Sample viewer

vx.netlux.org/Virus.DOS.BlackJec.267

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:55:31.581757925Z	78	PC: 12a7c \| Find first file
2018-12-17T22:55:31.589073248Z	47	PC: 12a87 \| Get disk transfer address
2018-12-17T22:55:31.591323831Z	61	PC: 12aad \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:55:31.599179057Z	63	PC: 12abb \| Read file or device (Read 407 bytes on handle 5)
2018-12-17T22:55:31.607027449Z	60	PC: 12aed \| Create or truncate file
2018-12-17T22:55:31.628190105Z	64	PC: 12aff \| Write file or device (Write 674 bytes on handle 6)
2018-12-17T22:55:31.637137715Z	62	PC: 12b03 \| Close file
2018-12-17T22:55:31.646547568Z	79	PC: 12b08 \| Find next file
2018-12-17T22:55:31.649999508Z	47	PC: 12a87 \| Get disk transfer address
2018-12-17T22:55:31.65137191Z	61	PC: 12aad \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:55:31.658553002Z	63	PC: 12abb \| Read file or device (Read 27 bytes on handle 6)
2018-12-17T22:55:31.665975867Z	60	PC: 12aed \| Create or truncate file
2018-12-17T22:55:31.680264941Z	64	PC: 12aff \| Write file or device (Write 294 bytes on handle 7)
2018-12-17T22:55:31.684290023Z	62	PC: 12b03 \| Close file
2018-12-17T22:55:31.693807425Z	79	PC: 12b08 \| Find next file
2018-12-17T22:55:31.697629023Z	47	PC: 12a87 \| Get disk transfer address
2018-12-17T22:55:31.69920959Z	61	PC: 12aad \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:55:31.706822444Z	63	PC: 12abb \| Read file or device (Read 92 bytes on handle 7)
2018-12-17T22:55:31.714794038Z	60	PC: 12aed \| Create or truncate file
2018-12-17T22:55:31.729365418Z	64	PC: 12aff \| Write file or device (Write 359 bytes on handle 8)
2018-12-17T22:55:31.73329947Z	62	PC: 12b03 \| Close file
2018-12-17T22:55:31.743181246Z	79	PC: 12b08 \| Find next file
2018-12-17T22:55:31.745990943Z	47	PC: 12a87 \| Get disk transfer address
2018-12-17T22:55:31.747141821Z	61	PC: 12aad \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:55:31.755525364Z	63	PC: 12abb \| Read file or device (Read 29 bytes on handle 8)
2018-12-17T22:55:31.76360362Z	60	PC: 12aed \| Create or truncate file
2018-12-17T22:55:31.777027559Z	64	PC: 12aff \| Write file or device (Write 296 bytes on handle 9)
2018-12-17T22:55:31.782202788Z	62	PC: 12b03 \| Close file
2018-12-17T22:55:31.791423012Z	79	PC: 12b08 \| Find next file
2018-12-17T22:55:31.794353536Z	47	PC: 12a87 \| Get disk transfer address
2018-12-17T22:55:31.796107806Z	61	PC: 12aad \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:55:31.804252834Z	63	PC: 12abb \| Read file or device (Read 29 bytes on handle 9)
2018-12-17T22:55:31.811688848Z	60	PC: 12aed \| Create or truncate file
2018-12-17T22:55:31.826774004Z	64	PC: 12aff \| Write file or device (Write 296 bytes on handle 10)
2018-12-17T22:55:31.831276251Z	62	PC: 12b03 \| Close file
2018-12-17T22:55:31.840935329Z	79	PC: 12b08 \| Find next file
2018-12-17T22:55:31.84445281Z	47	PC: 12a87 \| Get disk transfer address
2018-12-17T22:55:31.84685477Z	61	PC: 12aad \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:55:31.854550347Z	63	PC: 12abb \| Read file or device (Read 501 bytes on handle 10)
2018-12-17T22:55:31.861734415Z	60	PC: 12aed \| Create or truncate file
2018-12-17T22:55:31.876336349Z	64	PC: 12aff \| Write file or device (Write 768 bytes on handle 11)
2018-12-17T22:55:31.885737009Z	62	PC: 12b03 \| Close file
2018-12-17T22:55:31.896126323Z	79	PC: 12b08 \| Find next file
2018-12-17T22:55:31.900707502Z	47	PC: 12a87 \| Get disk transfer address
2018-12-17T22:55:31.902396828Z	61	PC: 12aad \| Open file (Filename = 'PAH.COM')
2018-12-17T22:55:31.909818998Z	63	PC: 12abb \| Read file or device (Read 29 bytes on handle 11)
2018-12-17T22:55:31.917913015Z	60	PC: 12aed \| Create or truncate file
2018-12-17T22:55:31.932709751Z	64	PC: 12aff \| Write file or device (Write 296 bytes on handle 12)
2018-12-17T22:55:31.937425183Z	62	PC: 12b03 \| Close file
2018-12-17T22:55:31.947203954Z	79	PC: 12b08 \| Find next file
2018-12-17T22:55:31.951408024Z	47	PC: 12a87 \| Get disk transfer address
2018-12-17T22:55:31.953136286Z	61	PC: 12aad \| Open file (Filename = 'TEST.COM')
2018-12-17T22:55:31.960901089Z	63	PC: 12abb \| Read file or device (Read 272 bytes on handle 12)
2018-12-17T22:55:31.964521047Z	79	PC: 12b08 \| Find next file
2018-12-17T22:55:31.967487177Z	76	PC: 12a45 \| Terminate with return code (Return code = '0')