Sample viewer

vx.netlux.org/Virus.DOS.Beda.1301

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:52:19.597680154Z	190	PC: 12bab \| UNKNOWN!
2018-12-17T22:52:19.599183378Z	82	PC: 12bb7 \| Get DOS internal pointers (SYSVARS)
2018-12-17T22:52:19.602300924Z	53	PC: 12be4 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:52:19.604329264Z	37	PC: 12c24 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:52:19.606360961Z	9	PC: 12a82 \| Display string (String= 'Goat file (COM). Size=0000014Dh/0000000333d bytes. ')
2018-12-17T22:52:19.620615589Z	76	PC: 12a86 \| Terminate with return code (Return code = '36')
2018-12-17T22:52:19.625042595Z	77	PC: 11fe0 \| Get program return code
2018-12-17T22:52:19.627103657Z	72	PC: 12174 \| Allocate memory
2018-12-17T22:52:19.631070278Z	72	PC: 1218d \| Allocate memory
2018-12-17T22:52:19.634061576Z	37	PC: 123c4 \| Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T22:52:19.635837192Z	37	PC: 123cb \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:52:19.637939752Z	37	PC: 123d2 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:52:19.639997638Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:19.642104315Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:19.644084485Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:19.647147719Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:19.655125376Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:19.657412282Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:19.66049389Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:19.662746842Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:19.664963506Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:19.674091163Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:19.687173468Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:19.689316213Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:19.692844531Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:19.695968189Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:19.698113308Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:19.700923808Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:19.7036559Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:19.705810668Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:19.70809534Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:19.710607359Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:19.712348039Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:19.714422966Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:19.71783734Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:19.720480134Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:19.722755429Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:19.726607254Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:19.728538863Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:19.73053874Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:19.732714317Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:19.735495421Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:19.737516588Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:19.740160515Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:19.741950527Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:19.743802506Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:19.745652881Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:19.748198594Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:19.750184324Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:19.751939501Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:19.754630877Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:19.756856748Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:19.759115041Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:19.762293351Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:19.764481281Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:19.766790399Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:19.769409159Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:19.773492017Z	99	PC: 999d7 \| Get DBCS lead byte table pointer
2018-12-17T22:52:19.775125536Z	56	PC: 941f9 \| Get or set country info
2018-12-17T22:52:19.778120162Z	64	PC: 99c48 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T22:52:19.783143648Z	25	PC: 94262 \| Get default drive
2018-12-17T22:52:19.78533766Z	71	PC: 964dd \| Get current directory
2018-12-17T22:52:19.790082573Z	64	PC: 99c48 \| Write file or device (Write 3 bytes on handle 1)
2018-12-17T22:52:19.797020026Z	2	PC: 964b2 \| Character output (Char = '3e')
2018-12-17T22:52:19.799850282Z	93	PC: 94320 \| File sharing functions
2018-12-17T22:52:19.802922292Z	93	PC: 94327 \| File sharing functions
2018-12-17T22:52:19.808913317Z	10	PC: 94339 \| Buffered keyboard input
2018-12-17T22:52:34.567514303Z	0	PC: 0 \| Program terminate
2018-12-17T22:52:35.92218814Z	0	PC: 0 \| Program terminate
2018-12-17T22:52:36.025433686Z	64	PC: 99c48 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T22:52:36.044287292Z	41	PC: 943ae \| Parse filename
2018-12-17T22:52:36.047700814Z	41	PC: 9442f \| Parse filename
2018-12-17T22:52:36.049672969Z	41	PC: 9444c \| Parse filename
2018-12-17T22:52:36.052469993Z	26	PC: 978f7 \| Set disk transfer address
2018-12-17T22:52:36.055812142Z	71	PC: 97af3 \| Get current directory
2018-12-17T22:52:36.065320152Z	78	PC: 9f2f7 \| Find first file
2018-12-17T22:52:36.075719667Z	47	PC: 9f2ff \| Get disk transfer address
2018-12-17T22:52:36.078136768Z	71	PC: 9796c \| Get current directory
2018-12-17T22:52:36.08156634Z	73	PC: 97009 \| Release memory
2018-12-17T22:52:36.083249702Z	37	PC: 9f1ed \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:52:36.085287771Z	67	PC: 9f1f8 \| Get or set file attributes
2018-12-17T22:52:36.09178709Z	67	PC: 9f209 \| Get or set file attributes
2018-12-17T22:52:36.110828599Z	61	PC: 9f3c4 \| Open file (Filename = 'A:\PRINT.COM')
2018-12-17T22:52:36.122391911Z	87	PC: 9f3d8 \| Get or set file date and time
2018-12-17T22:52:36.124626799Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:36.126653887Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:36.129404473Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:36.132253535Z	61	PC: 9f221 \| Open file (Filename = 'A:\PRINT.COM')
2018-12-17T22:52:36.145414849Z	87	PC: 9f22f \| Get or set file date and time
2018-12-17T22:52:36.148181787Z	66	PC: 9f241 \| Move file pointer
2018-12-17T22:52:36.150204406Z	66	PC: 9f250 \| Move file pointer
2018-12-17T22:52:36.152095538Z	63	PC: 9f25a \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:52:36.159653045Z	66	PC: 9f26a \| Move file pointer
2018-12-17T22:52:36.162605301Z	64	PC: 9f282 \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:52:36.165870825Z	66	PC: 9f29b \| Move file pointer
2018-12-17T22:52:36.167751939Z	64	PC: 9f3b3 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:52:36.177281079Z	66	PC: 9f2ad \| Move file pointer
2018-12-17T22:52:36.179243656Z	64	PC: 9f3b3 \| Write file or device (Write 1301 bytes on handle 5)
2018-12-17T22:52:36.188800498Z	87	PC: 9f2c3 \| Get or set file date and time
2018-12-17T22:52:36.191790635Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:36.194242181Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:36.196130698Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:36.20598Z	67	PC: 9f2d8 \| Get or set file attributes
2018-12-17T22:52:36.217860777Z	75	PC: 11821 \| Execute program
2018-12-17T22:52:36.23389648Z	9	PC: 12a47 \| Display string (String= 'Hello, World! ')
2018-12-17T22:52:36.238755117Z	76	PC: 12a4b \| Terminate with return code (Return code = '36')
2018-12-17T22:52:36.242699938Z	77	PC: 11fe0 \| Get program return code
2018-12-17T22:52:36.244352753Z	72	PC: 12174 \| Allocate memory
2018-12-17T22:52:36.246434884Z	72	PC: 1218d \| Allocate memory
2018-12-17T22:52:36.249110731Z	37	PC: 123c4 \| Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T22:52:36.250568238Z	37	PC: 123cb \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:52:36.25204906Z	37	PC: 123d2 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:52:36.254402761Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:36.256355529Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:36.258301986Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:36.261098158Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:36.262853847Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:36.264177283Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:36.266153144Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:36.267788746Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:36.269107173Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:36.270715304Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:36.272531175Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:36.274100783Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:36.275517876Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:36.278310902Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:36.279983695Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:36.282158991Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:36.285238776Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:36.289587916Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:36.29139461Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:36.297341501Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:36.305893646Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:36.308014179Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:36.319146301Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:36.320981648Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:36.323127289Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:36.326023209Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:36.328169361Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:36.330392888Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:36.333199189Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:36.335103376Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:36.337081001Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:36.339760705Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:36.34157337Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:36.343462238Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:36.346244394Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:36.348018076Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:36.349901975Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:36.352701965Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:36.354474775Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:36.356813759Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:36.359624999Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:36.361390857Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:36.363329999Z	66	PC: 9f32b \| Move file pointer
2018-12-17T22:52:36.366173852Z	87	PC: 9f331 \| Get or set file date and time
2018-12-17T22:52:36.3682491Z	62	PC: 9f354 \| Close file
2018-12-17T22:52:36.371786154Z	99	PC: 999d7 \| Get DBCS lead byte table pointer
2018-12-17T22:52:36.3733438Z	56	PC: 941f9 \| Get or set country info
2018-12-17T22:52:36.375705506Z	64	PC: 99c48 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T22:52:36.380516985Z	25	PC: 94262 \| Get default drive
2018-12-17T22:52:36.382427644Z	71	PC: 964dd \| Get current directory
2018-12-17T22:52:36.389280597Z	64	PC: 99c48 \| Write file or device (Write 3 bytes on handle 1)
2018-12-17T22:52:36.393183098Z	2	PC: 964b2 \| Character output (Char = '3e')
2018-12-17T22:52:36.396136045Z	93	PC: 94320 \| File sharing functions
2018-12-17T22:52:36.399514261Z	93	PC: 94327 \| File sharing functions
2018-12-17T22:52:36.401671053Z	10	PC: 94339 \| Buffered keyboard input