Sample viewer

vx.netlux.org/Virus.DOS.HLLP.Witam.5952

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:00:07.535272161Z	53	PC: 1381a \| Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:00:07.537285304Z	53	PC: 1381a \| Get interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:00:07.542958615Z	53	PC: 1381a \| Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:00:07.544286502Z	53	PC: 1381a \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:00:07.546701475Z	53	PC: 1381a \| Get interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:00:07.54794479Z	53	PC: 1381a \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:00:07.549204251Z	53	PC: 1381a \| Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:00:07.551595573Z	53	PC: 1381a \| Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:00:07.552718538Z	53	PC: 1381a \| Get interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:00:07.554171463Z	53	PC: 1381a \| Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:00:07.55553907Z	53	PC: 1381a \| Get interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:00:07.557619558Z	53	PC: 1381a \| Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:00:07.559163662Z	53	PC: 1381a \| Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:00:07.561451804Z	53	PC: 1381a \| Get interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:00:07.56350419Z	53	PC: 1381a \| Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:00:07.564926366Z	53	PC: 1381a \| Get interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:00:07.566390635Z	53	PC: 1381a \| Get interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:00:07.568145661Z	53	PC: 1381a \| Get interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:00:07.569374988Z	53	PC: 1381a \| Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:00:07.57064248Z	37	PC: 1382f \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:00:07.573089076Z	37	PC: 13837 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:00:07.574273959Z	37	PC: 1383f \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:00:07.575964711Z	37	PC: 13847 \| Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:00:07.578726482Z	68	PC: 144fe \| I/O control for devices (Set for = '')
2018-12-17T22:00:07.722877311Z	64	PC: 13c38 \| Write file or device (Write 0 bytes on handle 1)
2018-12-17T22:00:07.724908524Z	37	PC: 13971 \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:00:07.726971085Z	37	PC: 13971 \| Set interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:00:07.728309586Z	37	PC: 13971 \| Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:00:07.729722966Z	37	PC: 13971 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:00:07.732172647Z	37	PC: 13971 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:00:07.73393245Z	37	PC: 13971 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:00:07.735009854Z	37	PC: 13971 \| Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:00:07.737175316Z	37	PC: 13971 \| Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:00:07.738474794Z	37	PC: 13971 \| Set interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:00:07.739848634Z	37	PC: 13971 \| Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:00:07.742217301Z	37	PC: 13971 \| Set interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:00:07.743345217Z	37	PC: 13971 \| Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:00:07.744435623Z	37	PC: 13971 \| Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:00:07.746206732Z	37	PC: 13971 \| Set interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:00:07.747394087Z	37	PC: 13971 \| Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:00:07.748780731Z	37	PC: 13971 \| Set interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:00:07.750363835Z	37	PC: 13971 \| Set interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:00:07.752363959Z	37	PC: 13971 \| Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:00:07.753696161Z	37	PC: 13971 \| Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:00:07.755051982Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.757689403Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.759802788Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.761977959Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.764900004Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.766763024Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.768732612Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.771004315Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.772944825Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.774903626Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.777323374Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.779527162Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.781588234Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.783884314Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.785844674Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.787738931Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.790167464Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.792268742Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.794223564Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.796734381Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.798964058Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.801359608Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.803633952Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.8062307Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.808353198Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.811167672Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.813047112Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.814779316Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.816971158Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.81880722Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.820610044Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.822588402Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.824375823Z	6	PC: 139f8 \| Direct console I/O
2018-12-17T22:00:07.827672098Z	76	PC: 139b0 \| Terminate with return code (Return code = '200')