Sample viewer

vx.netlux.org/Virus.DOS.Tervir.402

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:52:05.637732263Z	26	PC: 12af4 \| Set disk transfer address
2018-12-17T22:52:05.640205115Z	78	PC: 12b68 \| Find first file
2018-12-17T22:52:05.645966232Z	61	PC: 12b80 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:52:05.652367589Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:05.659728144Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:05.661587603Z	61	PC: 12bbb \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:52:05.668352976Z	66	PC: 12bcb \| Move file pointer
2018-12-17T22:52:05.671076357Z	64	PC: 12bda \| Write file or device (Write 402 bytes on handle 5)
2018-12-17T22:52:05.686062171Z	66	PC: 12bec \| Move file pointer
2018-12-17T22:52:05.687662958Z	64	PC: 12bfa \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:52:05.691533494Z	66	PC: 12c07 \| Move file pointer
2018-12-17T22:52:05.693099523Z	64	PC: 12c2d \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:52:05.700595035Z	62	PC: 12c35 \| Close file
2018-12-17T22:52:05.709565639Z	78	PC: 12b68 \| Find first file
2018-12-17T22:52:05.716029931Z	61	PC: 12b80 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:52:05.722629054Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:05.725411398Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:05.728048707Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:05.730646559Z	61	PC: 12b80 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:52:05.73692473Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:05.750053794Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:05.754651885Z	61	PC: 12bbb \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:52:05.766227451Z	66	PC: 12bcb \| Move file pointer
2018-12-17T22:52:05.769165019Z	64	PC: 12bda \| Write file or device (Write 402 bytes on handle 5)
2018-12-17T22:52:05.775953482Z	66	PC: 12bec \| Move file pointer
2018-12-17T22:52:05.777617572Z	64	PC: 12bfa \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:52:05.781151655Z	66	PC: 12c07 \| Move file pointer
2018-12-17T22:52:05.782525809Z	64	PC: 12c2d \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:52:05.784551207Z	62	PC: 12c35 \| Close file
2018-12-17T22:52:05.791018982Z	78	PC: 12b68 \| Find first file
2018-12-17T22:52:05.797173485Z	61	PC: 12b80 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:52:05.803768686Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:05.811066189Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:05.813551171Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:05.816418944Z	61	PC: 12b80 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:52:05.823667964Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:05.826651185Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:05.828694804Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:05.831800328Z	61	PC: 12b80 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:52:05.843808571Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:05.849931307Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:05.851673055Z	61	PC: 12bbb \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:52:05.858299336Z	66	PC: 12bcb \| Move file pointer
2018-12-17T22:52:05.859603711Z	64	PC: 12bda \| Write file or device (Write 402 bytes on handle 5)
2018-12-17T22:52:05.862414015Z	66	PC: 12bec \| Move file pointer
2018-12-17T22:52:05.864636573Z	64	PC: 12bfa \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:52:05.867218984Z	66	PC: 12c07 \| Move file pointer
2018-12-17T22:52:05.86859981Z	64	PC: 12c2d \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:52:05.871820987Z	62	PC: 12c35 \| Close file
2018-12-17T22:52:05.879749542Z	78	PC: 12b68 \| Find first file
2018-12-17T22:52:05.885478998Z	61	PC: 12b80 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:52:05.892455412Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:05.898866766Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:05.900888449Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:05.90465588Z	61	PC: 12b80 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:52:05.911283458Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:05.917446217Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:05.919450344Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:05.922735974Z	61	PC: 12b80 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:52:05.929069827Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:05.931581031Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:05.933943461Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:05.936498588Z	61	PC: 12b80 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:52:05.942757257Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:05.94972934Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:05.951545002Z	61	PC: 12bbb \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:52:05.95791015Z	66	PC: 12bcb \| Move file pointer
2018-12-17T22:52:05.960193591Z	64	PC: 12bda \| Write file or device (Write 402 bytes on handle 5)
2018-12-17T22:52:05.96304003Z	66	PC: 12bec \| Move file pointer
2018-12-17T22:52:05.964566786Z	64	PC: 12bfa \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:52:05.967738296Z	66	PC: 12c07 \| Move file pointer
2018-12-17T22:52:05.969098147Z	64	PC: 12c2d \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:52:05.97302689Z	62	PC: 12c35 \| Close file
2018-12-17T22:52:05.981571118Z	78	PC: 12b68 \| Find first file
2018-12-17T22:52:05.987303261Z	61	PC: 12b80 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:52:05.993901303Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:05.997709221Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:05.999726497Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:06.004933938Z	61	PC: 12b80 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:52:06.012107754Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.014592947Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.016263956Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:06.01930541Z	61	PC: 12b80 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:52:06.025797437Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.028298404Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.030558285Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:06.033020048Z	61	PC: 12b80 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:52:06.044862643Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.051614069Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.053411605Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:06.055969223Z	61	PC: 12b80 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:52:06.07459192Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.080861902Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.082622426Z	61	PC: 12bbb \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:52:06.089735351Z	66	PC: 12bcb \| Move file pointer
2018-12-17T22:52:06.091271391Z	64	PC: 12bda \| Write file or device (Write 402 bytes on handle 5)
2018-12-17T22:52:06.094253721Z	66	PC: 12bec \| Move file pointer
2018-12-17T22:52:06.096375462Z	64	PC: 12bfa \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:52:06.099420466Z	66	PC: 12c07 \| Move file pointer
2018-12-17T22:52:06.100734135Z	64	PC: 12c2d \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:52:06.103804984Z	62	PC: 12c35 \| Close file
2018-12-17T22:52:06.112099856Z	78	PC: 12b68 \| Find first file
2018-12-17T22:52:06.117966718Z	61	PC: 12b80 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:52:06.124933323Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.131107775Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.13280067Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:06.136443288Z	61	PC: 12b80 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:52:06.14292578Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.149315113Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.152114243Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:06.154922416Z	61	PC: 12b80 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:52:06.161498777Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.167501673Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.168888487Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:06.170690139Z	61	PC: 12b80 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:52:06.176539207Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.178405948Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.179803149Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:06.182416069Z	61	PC: 12b80 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:52:06.188343061Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.190588669Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.192559999Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:06.194959114Z	61	PC: 12b80 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:52:06.2010315Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.207219122Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.208824938Z	61	PC: 12bbb \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:52:06.213299166Z	66	PC: 12bcb \| Move file pointer
2018-12-17T22:52:06.214595689Z	64	PC: 12bda \| Write file or device (Write 402 bytes on handle 5)
2018-12-17T22:52:06.220115595Z	66	PC: 12bec \| Move file pointer
2018-12-17T22:52:06.221306541Z	64	PC: 12bfa \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:52:06.223302088Z	66	PC: 12c07 \| Move file pointer
2018-12-17T22:52:06.224893223Z	64	PC: 12c2d \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:52:06.228953979Z	62	PC: 12c35 \| Close file
2018-12-17T22:52:06.234703452Z	78	PC: 12b68 \| Find first file
2018-12-17T22:52:06.238568626Z	61	PC: 12b80 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:52:06.245648002Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.248194288Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.250265744Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:06.252802317Z	61	PC: 12b80 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:52:06.259223679Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.262109149Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.263731086Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:06.266316566Z	61	PC: 12b80 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:52:06.273370966Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.275280049Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.277040831Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:06.280382187Z	61	PC: 12b80 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:52:06.286689388Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.28912398Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.291632819Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:06.294597389Z	61	PC: 12b80 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:52:06.30121903Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.304399247Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.30616449Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:06.308682624Z	61	PC: 12b80 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:52:06.317259431Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.319800014Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.321957477Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:06.326258126Z	61	PC: 12b80 \| Open file (Filename = 'PAH.COM')
2018-12-17T22:52:06.333058864Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.339431082Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.342859151Z	61	PC: 12bbb \| Open file (Filename = 'PAH.COM')
2018-12-17T22:52:06.349821857Z	66	PC: 12bcb \| Move file pointer
2018-12-17T22:52:06.351497022Z	64	PC: 12bda \| Write file or device (Write 402 bytes on handle 5)
2018-12-17T22:52:06.357166461Z	66	PC: 12bec \| Move file pointer
2018-12-17T22:52:06.358726088Z	64	PC: 12bfa \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:52:06.361606952Z	66	PC: 12c07 \| Move file pointer
2018-12-17T22:52:06.363769455Z	64	PC: 12c2d \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:52:06.366489779Z	62	PC: 12c35 \| Close file
2018-12-17T22:52:06.374428959Z	78	PC: 12b68 \| Find first file
2018-12-17T22:52:06.381363828Z	61	PC: 12b80 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:52:06.388865419Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.391706194Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.394573725Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:06.397178807Z	61	PC: 12b80 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:52:06.403275548Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.406747281Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.408370529Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:06.410782903Z	61	PC: 12b80 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:52:06.417398837Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.42014598Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.421840616Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:06.424961443Z	61	PC: 12b80 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:52:06.431088664Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.433471555Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.436144578Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:06.438564327Z	61	PC: 12b80 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:52:06.445141509Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.447755742Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.449790303Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:06.452270568Z	61	PC: 12b80 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:52:06.459862156Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.4625169Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.464255425Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:06.467132315Z	61	PC: 12b80 \| Open file (Filename = 'PAH.COM')
2018-12-17T22:52:06.474296191Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.4770088Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.479767707Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:06.482348822Z	71	PC: 12b36 \| Get current directory
2018-12-17T22:52:06.485336553Z	59	PC: 12b41 \| Change current directory
2018-12-17T22:52:06.490640973Z	78	PC: 12b68 \| Find first file
2018-12-17T22:52:06.495609879Z	61	PC: 12b80 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:52:06.500019238Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.502385756Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.503718503Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:06.505530557Z	61	PC: 12b80 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:52:06.509972313Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.512394813Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.514037114Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:06.517130765Z	61	PC: 12b80 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:52:06.524118707Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.526654873Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.528996816Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:06.531416881Z	61	PC: 12b80 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:52:06.53782545Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.540828906Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.54266899Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:06.545124733Z	61	PC: 12b80 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:52:06.551824347Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.554171719Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.555766159Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:06.55869959Z	61	PC: 12b80 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:52:06.564968099Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.567371756Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.569676995Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:06.572506547Z	61	PC: 12b80 \| Open file (Filename = 'PAH.COM')
2018-12-17T22:52:06.579007201Z	63	PC: 12b8f \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:06.581540347Z	62	PC: 12b94 \| Close file
2018-12-17T22:52:06.583206275Z	79	PC: 12b75 \| Find next file
2018-12-17T22:52:06.585944793Z	59	PC: 12b52 \| Change current directory
2018-12-17T22:52:06.590663609Z	59	PC: 12b59 \| Change current directory
2018-12-17T22:52:06.592204725Z	26	PC: 12afe \| Set disk transfer address
2018-12-17T22:52:06.593782469Z	9	PC: 12aa2 \| Display string (String= 'Hello - This is a 100 COM test file, 1993 ')