Sample viewer

vx.netlux.org/Virus.DOS.HLLP.Colba.7981

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:52:39.110049649Z	53	PC: 1421a \| Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:52:39.111905856Z	53	PC: 1421a \| Get interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:52:39.113397268Z	53	PC: 1421a \| Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:52:39.114723549Z	53	PC: 1421a \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:52:39.116307355Z	53	PC: 1421a \| Get interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:52:39.117738082Z	53	PC: 1421a \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:52:39.119478341Z	53	PC: 1421a \| Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:52:39.121127409Z	53	PC: 1421a \| Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:52:39.122962546Z	53	PC: 1421a \| Get interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:52:39.124132123Z	53	PC: 1421a \| Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:52:39.12595098Z	53	PC: 1421a \| Get interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:52:39.12775558Z	53	PC: 1421a \| Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:52:39.128906201Z	53	PC: 1421a \| Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:52:39.130054408Z	53	PC: 1421a \| Get interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:52:39.131637452Z	53	PC: 1421a \| Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:52:39.132781391Z	53	PC: 1421a \| Get interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:52:39.133876017Z	53	PC: 1421a \| Get interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:52:39.135632196Z	53	PC: 1421a \| Get interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:52:39.138126882Z	53	PC: 1421a \| Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:52:39.140348195Z	37	PC: 1422f \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:52:39.142409998Z	37	PC: 14237 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:52:39.14463667Z	37	PC: 1423f \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:52:39.145858105Z	37	PC: 14247 \| Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:52:39.147359285Z	68	PC: 14f17 \| I/O control for devices (Set for = '2��')
2018-12-17T22:52:39.284159692Z	64	PC: 145dd \| Write file or device (Write 0 bytes on handle 1)
2018-12-17T22:52:39.286038631Z	37	PC: 14371 \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:52:39.287045533Z	37	PC: 14371 \| Set interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:52:39.288563104Z	37	PC: 14371 \| Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:52:39.290421805Z	37	PC: 14371 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:52:39.291512003Z	37	PC: 14371 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:52:39.292693062Z	37	PC: 14371 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:52:39.294162082Z	37	PC: 14371 \| Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:52:39.295223215Z	37	PC: 14371 \| Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:52:39.296276614Z	37	PC: 14371 \| Set interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:52:39.298028555Z	37	PC: 14371 \| Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:52:39.29930358Z	37	PC: 14371 \| Set interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:52:39.300577653Z	37	PC: 14371 \| Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:52:39.302626372Z	37	PC: 14371 \| Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:52:39.303939388Z	37	PC: 14371 \| Set interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:52:39.30523404Z	37	PC: 14371 \| Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:52:39.307299039Z	37	PC: 14371 \| Set interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:52:39.309126131Z	37	PC: 14371 \| Set interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:52:39.310226298Z	37	PC: 14371 \| Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:52:39.312314901Z	37	PC: 14371 \| Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:52:39.313466495Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.315626663Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.318402397Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.320718367Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.322865871Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.325793721Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.328154486Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.330865068Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.337729532Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.34045925Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.343781641Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.34671939Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.349297853Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.351426532Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.353789941Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.35669051Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.358988427Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.361183831Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.364364125Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.36715617Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.36939239Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.372595818Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.37580672Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.37821867Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.381128757Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.383446581Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.386153155Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.389346413Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.392042989Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.394918932Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.397784104Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.400711623Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.403017103Z	6	PC: 143f8 \| Direct console I/O
2018-12-17T22:52:39.406861325Z	76	PC: 143b0 \| Terminate with return code (Return code = '200')