Sample viewer

vx.netlux.org/Virus.DOS.VLAD.Padania.3566

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:52:07.45146942Z	82	PC: 12a45 \| Get DOS internal pointers (SYSVARS)
2018-12-17T22:52:07.453768178Z	75	PC: 9ecf9 \| Execute program
2018-12-17T22:52:07.45858667Z	25	PC: 9ecf9 \| Get default drive
2018-12-17T22:52:07.46212558Z	77	PC: 11fe0 \| Get program return code
2018-12-17T22:52:07.46400297Z	72	PC: 12174 \| Allocate memory
2018-12-17T22:52:07.466253568Z	72	PC: 1218d \| Allocate memory
2018-12-17T22:52:07.46862729Z	37	PC: 123c4 \| Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T22:52:07.470054581Z	37	PC: 123cb \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:52:07.471734305Z	37	PC: 123d2 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:52:07.473172755Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:07.474684889Z	62	PC: 122ab \| Close file
2018-12-17T22:52:07.477057173Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:07.478593488Z	62	PC: 122ab \| Close file
2018-12-17T22:52:07.480177058Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:07.487555825Z	62	PC: 122ab \| Close file
2018-12-17T22:52:07.489070895Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:07.490370674Z	62	PC: 122ab \| Close file
2018-12-17T22:52:07.492616533Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:07.494117664Z	62	PC: 122ab \| Close file
2018-12-17T22:52:07.495730309Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:07.497670499Z	62	PC: 122ab \| Close file
2018-12-17T22:52:07.499595915Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:07.500873541Z	62	PC: 122ab \| Close file
2018-12-17T22:52:07.502568252Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:07.504603701Z	62	PC: 122ab \| Close file
2018-12-17T22:52:07.506304161Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:07.508372276Z	62	PC: 122ab \| Close file
2018-12-17T22:52:07.510720469Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:07.51296124Z	62	PC: 122ab \| Close file
2018-12-17T22:52:07.516119369Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:07.518010897Z	62	PC: 122ab \| Close file
2018-12-17T22:52:07.521649921Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:07.523817128Z	62	PC: 122ab \| Close file
2018-12-17T22:52:07.526499733Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:07.529020664Z	62	PC: 122ab \| Close file
2018-12-17T22:52:07.530999753Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:07.532674157Z	62	PC: 122ab \| Close file
2018-12-17T22:52:07.533865513Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:07.534973101Z	62	PC: 122ab \| Close file
2018-12-17T22:52:07.537039595Z	53	PC: 9ecf9 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:52:07.537932754Z	37	PC: 9ecf9 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:52:07.538824801Z	96	PC: 9ecf9 \| Qualify filename
2018-12-17T22:52:07.541824708Z	67	PC: 9ecf9 \| Get or set file attributes
2018-12-17T22:52:07.545100763Z	67	PC: 9ecf9 \| Get or set file attributes
2018-12-17T22:52:07.882270305Z	61	PC: 9ecf9 \| Open file (Filename = 'C:\COMMAND.COM')
2018-12-17T22:52:07.889685839Z	63	PC: 9ecf9 \| Read file or device (Read 28 bytes on handle 5)
2018-12-17T22:52:07.89326406Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:07.895690328Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:07.898383387Z	66	PC: 9ecf9 \| Move file pointer
2018-12-17T22:52:07.899726413Z	62	PC: 9ecf9 \| Close file
2018-12-17T22:52:07.901354183Z	67	PC: 9ecf9 \| Get or set file attributes
2018-12-17T22:52:07.910612194Z	37	PC: 9ecf9 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:52:07.911723031Z	96	PC: 9ecf9 \| Qualify filename
2018-12-17T22:52:07.915557652Z	61	PC: 9ecf9 \| Open file (Filename = 'C:\COMMAND.COM')
2018-12-17T22:52:07.922013702Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:07.9240421Z	68	PC: 9ecf9 \| I/O control for devices (Set for = '')
2018-12-17T22:52:07.926410192Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:07.928227759Z	66	PC: 12372 \| Move file pointer
2018-12-17T22:52:07.929751997Z	68	PC: 9ecf9 \| I/O control for devices (Set for = '�mfyW�Wv W�Wj W�WcW�W�W W5W')
2018-12-17T22:52:07.931468352Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:07.934322717Z	63	PC: 12383 \| Read file or device (Read 44693 bytes on handle 5)
2018-12-17T22:52:07.954507968Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:07.956753062Z	62	PC: 1238a \| Close file
2018-12-17T22:52:07.961101039Z	99	PC: 98947 \| Get DBCS lead byte table pointer
2018-12-17T22:52:07.962968576Z	56	PC: 93169 \| Get or set country info
2018-12-17T22:52:07.96533888Z	64	PC: 98bb8 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T22:52:07.971147918Z	25	PC: 931d2 \| Get default drive
2018-12-17T22:52:07.97341554Z	71	PC: 9544d \| Get current directory
2018-12-17T22:52:07.977706169Z	64	PC: 98bb8 \| Write file or device (Write 3 bytes on handle 1)
2018-12-17T22:52:07.981866386Z	2	PC: 95422 \| Character output (Char = '3e')
2018-12-17T22:52:07.984211467Z	93	PC: 93290 \| File sharing functions
2018-12-17T22:52:07.986018824Z	93	PC: 93297 \| File sharing functions
2018-12-17T22:52:07.98855354Z	10	PC: 932a9 \| Buffered keyboard input
2018-12-17T22:52:22.439709665Z	0	PC: 0 \| Program terminate
2018-12-17T22:52:23.794998556Z	0	PC: 0 \| Program terminate
2018-12-17T22:52:23.89750627Z	64	PC: 98bb8 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T22:52:23.903402038Z	41	PC: 9331e \| Parse filename
2018-12-17T22:52:23.90620064Z	41	PC: 9339f \| Parse filename
2018-12-17T22:52:23.907791122Z	41	PC: 933bc \| Parse filename
2018-12-17T22:52:23.911048514Z	26	PC: 96867 \| Set disk transfer address
2018-12-17T22:52:23.913677481Z	71	PC: 96a63 \| Get current directory
2018-12-17T22:52:23.930305557Z	81	PC: 9ecf9 \| Get current PSP
2018-12-17T22:52:23.931259901Z	78	PC: 9ecf9 \| Find first file
2018-12-17T22:52:23.94110283Z	47	PC: 9ecf9 \| Get disk transfer address
2018-12-17T22:52:23.942693272Z	71	PC: 968dc \| Get current directory
2018-12-17T22:52:23.94577892Z	73	PC: 95f79 \| Release memory
2018-12-17T22:52:23.947823366Z	53	PC: 9ecf9 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:52:23.948937329Z	37	PC: 9ecf9 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:52:23.950071242Z	96	PC: 9ecf9 \| Qualify filename
2018-12-17T22:52:23.955226737Z	96	PC: 9ecf9 \| Qualify filename
2018-12-17T22:52:23.959832804Z	37	PC: 9ecf9 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:52:23.9611739Z	75	PC: 11821 \| Execute program
2018-12-17T22:52:23.974643127Z	9	PC: 12a47 \| Display string (String= 'Hello, World! ')
2018-12-17T22:52:23.978507753Z	76	PC: 12a4b \| Terminate with return code (Return code = '36')
2018-12-17T22:52:23.981512868Z	77	PC: 11fe0 \| Get program return code
2018-12-17T22:52:23.983193097Z	72	PC: 12174 \| Allocate memory
2018-12-17T22:52:23.985123943Z	72	PC: 1218d \| Allocate memory
2018-12-17T22:52:23.986666613Z	37	PC: 123c4 \| Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T22:52:23.988704976Z	37	PC: 123cb \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:52:23.990029517Z	37	PC: 123d2 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:52:23.99151221Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:23.994040837Z	62	PC: 122ab \| Close file
2018-12-17T22:52:23.995892319Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:23.997530523Z	62	PC: 122ab \| Close file
2018-12-17T22:52:24.000492644Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:24.002230659Z	62	PC: 122ab \| Close file
2018-12-17T22:52:24.004086056Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:24.006755117Z	62	PC: 122ab \| Close file
2018-12-17T22:52:24.008369639Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:24.009849828Z	62	PC: 122ab \| Close file
2018-12-17T22:52:24.013072813Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:24.014792433Z	62	PC: 122ab \| Close file
2018-12-17T22:52:24.016678795Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:24.019018487Z	62	PC: 122ab \| Close file
2018-12-17T22:52:24.02076989Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:24.022458948Z	62	PC: 122ab \| Close file
2018-12-17T22:52:24.025146458Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:24.02657519Z	62	PC: 122ab \| Close file
2018-12-17T22:52:24.028069367Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:24.031025163Z	62	PC: 122ab \| Close file
2018-12-17T22:52:24.032833104Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:24.034323795Z	62	PC: 122ab \| Close file
2018-12-17T22:52:24.036330461Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:24.038024858Z	62	PC: 122ab \| Close file
2018-12-17T22:52:24.03956618Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:24.054215516Z	62	PC: 122ab \| Close file
2018-12-17T22:52:24.071994886Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:24.073351582Z	62	PC: 122ab \| Close file
2018-12-17T22:52:24.075554536Z	87	PC: 9ecf9 \| Get or set file date and time
2018-12-17T22:52:24.0771716Z	62	PC: 122ab \| Close file
2018-12-17T22:52:24.080080692Z	99	PC: 98947 \| Get DBCS lead byte table pointer
2018-12-17T22:52:24.08271961Z	56	PC: 93169 \| Get or set country info
2018-12-17T22:52:24.084690898Z	64	PC: 98bb8 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T22:52:24.089038865Z	25	PC: 931d2 \| Get default drive
2018-12-17T22:52:24.090779845Z	71	PC: 9544d \| Get current directory
2018-12-17T22:52:24.093509262Z	64	PC: 98bb8 \| Write file or device (Write 3 bytes on handle 1)
2018-12-17T22:52:24.098009207Z	2	PC: 95422 \| Character output (Char = '3e')
2018-12-17T22:52:24.100861633Z	93	PC: 93290 \| File sharing functions
2018-12-17T22:52:24.102294136Z	93	PC: 93297 \| File sharing functions
2018-12-17T22:52:24.103897993Z	10	PC: 932a9 \| Buffered keyboard input