Sample viewer

vx.netlux.org/Virus.DOS.DAME.Lame.2350

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:53:33.697424669Z	26	PC: 132a1 \| Set disk transfer address
2018-12-17T22:53:33.69970337Z	71	PC: 132ad \| Get current directory
2018-12-17T22:53:33.703602835Z	44	PC: 12ada \| Get time 0x12ada: in al, 0x40 0x12adc: mov ah, al 0x12ade: in al, 0x40 0x12ae0: xor ax, cx 0x12ae2: xor dx, ax 0x12ae4: jmp 0x12b02 0x12ae6: push dx 0x12ae7: push cx 0x12ae8: push bx 0x12ae9: in al, 0x40 0x12aeb: add ax, 0xc47c 0x12aee: mov dx, 0x3421 0x12af1: mov cx, 6 0x12af4: shl ax, 1 0x12af6: rcl dx, 1 0x12af8: mov bl, al 0x12afa: xor bl, dh 0x12afc: jns 0x12b00 0x12afe: inc al 0x12b00: loop 0x12af4
2018-12-17T22:53:33.70635795Z	78	PC: 132bd \| Find first file
2018-12-17T22:53:33.712922481Z	61	PC: 132e1 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:53:33.731763292Z	63	PC: 132ee \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:53:33.739169263Z	62	PC: 132f2 \| Close file
2018-12-17T22:53:33.741341574Z	61	PC: 13315 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:53:33.750748644Z	64	PC: 13342 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:53:33.763514534Z	64	PC: 13374 \| Write file or device (Write 41 bytes on handle 5)
2018-12-17T22:53:33.766902689Z	64	PC: 1337c \| Write file or device (Write 2250 bytes on handle 5)
2018-12-17T22:53:33.784642131Z	62	PC: 13387 \| Close file
2018-12-17T22:53:33.793996052Z	79	PC: 132bd \| Find next file
2018-12-17T22:53:33.79732783Z	61	PC: 132e1 \| Open file (Filename = ' ')
2018-12-17T22:53:33.806844947Z	63	PC: 132ee \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:53:33.814830387Z	62	PC: 132f2 \| Close file
2018-12-17T22:53:33.817361011Z	61	PC: 13315 \| Open file (Filename = ' ')
2018-12-17T22:53:33.826326171Z	64	PC: 13342 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:53:33.838779033Z	64	PC: 13374 \| Write file or device (Write 37 bytes on handle 5)
2018-12-17T22:53:33.842501175Z	64	PC: 1337c \| Write file or device (Write 2250 bytes on handle 5)
2018-12-17T22:53:33.852870493Z	62	PC: 13387 \| Close file
2018-12-17T22:53:33.862725414Z	79	PC: 132bd \| Find next file
2018-12-17T22:53:33.866882814Z	61	PC: 132e1 \| Open file (Filename = ' ')
2018-12-17T22:53:33.874656667Z	63	PC: 132ee \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:53:33.882891135Z	62	PC: 132f2 \| Close file
2018-12-17T22:53:33.885000958Z	61	PC: 13315 \| Open file (Filename = ' ')
2018-12-17T22:53:33.892801731Z	64	PC: 13342 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:53:33.90405532Z	64	PC: 13374 \| Write file or device (Write 36 bytes on handle 5)
2018-12-17T22:53:33.907538583Z	64	PC: 1337c \| Write file or device (Write 2250 bytes on handle 5)
2018-12-17T22:53:33.917432729Z	62	PC: 13387 \| Close file
2018-12-17T22:53:33.92760708Z	79	PC: 132bd \| Find next file
2018-12-17T22:53:33.931071768Z	61	PC: 132e1 \| Open file (Filename = ' ')
2018-12-17T22:53:33.939429918Z	63	PC: 132ee \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:53:33.947936247Z	62	PC: 132f2 \| Close file
2018-12-17T22:53:33.95007815Z	61	PC: 13315 \| Open file (Filename = ' ')
2018-12-17T22:53:33.957469865Z	64	PC: 13342 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:53:33.972919616Z	64	PC: 13374 \| Write file or device (Write 51 bytes on handle 5)
2018-12-17T22:53:33.976299616Z	64	PC: 1337c \| Write file or device (Write 2250 bytes on handle 5)
2018-12-17T22:53:33.98587373Z	62	PC: 13387 \| Close file
2018-12-17T22:53:33.996440739Z	59	PC: 132cf \| Change current directory
2018-12-17T22:53:34.001848207Z	26	PC: 132d8 \| Set disk transfer address
2018-12-17T22:53:34.003200307Z	9	PC: 12a82 \| Display string (String= 'Goat file (COM). Size=00000064h/0000000100d bytes. ')
2018-12-17T22:53:34.007797602Z	76	PC: 12a86 \| Terminate with return code (Return code = '36')