Sample viewer

vx.netlux.org/Virus.DOS.Dec3rd.1333

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:55:50.936448014Z 48 PC: 12f40 | Get DOS version
2018-12-17T22:55:50.939454698Z 9 PC: 12b47 | Display string (Could not find end pointer)
2018-12-17T22:55:50.942519221Z 80 PC: 12f40 | Set current PSP
2018-12-17T22:55:50.944000817Z 26 PC: 12f40 | Set disk transfer address
2018-12-17T22:55:50.945865114Z 53 PC: 12f40 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:55:50.948352531Z 37 PC: 12f40 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:55:50.949816003Z 48 PC: 12f40 | Get DOS version
2018-12-17T22:55:50.951270248Z 53 PC: 12f40 | Get interrupt vector (Interrupt = '19' AKA 'Delete file')
2018-12-17T22:55:50.954778826Z 37 PC: 12f40 | Set interrupt vector (Interrupt = '19' AKA 'Delete file')
2018-12-17T22:55:50.956553393Z 61 PC: 12f40 | Open file (Filename = '�WSR.�>')
2018-12-17T22:55:50.963341088Z 66 PC: 12f40 | Move file pointer
2018-12-17T22:55:50.966354646Z 66 PC: 12f40 | Move file pointer
2018-12-17T22:55:50.96789935Z 63 PC: 12f40 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:55:50.970927305Z 62 PC: 12f40 | Close file
2018-12-17T22:55:50.973887983Z 67 PC: 12f40 | Get or set file attributes
2018-12-17T22:55:50.979954681Z 67 PC: 12f40 | Get or set file attributes
2018-12-17T22:55:51.33041195Z 61 PC: 12f40 | Open file (Filename = '�WSR.�>')
2018-12-17T22:55:51.337653769Z 87 PC: 12f40 | Get or set file date and time
2018-12-17T22:55:51.339404411Z 66 PC: 12f40 | Move file pointer
2018-12-17T22:55:51.34170111Z 63 PC: 12f40 | Read file or device (Read 14 bytes on handle 5)
2018-12-17T22:55:51.34740128Z 66 PC: 12f40 | Move file pointer
2018-12-17T22:55:51.349908044Z 63 PC: 12f40 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:55:51.352774174Z 66 PC: 12f40 | Move file pointer
2018-12-17T22:55:51.354480282Z 64 PC: 12f40 | Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:55:51.358007956Z 66 PC: 12f40 | Move file pointer
2018-12-17T22:55:51.359834732Z 64 PC: 12f40 | Write file or device (Write 1438 bytes on handle 5)
2018-12-17T22:55:51.369381245Z 87 PC: 12f40 | Get or set file date and time
2018-12-17T22:55:51.371599426Z 62 PC: 12f40 | Close file
2018-12-17T22:55:51.379841906Z 67 PC: 12f40 | Get or set file attributes
2018-12-17T22:55:51.389948993Z 37 PC: 12f40 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:55:51.392468331Z 37 PC: 12f40 | Set interrupt vector (Interrupt = '19' AKA 'Delete file')
2018-12-17T22:55:51.393951511Z 9 PC: 15e5d | Display string (String= 'Packet driver for the Intel EtherExpress 16, version 10.5 Copyright 1991 Intel Corp Portions Copyright 1992,1993 Crynwr Software ')
2018-12-17T22:55:51.403375273Z 9 PC: 15e64 | Display string (Could not find end pointer)
2018-12-17T22:55:51.417297725Z 9 PC: 15e49 | Display string (String= 'Z�F')
2018-12-17T22:55:51.42299542Z 9 PC: 15e50 | Display string (String= ' ��_�����ǃ �W��������H!�����')
2018-12-17T22:55:51.433741989Z 76 PC: 15e55 | Terminate with return code (Return code = '10')