributes
2018-12-17T22:52:00.632369637Z	61	PC: 9f820 \| Open file (Filename = 'TEST')
2018-12-17T22:52:00.641089859Z	63	PC: 9f831 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:00.647282982Z	87	PC: 9f853 \| Get or set file date and time
2018-12-17T22:52:00.64941318Z	66	PC: 9f863 \| Move file pointer
2018-12-17T22:52:00.652433011Z	64	PC: 9f897 \| Write file or device (Write 1291 bytes on handle 5)
2018-12-17T22:52:00.663952899Z	66	PC: 9f89f \| Move file pointer
2018-12-17T22:52:00.665597815Z	64	PC: 9f8a9 \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:52:00.669221232Z	87	PC: 9f8bc \| Get or set file date and time
2018-12-17T22:52:00.671692879Z	62	PC: 9f8c0 \| Close file
2018-12-17T22:52:00.679843294Z	67	PC: 9f8cc \| Get or set file attributes
2018-12-17T22:52:00.691191897Z	37	PC: 9f8d6 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:52:00.693749764Z	67	PC: 12d1a \| Get or set file attributes
2018-12-17T22:52:00.700961373Z	2	PC: 12e9b \| Character output (Char = '54')
2018-12-17T22:52:00.704732093Z	2	PC: 12e9b \| Character output (Char = '52')
2018-12-17T22:52:00.708895211Z	2	PC: 12e9b \| Character output (Char = '55')
2018-12-17T22:52:00.712159842Z	2	PC: 12e9b \| Character output (Char = '58')
2018-12-17T22:52:00.715395887Z	2	PC: 12e9b \| Character output (Char = '45')
2018-12-17T22:52:00.722328967Z	2	PC: 12e9b \| Character output (Char = '53')
2018-12-17T22:52:00.725424426Z	2	PC: 12e9b \| Character output (Char = '54')
2018-12-17T22:52:00.728368907Z	2	PC: 12e9b \| Character output (Char = '45')
2018-12-17T22:52:00.731609181Z	2	PC: 12e9b \| Character output (Char = '44')
2018-12-17T22:52:00.735267327Z	2	PC: 12e9b \| Character output (Char = '20')
2018-12-17T22:52:00.738070248Z	2	PC: 12e9b \| Character output (Char = '76')
2018-12-17T22:52:00.740847009Z	2	PC: 12e9b \| Character output (Char = '69')
2018-12-17T22:52:00.743827371Z	2	PC: 12e9b \| Character output (Char = '72')
2018-12-17T22:52:00.746510699Z	2	PC: 12e9b \| Character output (Char = '75')
2018-12-17T22:52:00.749321838Z	2	PC: 12e9b \| Character output (Char = '73')
2018-12-17T22:52:00.752933384Z	2	PC: 12e9b \| Character output (Char = '20')
2018-12-17T22:52:00.759127225Z	2	PC: 12e9b \| Character output (Char = '70')
2018-12-17T22:52:00.762119533Z	2	PC: 12e9b \| Character output (Char = '72')
2018-12-17T22:52:00.765795094Z	2	PC: 12e9b \| Character output (Char = '65')
2018-12-17T22:52:00.768319236Z	2	PC: 12e9b \| Character output (Char = '73')
2018-12-17T22:52:00.770840819Z	2	PC: 12e9b \| Character output (Char = '65')
2018-12-17T22:52:00.774429664Z	2	PC: 12e9b \| Character output (Char = '6e')
2018-12-17T22:52:00.777101401Z	2	PC: 12e9b \| Character output (Char = '74')
2018-12-17T22:52:00.780307216Z	2	PC: 12e9b \| Character output (Char = '73')
2018-12-17T22:52:00.784598963Z	2	PC: 12e9b \| Character output (Char = '3a')
2018-12-17T22:52:00.787823076Z	2	PC: 12e9b \| Character output (Char = '0d')
2018-12-17T22:52:00.790853505Z	2	PC: 12e9b \| Character output (Char = '0a')
2018-12-17T22:52:00.799390239Z	2	PC: 12e9b \| Character output (Char = '74')
2018-12-17T22:52:00.803779325Z	2	PC: 12e9b \| Character output (Char = '68')
2018-12-17T22:52:00.807104973Z	2	PC: 12e9b \| Character output (Char = '65')
2018-12-17T22:52:00.809653746Z	2	PC: 12e9b \| Character output (Char = '20')
2018-12-17T22:52:00.813311332Z	2	PC: 12e9b \| Character output (Char = '64')
2018-12-17T22:52:00.815944324Z	2	PC: 12e9b \| Character output (Char = '65')
2018-12-17T22:52:00.819319801Z	2	PC: 12e9b \| Character output (Char = '6d')
2018-12-17T22:52:00.822748151Z	2	PC: 12e9b \| Character output (Char = '6f')
2018-12-17T22:52:00.825242929Z	2	PC: 12e9b \| Character output (Char = '20')
2018-12-17T22:52:00.828083323Z	2	PC: 12e9b \| Character output (Char = '65')
2018-12-17T22:52:00.832070906Z	2	PC: 12e9b \| Character output (Char = '66')
2018-12-17T22:52:00.834971031Z	2	PC: 12e9b \| Character output (Char = '66')
2018-12-17T22:52:00.837456937Z	2	PC: 12e9b \| Character output (Char = '65')
2018-12-17T22:52:00.840880136Z	2	PC: 12e9b \| Character output (Char = '63')
2018-12-17T22:52:00.843626809Z	2	PC: 12e9b \| Character output (Char = '74')
2018-12-17T22:52:00.846084927Z	2	PC: 12e9b \| Character output (Char = '20')
2018-12-17T22:52:00.849331193Z	2	PC: 12e9b \| Character output (Char = '6f')
2018-12-17T22:52:00.851791407Z	2	PC: 12e9b \| Character output (Char = '66')
2018-12-17T22:52:00.854424034Z	2	PC: 12e9b \| Character output (Char = '20')
2018-12-17T22:52:00.858089553Z	2	PC: 12e9b \| Character output (Char = '74')
2018-12-17T22:52:00.861102518Z	2	PC: 12e9b \| Character output (Char = '68')
2018-12-17T22:52:00.864077489Z	2	PC: 12e9b \| Character output (Char = '65')
2018-12-17T22:52:00.87683289Z	2	PC: 12e9b \| Character output (Char = '20')
2018-12-17T22:52:00.879726318Z	2	PC: 12e9b \| Character output (Char = '76')
2018-12-17T22:52:00.882271832Z	2	PC: 12e9b \| Character output (Char = '69')
2018-12-17T22:52:00.885557071Z	2	PC: 12e9b \| Character output (Char = '72')
2018-12-17T22:52:00.888374224Z	2	PC: 12e9b \| Character output (Char = '75')
2018-12-17T22:52:00.891204406Z	2	PC: 12e9b \| Character output (Char = '73')
2018-12-17T22:52:00.894850746Z	2	PC: 12e9b \| Character output (Char = '20')
2018-12-17T22:52:00.897412658Z	2	PC: 12e9b \| Character output (Char = '53')
2018-12-17T22:52:00.901328518Z	2	PC: 12e9b \| Character output (Char = '69')
2018-12-17T22:52:00.904740386Z	2	PC: 12e9b \| Character output (Char = '6c')
2018-12-17T22:52:00.908085465Z	2	PC: 12e9b \| Character output (Char = '6c')
2018-12-17T22:52:00.910559973Z	2	PC: 12e9b \| Character output (Char = '79')
2018-12-17T22:52:00.91367449Z	2	PC: 12e9b \| Character output (Char = '2e')
2018-12-17T22:52:00.916463077Z	2	PC: 12e9b \| Character output (Char = '32')
2018-12-17T22:52:00.918996282Z	2	PC: 12e9b \| Character output (Char = '32')
2018-12-17T22:52:00.922222632Z	2	PC: 12e9b \| Character output (Char = '35')
2018-12-17T22:52:00.925082356Z	2	PC: 12e9b \| Character output (Char = '36')
2018-12-17T22:52:00.927648328Z	2	PC: 12ea3 \| Character output (Char = '0d')
2018-12-17T22:52:00.930641424Z	2	PC: 12ea9 \| Character output (Char = '0a')