Sample viewer

vx.netlux.org/Virus.DOS.Tsunami.2965.b

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:57:21.891793436Z 48 PC: 12ea5 | Get DOS version
2018-12-17T22:57:21.893904074Z 74 PC: 12ec7 | Reallocate memory
2018-12-17T22:57:21.895682499Z 72 PC: 12ed0 | Allocate memory
2018-12-17T22:57:21.897319396Z 53 PC: 12ee8 | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:57:21.898933438Z 37 PC: 12f06 | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:57:21.90103544Z 47 PC: 12e1f | Get disk transfer address
2018-12-17T22:57:21.902627608Z 26 PC: 12e1f | Set disk transfer address
2018-12-17T22:57:21.904492459Z 78 PC: 12e1f | Find first file
2018-12-17T22:57:21.914328031Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:21.917649247Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:21.920990919Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:21.92549319Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:21.928861563Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:21.932169138Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:21.93626938Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:21.939781662Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:21.942975638Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:21.945649071Z 78 PC: 12e1f | Find first file
2018-12-17T22:57:21.953988949Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:21.956459782Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:21.958969007Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:21.961656187Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:21.964215402Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:21.967050307Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:21.970502529Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:21.973749182Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:21.976585347Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:21.97988033Z 78 PC: 12e1f | Find first file
2018-12-17T22:57:21.985431474Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:21.988478128Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:21.992699983Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:21.995721355Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:21.998791223Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.00203007Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.005667418Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.008946838Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.012584725Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.015683423Z 78 PC: 12e1f | Find first file
2018-12-17T22:57:22.022198418Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.025836475Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.035344333Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.038144244Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.041320139Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.044880469Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.047862634Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.050700424Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.062131858Z 78 PC: 12e1f | Find first file
2018-12-17T22:57:22.068774356Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.071628325Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.075378427Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.078138995Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.080888998Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.083972937Z 53 PC: 9efed | Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:57:22.085247203Z 37 PC: 9effa | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:57:22.086705958Z 67 PC: 9f07d | Get or set file attributes
2018-12-17T22:57:22.092985689Z 67 PC: 9f08a | Get or set file attributes
2018-12-17T22:57:22.112439331Z 61 PC: 9f094 | Open file (Filename = '')
2018-12-17T22:57:22.116903798Z 87 PC: 9f0a6 | Get or set file date and time
2018-12-17T22:57:22.118066411Z 66 PC: 9f22d | Move file pointer
2018-12-17T22:57:22.119615624Z 63 PC: 9f22d | Read file or device (Read 32 bytes on handle 5)
2018-12-17T22:57:22.123987526Z 66 PC: 9f22d | Move file pointer
2018-12-17T22:57:22.12509472Z 66 PC: 9f22d | Move file pointer
2018-12-17T22:57:22.126589813Z 64 PC: 9f22d | Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:57:22.128700681Z 66 PC: 9f22d | Move file pointer
2018-12-17T22:57:22.12976888Z 72 PC: 9f265 | Allocate memory
2018-12-17T22:57:22.131476881Z 64 PC: 9f22d | Write file or device (Write 2962 bytes on handle 5)
2018-12-17T22:57:22.13767091Z 87 PC: 9f22d | Get or set file date and time
2018-12-17T22:57:22.13900635Z 62 PC: 9f1ea | Close file
2018-12-17T22:57:22.14785371Z 67 PC: 9f22d | Get or set file attributes
2018-12-17T22:57:22.158563645Z 37 PC: 9f1fa | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:57:22.159482074Z 48 PC: 12ff6 | Get DOS version
2018-12-17T22:57:22.168995123Z 78 PC: 12e1f | Find first file
2018-12-17T22:57:22.175703338Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.178626852Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.183251559Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.186219474Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.18902941Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.191984057Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.19514367Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.197965439Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.200725754Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.203565027Z 78 PC: 12e1f | Find first file
2018-12-17T22:57:22.210860425Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.213676733Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.216899177Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.21966841Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.22232496Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.225404311Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.228173366Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.230909217Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.234235014Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.236787417Z 78 PC: 12e1f | Find first file
2018-12-17T22:57:22.243116677Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.24641779Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.25004827Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.252902464Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.256918265Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.260340105Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.263682527Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.26689294Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.269895265Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.272846389Z 78 PC: 12e1f | Find first file
2018-12-17T22:57:22.277368097Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.27934687Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.281287345Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.283491709Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.286471643Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.28923529Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.292336164Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.295081435Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.297995394Z 78 PC: 12e1f | Find first file
2018-12-17T22:57:22.303362311Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.306255816Z 79 PC: 12e1f | Find next file
2018-12-17T22:57:22.308935295Z 53 PC: 9efed | Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:57:22.310179533Z 37 PC: 9effa | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:57:22.312034059Z 67 PC: 9f07d | Get or set file attributes
2018-12-17T22:57:22.317797756Z 67 PC: 9f08a | Get or set file attributes
2018-12-17T22:57:22.326717905Z 61 PC: 9f094 | Open file (Filename = '')
2018-12-17T22:57:22.33332324Z 87 PC: 9f0a6 | Get or set file date and time
2018-12-17T22:57:22.334932302Z 66 PC: 9f22d | Move file pointer
2018-12-17T22:57:22.336377445Z 63 PC: 9f22d | Read file or device (Read 32 bytes on handle 5)
2018-12-17T22:57:22.342956328Z 66 PC: 9f22d | Move file pointer
2018-12-17T22:57:22.344806136Z 66 PC: 9f22d | Move file pointer
2018-12-17T22:57:22.346692458Z 64 PC: 9f22d | Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:57:22.350534864Z 66 PC: 9f22d | Move file pointer
2018-12-17T22:57:22.352184088Z 72 PC: 9f265 | Allocate memory
2018-12-17T22:57:22.354024584Z 64 PC: 9f22d | Write file or device (Write 2962 bytes on handle 5)
2018-12-17T22:57:22.364115196Z 87 PC: 9f22d | Get or set file date and time
2018-12-17T22:57:22.36641619Z 62 PC: 9f1ea | Close file
2018-12-17T22:57:22.383001242Z 67 PC: 9f22d | Get or set file attributes
2018-12-17T22:57:22.390306792Z 37 PC: 9f1fa | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:57:22.391403778Z 48 PC: 12ff6 | Get DOS version
2018-12-17T22:57:22.392502905Z 26 PC: 12e1f | Set disk transfer address
2018-12-17T22:57:22.394273245Z 42 PC: 12e1f | Get date 0x12e1f: pop si
0x12e20: ret
0x12e21: push si
0x12e22: jmp 0x12e1a
0x12e24: push si
0x12e25: mov si, 0x4202
0x12e28: jmp 0x12e16
0x12e2a: push si
0x12e2b: mov si, 0x3f00
0x12e2e: jmp 0x12e1a
0x12e30: push si
0x12e31: mov si, 0x4000
0x12e34: jmp 0x12e1a
0x12e36: push si
0x12e37: mov si, 0x4e00
0x12e3a: jmp 0x12e1a
0x12e3c: push si
0x12e3d: mov si, 0x4f00
0x12e40: jmp 0x12e1a
0x12e42: push ds
2018-12-17T22:57:22.396003526Z 65 PC: 12f4d | Delete file (Filename = 'ANTI-VIR.DAT')
2018-12-17T22:57:22.399942636Z 65 PC: 12f54 | Delete file (Filename = 'CHKLIST.MS')
2018-12-17T22:57:22.406763664Z 9 PC: 12a49 | Display string (String= 'Program too big to fit in memory Use MEM to check available memory and disable any memory managers in CONFIG.SYS This program cannot be run in multitasking environments such as Windows')
2018-12-17T22:57:22.426547507Z 76 PC: 12a4e | Terminate with return code (Return code = '0')