Sample viewer

vx.netlux.org/Virus.DOS.Burger

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:54:26.40120765Z 48 PC: 14d24 | Get DOS version
2018-12-17T22:54:26.404323222Z 74 PC: 14d75 | Reallocate memory
2018-12-17T22:54:26.406623142Z 48 PC: 14de2 | Get DOS version
2018-12-17T22:54:26.408194664Z 53 PC: 14dea | Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:54:26.410269482Z 37 PC: 14dfc | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:54:26.413326403Z 53 PC: 1ea2a | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:54:26.41524113Z 53 PC: 1ea37 | Get interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:54:26.417185261Z 37 PC: 1ea47 | Set interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:54:26.420217167Z 37 PC: 1ea4f | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:54:26.422138757Z 53 PC: 1c8fd | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:54:26.42407299Z 53 PC: 1c8fd | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:54:26.427252532Z 53 PC: 1c8fd | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:54:26.429751957Z 53 PC: 1c8fd | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:54:26.432129673Z 53 PC: 1c8fd | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:54:26.435056261Z 53 PC: 1c8fd | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:54:26.43779769Z 53 PC: 1c8fd | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:54:26.440183762Z 53 PC: 1c8fd | Get interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:54:26.442881158Z 53 PC: 1c8fd | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:54:26.445351548Z 53 PC: 1c8fd | Get interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:54:26.448278236Z 53 PC: 1c8fd | Get interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:54:26.450279445Z 37 PC: 1c92c | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:54:26.457952578Z 37 PC: 1c92c | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:54:26.459443068Z 37 PC: 1c92c | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:54:26.461042352Z 37 PC: 1c92c | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:54:26.46427307Z 37 PC: 1c92c | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:54:26.466612394Z 37 PC: 1c92c | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:54:26.468349046Z 37 PC: 1c92c | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:54:26.471674433Z 37 PC: 1c92c | Set interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:54:26.473394214Z 37 PC: 1c933 | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:54:26.475188213Z 37 PC: 1c938 | Set interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:54:26.478157891Z 68 PC: 14e8d | I/O control for devices (Set for = '�')
2018-12-17T22:54:26.479771652Z 68 PC: 14e8d | I/O control for devices (Set for = '�O')
2018-12-17T22:54:26.481380835Z 68 PC: 14e8d | I/O control for devices (Set for = '�0���A*�Ԁ�')
2018-12-17T22:54:26.484223695Z 68 PC: 14e8d | I/O control for devices (Set for = '')
2018-12-17T22:54:26.485840993Z 68 PC: 14e8d | I/O control for devices (Set for = '')
2018-12-17T22:54:26.488307476Z 53 PC: 1719b | Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:54:26.490909794Z 53 PC: 171a8 | Get interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-17T22:54:26.492611911Z 53 PC: 171b5 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:54:26.494285034Z 37 PC: 171cb | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:54:26.496941534Z 37 PC: 171d3 | Set interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-17T22:54:26.498443626Z 37 PC: 171db | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:54:26.500117109Z 53 PC: 1977c | Get interrupt vector (Interrupt = '239' AKA 'UNKNOWN!')
2018-12-17T22:54:26.502531444Z 53 PC: 19789 | Get interrupt vector (Interrupt = '240' AKA 'UNKNOWN!')
2018-12-17T22:54:26.504414822Z 53 PC: 19798 | Get interrupt vector (Interrupt = '9' AKA 'Display string')
2018-12-17T22:54:26.506067927Z 37 PC: 197a5 | Set interrupt vector (Interrupt = '239' AKA 'UNKNOWN!')
2018-12-17T22:54:26.507655329Z 53 PC: 197ac | Get interrupt vector (Interrupt = '8' AKA 'Console input without echo')
2018-12-17T22:54:26.510120991Z 37 PC: 197b9 | Set interrupt vector (Interrupt = '240' AKA 'UNKNOWN!')
2018-12-17T22:54:26.511699946Z 53 PC: 197c5 | Get interrupt vector (Interrupt = '28' AKA 'Get allocation info for specified drive')
2018-12-17T22:54:26.516075816Z 48 PC: 19885 | Get DOS version
2018-12-17T22:54:26.518661322Z 68 PC: 1c5d1 | I/O control for devices (Set for = '')
2018-12-17T22:54:26.520527578Z 68 PC: 1c5d1 | I/O control for devices (Set for = '')
2018-12-17T22:54:26.522407119Z 51 PC: 1644f | Get or set Ctrl-Break
2018-12-17T22:54:26.524709473Z 51 PC: 1645b | Get or set Ctrl-Break
2018-12-17T22:54:26.526294721Z 72 PC: 19dd8 | Allocate memory
2018-12-17T22:54:26.529467109Z 37 PC: 16ca3 | Set interrupt vector (Interrupt = '9' AKA 'Display string')
2018-12-17T22:54:26.539844713Z 73 PC: 19dd8 | Release memory
2018-12-17T22:54:26.54197809Z 51 PC: 16466 | Get or set Ctrl-Break
2018-12-17T22:54:26.546777696Z 37 PC: 173da | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:54:26.54909054Z 37 PC: 173e4 | Set interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-17T22:54:26.551030524Z 37 PC: 173ee | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:54:26.552690652Z 53 PC: 1742a | Get interrupt vector (Interrupt = '8' AKA 'Console input without echo')
2018-12-17T22:54:26.555030658Z 53 PC: 17437 | Get interrupt vector (Interrupt = '28' AKA 'Get allocation info for specified drive')
2018-12-17T22:54:26.557004967Z 53 PC: 17444 | Get interrupt vector (Interrupt = '9' AKA 'Display string')
2018-12-17T22:54:26.558617636Z 37 PC: 1745f | Set interrupt vector (Interrupt = '28' AKA 'Get allocation info for specified drive')
2018-12-17T22:54:26.560363776Z 53 PC: 17467 | Get interrupt vector (Interrupt = '239' AKA 'UNKNOWN!')
2018-12-17T22:54:26.562627668Z 37 PC: 17474 | Set interrupt vector (Interrupt = '9' AKA 'Display string')
2018-12-17T22:54:26.564171177Z 53 PC: 1747b | Get interrupt vector (Interrupt = '240' AKA 'UNKNOWN!')
2018-12-17T22:54:26.565772475Z 37 PC: 17488 | Set interrupt vector (Interrupt = '8' AKA 'Console input without echo')
2018-12-17T22:54:26.5682293Z 37 PC: 17492 | Set interrupt vector (Interrupt = '239' AKA 'UNKNOWN!')
2018-12-17T22:54:26.569803066Z 37 PC: 1749d | Set interrupt vector (Interrupt = '240' AKA 'UNKNOWN!')
2018-12-17T22:54:26.571566689Z 37 PC: 1c948 | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:54:26.574224211Z 37 PC: 1c948 | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:54:26.575955623Z 37 PC: 1c948 | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:54:26.577558954Z 37 PC: 1c948 | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:54:26.580009618Z 37 PC: 1c948 | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:54:26.581585488Z 37 PC: 1c948 | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:54:26.583104361Z 37 PC: 1c948 | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:54:26.585494621Z 37 PC: 1c948 | Set interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:54:26.586922052Z 37 PC: 1c948 | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:54:26.588336098Z 37 PC: 1c948 | Set interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:54:26.59100966Z 37 PC: 1c948 | Set interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:54:26.592599106Z 37 PC: 1ea5e | Set interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:54:26.594263182Z 37 PC: 1ea68 | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:54:26.596425423Z 37 PC: 14f43 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:54:26.598903838Z 41 PC: 1c777 | Parse filename
2018-12-17T22:54:26.600729578Z 41 PC: 1c779 | Parse filename
2018-12-17T22:54:26.603198966Z 41 PC: 1c77e | Parse filename
2018-12-17T22:54:26.612686668Z 75 PC: 1c794 | Execute program
2018-12-17T22:54:26.641714974Z 80 PC: 309c9 | Set current PSP
2018-12-17T22:54:26.643982073Z 48 PC: 309ce | Get DOS version
2018-12-17T22:54:26.645786422Z 99 PC: 371b0 | Get DBCS lead byte table pointer
2018-12-17T22:54:26.648991973Z 101 PC: 30a54 | Get extended country info
2018-12-17T22:54:26.651460099Z 99 PC: 30a5a | Get DBCS lead byte table pointer
2018-12-17T22:54:26.653592435Z 74 PC: 30abc | Reallocate memory
2018-12-17T22:54:26.655630132Z 25 PC: 30af3 | Get default drive
2018-12-17T22:54:26.657356475Z 37 PC: 305b3 | Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T22:54:26.66018598Z 37 PC: 305ba | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:54:26.662093913Z 37 PC: 305c1 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:54:26.668801253Z 74 PC: 2f75c | Reallocate memory
2018-12-17T22:54:26.673225182Z 72 PC: 2f79d | Allocate memory
2018-12-17T22:54:26.676897821Z 72 PC: 2f7d5 | Allocate memory
2018-12-17T22:54:26.679413196Z 72 PC: 2f7dd | Allocate memory