Sample viewer

vx.netlux.org/Virus.DOS.Tps.484

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:54:16.21119405Z	61	PC: 12acf \| Open file (Filename = 'c:\autoexec.bat')
2018-12-17T22:54:16.218163883Z	64	PC: 12ae0 \| Write file or device (Write 36 bytes on handle 5)
2018-12-17T22:54:16.228553448Z	71	PC: 12ae9 \| Get current directory
2018-12-17T22:54:16.23236089Z	78	PC: 12af0 \| Find first file
2018-12-17T22:54:16.239449284Z	67	PC: 12afb \| Get or set file attributes
2018-12-17T22:54:16.247891392Z	67	PC: 12b0b \| Get or set file attributes
2018-12-17T22:54:16.265432561Z	61	PC: 12b14 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:54:16.273464849Z	64	PC: 12b26 \| Write file or device (Write 484 bytes on handle 6)
2018-12-17T22:54:16.282285268Z	62	PC: 12b2e \| Close file
2018-12-17T22:54:16.293084543Z	79	PC: 12af0 \| Find next file
2018-12-17T22:54:16.296427863Z	67	PC: 12afb \| Get or set file attributes
2018-12-17T22:54:16.303183512Z	67	PC: 12b0b \| Get or set file attributes
2018-12-17T22:54:16.314863582Z	61	PC: 12b14 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:54:16.322516577Z	64	PC: 12b26 \| Write file or device (Write 484 bytes on handle 6)
2018-12-17T22:54:16.330216591Z	62	PC: 12b2e \| Close file
2018-12-17T22:54:16.339801285Z	79	PC: 12af0 \| Find next file
2018-12-17T22:54:16.343109108Z	67	PC: 12afb \| Get or set file attributes
2018-12-17T22:54:16.349784267Z	67	PC: 12b0b \| Get or set file attributes
2018-12-17T22:54:16.361935842Z	61	PC: 12b14 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:54:16.372716322Z	64	PC: 12b26 \| Write file or device (Write 484 bytes on handle 6)
2018-12-17T22:54:16.380331557Z	62	PC: 12b2e \| Close file
2018-12-17T22:54:16.390231552Z	79	PC: 12af0 \| Find next file
2018-12-17T22:54:16.393261123Z	67	PC: 12afb \| Get or set file attributes
2018-12-17T22:54:16.399602945Z	67	PC: 12b0b \| Get or set file attributes
2018-12-17T22:54:16.413849647Z	61	PC: 12b14 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:54:16.42732062Z	64	PC: 12b26 \| Write file or device (Write 484 bytes on handle 6)
2018-12-17T22:54:16.434721011Z	62	PC: 12b2e \| Close file
2018-12-17T22:54:16.444307708Z	79	PC: 12af0 \| Find next file
2018-12-17T22:54:16.44795534Z	67	PC: 12afb \| Get or set file attributes
2018-12-17T22:54:16.454348389Z	67	PC: 12b0b \| Get or set file attributes
2018-12-17T22:54:16.465157392Z	61	PC: 12b14 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:54:16.473705499Z	64	PC: 12b26 \| Write file or device (Write 484 bytes on handle 6)
2018-12-17T22:54:16.481215686Z	62	PC: 12b2e \| Close file
2018-12-17T22:54:16.490202146Z	79	PC: 12af0 \| Find next file
2018-12-17T22:54:16.494007604Z	67	PC: 12afb \| Get or set file attributes
2018-12-17T22:54:16.500464163Z	67	PC: 12b0b \| Get or set file attributes
2018-12-17T22:54:16.511808612Z	61	PC: 12b14 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:54:16.520330799Z	64	PC: 12b26 \| Write file or device (Write 484 bytes on handle 6)
2018-12-17T22:54:16.528414965Z	62	PC: 12b2e \| Close file
2018-12-17T22:54:16.537120487Z	79	PC: 12af0 \| Find next file
2018-12-17T22:54:16.541020944Z	67	PC: 12afb \| Get or set file attributes
2018-12-17T22:54:16.553113748Z	67	PC: 12b0b \| Get or set file attributes
2018-12-17T22:54:16.563914336Z	61	PC: 12b14 \| Open file (Filename = 'PAH.COM')
2018-12-17T22:54:16.572275953Z	64	PC: 12b26 \| Write file or device (Write 484 bytes on handle 6)
2018-12-17T22:54:16.592006204Z	62	PC: 12b2e \| Close file
2018-12-17T22:54:16.600880253Z	79	PC: 12af0 \| Find next file
2018-12-17T22:54:16.604012707Z	59	PC: 12b3b \| Change current directory
2018-12-17T22:54:16.609463275Z	9	PC: 12b46 \| Display string (String= 'Program too big to fit in memory ')
2018-12-17T22:54:16.614791674Z	59	PC: 12b4f \| Change current directory
2018-12-17T22:54:16.61692999Z	37	PC: 12a8b \| Set interrupt vector (Interrupt = '28' AKA 'Get allocation info for specified drive')
2018-12-17T22:54:16.620062134Z	49	PC: 12a93 \| Terminate and stay resident (Return code = '0' \| Memory size = '20')