Sample viewer

vx.netlux.org/Virus.DOS.HLLO.Ripper.a

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:56:12.553802961Z	53	PC: 1377a \| Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:56:12.555023981Z	53	PC: 1377a \| Get interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:56:12.557035278Z	53	PC: 1377a \| Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:56:12.558262018Z	53	PC: 1377a \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:56:12.559429832Z	53	PC: 1377a \| Get interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:56:12.561119136Z	53	PC: 1377a \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:56:12.562402323Z	53	PC: 1377a \| Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:56:12.563537963Z	53	PC: 1377a \| Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:56:12.565305955Z	53	PC: 1377a \| Get interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:56:12.566703509Z	53	PC: 1377a \| Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:56:12.568061383Z	53	PC: 1377a \| Get interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:56:12.569440095Z	53	PC: 1377a \| Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:56:12.571020097Z	53	PC: 1377a \| Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:56:12.572188228Z	53	PC: 1377a \| Get interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:56:12.573247998Z	53	PC: 1377a \| Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:56:12.574766684Z	53	PC: 1377a \| Get interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:56:12.575990524Z	53	PC: 1377a \| Get interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:56:12.577193514Z	53	PC: 1377a \| Get interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:56:12.579042427Z	53	PC: 1377a \| Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:56:12.58022553Z	37	PC: 1378f \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:56:12.581172163Z	37	PC: 13797 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:56:12.582535422Z	37	PC: 1379f \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:56:12.583616808Z	37	PC: 137a7 \| Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:56:12.585162241Z	68	PC: 143da \| I/O control for devices (Set for = 'JWUW�@')
2018-12-17T22:56:12.730464234Z	64	PC: 13b98 \| Write file or device (Write 0 bytes on handle 1)
2018-12-17T22:56:12.732765334Z	37	PC: 138d1 \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:56:12.734145934Z	37	PC: 138d1 \| Set interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:56:12.736491896Z	37	PC: 138d1 \| Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:56:12.737881973Z	37	PC: 138d1 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:56:12.739351405Z	37	PC: 138d1 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:56:12.741994803Z	37	PC: 138d1 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:56:12.743227053Z	37	PC: 138d1 \| Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:56:12.744382106Z	37	PC: 138d1 \| Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:56:12.745643435Z	37	PC: 138d1 \| Set interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:56:12.747568802Z	37	PC: 138d1 \| Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:56:12.749272508Z	37	PC: 138d1 \| Set interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:56:12.750985415Z	37	PC: 138d1 \| Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:56:12.752962782Z	37	PC: 138d1 \| Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:56:12.754188462Z	37	PC: 138d1 \| Set interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:56:12.755520611Z	37	PC: 138d1 \| Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:56:12.757945774Z	37	PC: 138d1 \| Set interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:56:12.759318537Z	37	PC: 138d1 \| Set interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:56:12.760962973Z	37	PC: 138d1 \| Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:56:12.763318721Z	37	PC: 138d1 \| Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:56:12.764610493Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.767008786Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.770025556Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.773087075Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.776243153Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.779476223Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.782563902Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.784950625Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.787671677Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.789927027Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.792369406Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.795213279Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.797788797Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.806668375Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.808837237Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.811701044Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.814867449Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.817145094Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.820377786Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.823062188Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.825775128Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.829505048Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.832539315Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.835328891Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.838429133Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.840499311Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.84261196Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.84504972Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.847204096Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.84930267Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.851243103Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.853668303Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.856344229Z	6	PC: 13958 \| Direct console I/O
2018-12-17T22:56:12.860830395Z	76	PC: 13910 \| Terminate with return code (Return code = '200')