Sample viewer

vx.netlux.org/Virus.DOS.VCL.Foxi

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:55:55.382359169Z	47	PC: 12a6e \| Get disk transfer address
2018-12-17T22:55:55.383888826Z	26	PC: 12a7a \| Set disk transfer address
2018-12-17T22:55:55.39776457Z	71	PC: 12b47 \| Get current directory
2018-12-17T22:55:55.401667419Z	59	PC: 12b4f \| Change current directory
2018-12-17T22:55:55.406107519Z	47	PC: 12b64 \| Get disk transfer address
2018-12-17T22:55:55.416261594Z	26	PC: 12b76 \| Set disk transfer address
2018-12-17T22:55:55.418468074Z	78	PC: 12b81 \| Find first file
2018-12-17T22:55:55.424919615Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.429042729Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.431894091Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.434653841Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.438142161Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.441388616Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.444386163Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.447403016Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.451060154Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.453734222Z	47	PC: 12bcf \| Get disk transfer address
2018-12-17T22:55:55.455170624Z	26	PC: 12be2 \| Set disk transfer address
2018-12-17T22:55:55.462003002Z	78	PC: 12bea \| Find first file
2018-12-17T22:55:55.46817555Z	47	PC: 12c02 \| Get disk transfer address
2018-12-17T22:55:55.469455878Z	61	PC: 12c1b \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:55:55.47897533Z	63	PC: 12c27 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:55:55.485620696Z	66	PC: 12c31 \| Move file pointer
2018-12-17T22:55:55.487286749Z	62	PC: 12c36 \| Close file
2018-12-17T22:55:55.489974694Z	67	PC: 12c56 \| Get or set file attributes
2018-12-17T22:55:55.506846893Z	61	PC: 12c5b \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:55:55.513665265Z	64	PC: 12c6a \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:55:55.517628759Z	66	PC: 12c74 \| Move file pointer
2018-12-17T22:55:55.520080108Z	64	PC: 12dba \| Write file or device (Write 866 bytes on handle 14853)
2018-12-17T22:55:55.522097803Z	87	PC: 12c86 \| Get or set file date and time
2018-12-17T22:55:55.52434037Z	62	PC: 12c8a \| Close file
2018-12-17T22:55:55.526128933Z	67	PC: 12c97 \| Get or set file attributes
2018-12-17T22:55:55.536899708Z	26	PC: 12bfc \| Set disk transfer address
2018-12-17T22:55:55.538945345Z	26	PC: 12bbb \| Set disk transfer address
2018-12-17T22:55:55.54231944Z	59	PC: 12b59 \| Change current directory
2018-12-17T22:55:55.54480816Z	71	PC: 12b47 \| Get current directory
2018-12-17T22:55:55.549201743Z	59	PC: 12b4f \| Change current directory
2018-12-17T22:55:55.555268131Z	47	PC: 12b64 \| Get disk transfer address
2018-12-17T22:55:55.557107129Z	26	PC: 12b76 \| Set disk transfer address
2018-12-17T22:55:55.558916632Z	78	PC: 12b81 \| Find first file
2018-12-17T22:55:55.567056399Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.570329454Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.573686647Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.577496212Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.58046284Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.584144053Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.588038146Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.590960952Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.59368266Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.59693724Z	47	PC: 12bcf \| Get disk transfer address
2018-12-17T22:55:55.598386897Z	26	PC: 12be2 \| Set disk transfer address
2018-12-17T22:55:55.599673396Z	78	PC: 12bea \| Find first file
2018-12-17T22:55:55.606276904Z	47	PC: 12c02 \| Get disk transfer address
2018-12-17T22:55:55.60832735Z	61	PC: 12c1b \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:55:55.615583886Z	63	PC: 12c27 \| Read file or device (Read 3 bytes on handle 6)
2018-12-17T22:55:55.618651004Z	66	PC: 12c31 \| Move file pointer
2018-12-17T22:55:55.621256554Z	62	PC: 12c36 \| Close file
2018-12-17T22:55:55.623256685Z	67	PC: 12c56 \| Get or set file attributes
2018-12-17T22:55:55.633992725Z	61	PC: 12c5b \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:55:55.641594601Z	64	PC: 12c6a \| Write file or device (Write 3 bytes on handle 6)
2018-12-17T22:55:55.644494093Z	66	PC: 12c74 \| Move file pointer
2018-12-17T22:55:55.647322552Z	64	PC: 12dba \| Write file or device (Write 866 bytes on handle 6)
2018-12-17T22:55:55.658016512Z	87	PC: 12c86 \| Get or set file date and time
2018-12-17T22:55:55.660303824Z	62	PC: 12c8a \| Close file
2018-12-17T22:55:55.669811113Z	67	PC: 12c97 \| Get or set file attributes
2018-12-17T22:55:55.681357015Z	26	PC: 12bfc \| Set disk transfer address
2018-12-17T22:55:55.683343952Z	26	PC: 12bbb \| Set disk transfer address
2018-12-17T22:55:55.685125762Z	59	PC: 12b59 \| Change current directory
2018-12-17T22:55:55.688306805Z	71	PC: 12b47 \| Get current directory
2018-12-17T22:55:55.692236825Z	59	PC: 12b4f \| Change current directory
2018-12-17T22:55:55.702379759Z	47	PC: 12b64 \| Get disk transfer address
2018-12-17T22:55:55.705022028Z	26	PC: 12b76 \| Set disk transfer address
2018-12-17T22:55:55.706918003Z	78	PC: 12b81 \| Find first file
2018-12-17T22:55:55.716867403Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.720056601Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.724293388Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.727209392Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.730050716Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.733409452Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.736151648Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.739001087Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.742455353Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.746623691Z	47	PC: 12bcf \| Get disk transfer address
2018-12-17T22:55:55.748192983Z	26	PC: 12be2 \| Set disk transfer address
2018-12-17T22:55:55.750348196Z	78	PC: 12bea \| Find first file
2018-12-17T22:55:55.756704108Z	47	PC: 12c02 \| Get disk transfer address
2018-12-17T22:55:55.757993733Z	61	PC: 12c1b \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:55:55.766141265Z	63	PC: 12c27 \| Read file or device (Read 3 bytes on handle 6)
2018-12-17T22:55:55.773881811Z	66	PC: 12c31 \| Move file pointer
2018-12-17T22:55:55.77574243Z	62	PC: 12c36 \| Close file
2018-12-17T22:55:55.778669444Z	79	PC: 12bea \| Find next file
2018-12-17T22:55:55.782493586Z	47	PC: 12c02 \| Get disk transfer address
2018-12-17T22:55:55.78444729Z	61	PC: 12c1b \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:55:55.792417198Z	63	PC: 12c27 \| Read file or device (Read 3 bytes on handle 6)
2018-12-17T22:55:55.799736422Z	66	PC: 12c31 \| Move file pointer
2018-12-17T22:55:55.80169741Z	62	PC: 12c36 \| Close file
2018-12-17T22:55:55.804371608Z	67	PC: 12c56 \| Get or set file attributes
2018-12-17T22:55:55.815545762Z	61	PC: 12c5b \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:55:55.822735382Z	64	PC: 12c6a \| Write file or device (Write 3 bytes on handle 6)
2018-12-17T22:55:55.825940509Z	66	PC: 12c74 \| Move file pointer
2018-12-17T22:55:55.831440382Z	64	PC: 12dba \| Write file or device (Write 866 bytes on handle 14854)
2018-12-17T22:55:55.83878813Z	87	PC: 12c86 \| Get or set file date and time
2018-12-17T22:55:55.841623182Z	62	PC: 12c8a \| Close file
2018-12-17T22:55:55.844301959Z	67	PC: 12c97 \| Get or set file attributes
2018-12-17T22:55:55.857389079Z	26	PC: 12bfc \| Set disk transfer address
2018-12-17T22:55:55.859061384Z	26	PC: 12bbb \| Set disk transfer address
2018-12-17T22:55:55.862014137Z	59	PC: 12b59 \| Change current directory
2018-12-17T22:55:55.864608165Z	71	PC: 12b47 \| Get current directory
2018-12-17T22:55:55.868416727Z	59	PC: 12b4f \| Change current directory
2018-12-17T22:55:55.873857669Z	47	PC: 12b64 \| Get disk transfer address
2018-12-17T22:55:55.87592645Z	26	PC: 12b76 \| Set disk transfer address
2018-12-17T22:55:55.877772491Z	78	PC: 12b81 \| Find first file
2018-12-17T22:55:55.885296911Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.888365772Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.891475741Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.895156623Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.898104045Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.900858856Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.904291111Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.907348881Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.910374701Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:55.914700045Z	47	PC: 12bcf \| Get disk transfer address
2018-12-17T22:55:55.916238929Z	26	PC: 12be2 \| Set disk transfer address
2018-12-17T22:55:55.917727859Z	78	PC: 12bea \| Find first file
2018-12-17T22:55:55.924464357Z	47	PC: 12c02 \| Get disk transfer address
2018-12-17T22:55:55.926638265Z	61	PC: 12c1b \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:55:55.934313288Z	63	PC: 12c27 \| Read file or device (Read 3 bytes on handle 7)
2018-12-17T22:55:55.937357503Z	66	PC: 12c31 \| Move file pointer
2018-12-17T22:55:55.940076436Z	62	PC: 12c36 \| Close file
2018-12-17T22:55:55.942335765Z	79	PC: 12bea \| Find next file
2018-12-17T22:55:55.945505516Z	47	PC: 12c02 \| Get disk transfer address
2018-12-17T22:55:55.947867828Z	61	PC: 12c1b \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:55:55.955179909Z	63	PC: 12c27 \| Read file or device (Read 3 bytes on handle 7)
2018-12-17T22:55:55.958230315Z	66	PC: 12c31 \| Move file pointer
2018-12-17T22:55:55.960931996Z	62	PC: 12c36 \| Close file
2018-12-17T22:55:55.964061301Z	67	PC: 12c56 \| Get or set file attributes
2018-12-17T22:55:55.979122523Z	61	PC: 12c5b \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:55:55.988915028Z	64	PC: 12c6a \| Write file or device (Write 3 bytes on handle 7)
2018-12-17T22:55:55.992786038Z	66	PC: 12c74 \| Move file pointer
2018-12-17T22:55:55.995792833Z	64	PC: 12dba \| Write file or device (Write 866 bytes on handle 7)
2018-12-17T22:55:56.006110295Z	87	PC: 12c86 \| Get or set file date and time
2018-12-17T22:55:56.008092442Z	62	PC: 12c8a \| Close file
2018-12-17T22:55:56.016719636Z	67	PC: 12c97 \| Get or set file attributes
2018-12-17T22:55:56.028409439Z	26	PC: 12bfc \| Set disk transfer address
2018-12-17T22:55:56.030087374Z	26	PC: 12bbb \| Set disk transfer address
2018-12-17T22:55:56.031652107Z	59	PC: 12b59 \| Change current directory
2018-12-17T22:55:56.034747488Z	71	PC: 12b47 \| Get current directory
2018-12-17T22:55:56.038401199Z	59	PC: 12b4f \| Change current directory
2018-12-17T22:55:56.04316626Z	47	PC: 12b64 \| Get disk transfer address
2018-12-17T22:55:56.045018614Z	26	PC: 12b76 \| Set disk transfer address
2018-12-17T22:55:56.047394Z	78	PC: 12b81 \| Find first file
2018-12-17T22:55:56.060006018Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:56.063105656Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:56.068612933Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:56.0718978Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:56.079063485Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:56.083086822Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:56.085909119Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:56.088944126Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:56.092765903Z	79	PC: 12ba9 \| Find next file
2018-12-17T22:55:56.0953326Z	47	PC: 12bcf \| Get disk transfer address
2018-12-17T22:55:56.096919404Z	26	PC: 12be2 \| Set disk transfer address
2018-12-17T22:55:56.099686728Z	78	PC: 12bea \| Find first file
2018-12-17T22:55:56.106208021Z	47	PC: 12c02 \| Get disk transfer address
2018-12-17T22:55:56.10769111Z	61	PC: 12c1b \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:55:56.115630331Z	63	PC: 12c27 \| Read file or device (Read 3 bytes on handle 7)
2018-12-17T22:55:56.122908888Z	66	PC: 12c31 \| Move file pointer
2018-12-17T22:55:56.124989411Z	62	PC: 12c36 \| Close file
2018-12-17T22:55:56.128915163Z	79	PC: 12bea \| Find next file
2018-12-17T22:55:56.131882423Z	47	PC: 12c02 \| Get disk transfer address
2018-12-17T22:55:56.133229285Z	61	PC: 12c1b \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:55:56.140603643Z	63	PC: 12c27 \| Read file or device (Read 3 bytes on handle 7)
2018-12-17T22:55:56.153716663Z	66	PC: 12c31 \| Move file pointer
2018-12-17T22:55:56.155465231Z	62	PC: 12c36 \| Close file
2018-12-17T22:55:56.158425488Z	79	PC: 12bea \| Find next file
2018-12-17T22:55:56.161465495Z	47	PC: 12c02 \| Get disk transfer address
2018-12-17T22:55:56.162848385Z	61	PC: 12c1b \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:55:56.172125581Z	63	PC: 12c27 \| Read file or device (Read 3 bytes on handle 7)
2018-12-17T22:55:56.180159389Z	66	PC: 12c31 \| Move file pointer
2018-12-17T22:55:56.18216992Z	62	PC: 12c36 \| Close file
2018-12-17T22:55:56.185291159Z	67	PC: 12c56 \| Get or set file attributes
2018-12-17T22:55:56.197376887Z	61	PC: 12c5b \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:55:56.204512105Z	64	PC: 12c6a \| Write file or device (Write 3 bytes on handle 7)
2018-12-17T22:55:56.208421987Z	66	PC: 12c74 \| Move file pointer
2018-12-17T22:55:56.211378708Z	64	PC: 12dba \| Write file or device (Write 866 bytes on handle 14855)
2018-12-17T22:55:56.213439894Z	87	PC: 12c86 \| Get or set file date and time
2018-12-17T22:55:56.215973969Z	62	PC: 12c8a \| Close file
2018-12-17T22:55:56.217900262Z	67	PC: 12c97 \| Get or set file attributes
2018-12-17T22:55:56.228796492Z	26	PC: 12bfc \| Set disk transfer address
2018-12-17T22:55:56.230223897Z	26	PC: 12bbb \| Set disk transfer address
2018-12-17T22:55:56.232679114Z	59	PC: 12b59 \| Change current directory
2018-12-17T22:55:56.239156124Z	42	PC: 12a8d \| Get date 0x12a8d: cmp dh, 0x12 0x12a90: jb 0x12aa2 0x12a92: cmp dl, 0x1a 0x12a95: jb 0x12aa2 0x12a97: mov ah, 0x2c 0x12a99: int 0x21 0x12a9b: cmp dl, 0xa 0x12a9e: ja 0x12aa2 0x12aa0: jmp 0x12ab8 0x12aa2: pop dx 0x12aa3: mov ah, 0x1a 0x12aa5: int 0x21 0x12aa7: mov sp, bp 0x12aa9: xor ax, ax 0x12aab: mov bx, ax 0x12aad: mov cx, ax 0x12aaf: mov dx, ax 0x12ab1: mov si, ax 0x12ab3: mov di, ax 0x12ab5: mov bp, ax
2018-12-17T22:55:56.241682154Z	26	PC: 12aa7 \| Set disk transfer address