Sample viewer

vx.netlux.org/Virus.DOS.Probe.2140

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:52:27.841341741Z 82 PC: 18c42 | Get DOS internal pointers (SYSVARS)
2018-12-17T22:52:27.858132703Z 88 PC: 18d1c | case 0xGet or set allocation strateg:
2018-12-17T22:52:27.859848997Z 88 PC: 18d25 | case 0xGet or set allocation strateg:
2018-12-17T22:52:27.861247574Z 88 PC: 18d2f | case 0xGet or set allocation strateg:
2018-12-17T22:52:27.864237912Z 88 PC: 18d37 | case 0xGet or set allocation strateg:
2018-12-17T22:52:27.865444007Z 72 PC: 18d3e | Allocate memory
2018-12-17T22:52:27.867001193Z 88 PC: 18d49 | case 0xGet or set allocation strateg:
2018-12-17T22:52:27.868975942Z 88 PC: 18d50 | case 0xGet or set allocation strateg:
2018-12-17T22:52:27.870287155Z 74 PC: 18c71 | Reallocate memory
2018-12-17T22:52:27.871630589Z 88 PC: 18d1c | case 0xGet or set allocation strateg:
2018-12-17T22:52:27.873057489Z 88 PC: 18d25 | case 0xGet or set allocation strateg:
2018-12-17T22:52:27.884081678Z 88 PC: 18d2f | case 0xGet or set allocation strateg:
2018-12-17T22:52:27.886088718Z 88 PC: 18d37 | case 0xGet or set allocation strateg:
2018-12-17T22:52:27.888203501Z 72 PC: 18d3e | Allocate memory
2018-12-17T22:52:27.891822499Z 88 PC: 18d49 | case 0xGet or set allocation strateg:
2018-12-17T22:52:27.893927523Z 88 PC: 18d50 | case 0xGet or set allocation strateg:
2018-12-17T22:52:27.895790913Z 53 PC: 18c7f | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:52:27.899676453Z 37 PC: 18cb7 | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:52:27.907907705Z 96 PC: 9f48b | Qualify filename
2018-12-17T22:52:27.912562289Z 67 PC: 9f3eb | Get or set file attributes
2018-12-17T22:52:27.924052834Z 96 PC: 9f48b | Qualify filename
2018-12-17T22:52:27.926532602Z 96 PC: 9f48b | Qualify filename
2018-12-17T22:52:27.929187309Z 96 PC: 9f48b | Qualify filename
2018-12-17T22:52:27.934690777Z 67 PC: 9f3eb | Get or set file attributes
2018-12-17T22:52:27.945979904Z 67 PC: 9f3fd | Get or set file attributes
2018-12-17T22:52:28.291184689Z 61 PC: 9f46e | Open file (Filename = 'c:\windows\smartdrv.exe')
2018-12-17T22:52:28.300282149Z 63 PC: 9f45e | Read file or device (Read 24 bytes on handle 5)
2018-12-17T22:52:28.306666772Z 66 PC: 9f44c | Move file pointer
2018-12-17T22:52:28.308466473Z 63 PC: 9f45e | Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:28.315679382Z 66 PC: 9f44c | Move file pointer
2018-12-17T22:52:28.318821825Z 66 PC: 9f44c | Move file pointer
2018-12-17T22:52:28.320588835Z 64 PC: 9f455 | Write file or device (Write 24 bytes on handle 5)
2018-12-17T22:52:28.323907629Z 66 PC: 9f44c | Move file pointer
2018-12-17T22:52:28.32704364Z 64 PC: 9f455 | Write file or device (Write 2140 bytes on handle 5)
2018-12-17T22:52:28.336884927Z 62 PC: 9f478 | Close file
2018-12-17T22:52:28.343717662Z 67 PC: 9f417 | Get or set file attributes
2018-12-17T22:52:28.353770487Z 96 PC: 9f48b | Qualify filename
2018-12-17T22:52:28.355758721Z 96 PC: 9f48b | Qualify filename
2018-12-17T22:52:28.357596383Z 96 PC: 9f48b | Qualify filename
2018-12-17T22:52:28.361645239Z 67 PC: 9f3eb | Get or set file attributes
2018-12-17T22:52:28.366765027Z 96 PC: 9f48b | Qualify filename
2018-12-17T22:52:28.368637895Z 96 PC: 9f48b | Qualify filename
2018-12-17T22:52:28.371161546Z 96 PC: 9f48b | Qualify filename
2018-12-17T22:52:28.374667261Z 67 PC: 9f3eb | Get or set file attributes
2018-12-17T22:52:28.379496312Z 67 PC: 9f3fd | Get or set file attributes
2018-12-17T22:52:28.387813406Z 61 PC: 9f46e | Open file (Filename = 'c:\dos\keyb.com')
2018-12-17T22:52:28.39357515Z 63 PC: 9f45e | Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:28.398198594Z 66 PC: 9f44c | Move file pointer
2018-12-17T22:52:28.399561063Z 63 PC: 9f45e | Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:52:28.404897348Z 66 PC: 9f44c | Move file pointer
2018-12-17T22:52:28.406283101Z 66 PC: 9f44c | Move file pointer
2018-12-17T22:52:28.407624351Z 64 PC: 9f455 | Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:52:28.41070595Z 66 PC: 9f44c | Move file pointer
2018-12-17T22:52:28.412279365Z 64 PC: 9f455 | Write file or device (Write 2140 bytes on handle 5)
2018-12-17T22:52:28.419711536Z 62 PC: 9f478 | Close file
2018-12-17T22:52:28.426872719Z 67 PC: 9f417 | Get or set file attributes
2018-12-17T22:52:28.434798107Z 96 PC: 9f48b | Qualify filename
2018-12-17T22:52:28.436709938Z 96 PC: 9f48b | Qualify filename
2018-12-17T22:52:28.439852451Z 98 PC: 171b0 | Get current PSP
2018-12-17T22:52:28.441258672Z 99 PC: 148e4 | Get DBCS lead byte table pointer
2018-12-17T22:52:28.442587739Z 68 PC: 148fe | I/O control for devices (Set for = '')
2018-12-17T22:52:28.44456883Z 68 PC: 14909 | I/O control for devices (Set for = '')
2018-12-17T22:52:28.446173164Z 68 PC: 14914 | I/O control for devices (Set for = '')
2018-12-17T22:52:28.44772531Z 68 PC: 1491c | I/O control for devices (Set for = '��b���g�t�S3����[r�2��W�<t�<u�6�u����>��>W')
2018-12-17T22:52:28.449900105Z 48 PC: 14921 | Get DOS version
2018-12-17T22:52:28.452385144Z 108 PC: 1275d | Extended open/create file
2018-12-17T22:52:28.457748138Z 66 PC: 12770 | Move file pointer
2018-12-17T22:52:28.459339748Z 63 PC: 1277c | Read file or device (Read 64 bytes on handle 5)
2018-12-17T22:52:28.464580502Z 66 PC: 12770 | Move file pointer
2018-12-17T22:52:28.466280095Z 63 PC: 1277c | Read file or device (Read 64 bytes on handle 5)
2018-12-17T22:52:28.470664121Z 62 PC: 12791 | Close file
2018-12-17T22:52:28.473190617Z 64 PC: 14a56 | Write file or device (Write 26 bytes on handle 2)
2018-12-17T22:52:28.475850043Z 64 PC: 14a56 | Write file or device (Write 3 bytes on handle 2)
2018-12-17T22:52:28.478689286Z 64 PC: 14a26 | Write file or device (Write 1 bytes on handle 2)
2018-12-17T22:52:28.483473062Z 64 PC: 14a56 | Write file or device (Write 2 bytes on handle 2)
2018-12-17T22:52:28.488446795Z 76 PC: 171e0 | Terminate with return code (Return code = '0')