Sample viewer

vx.netlux.org/Virus.DOS.Caterpillar.n

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:57:40.573006961Z	53	PC: 17a16 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:57:40.574578352Z	61	PC: 17665 \| Open file (Filename = 'C:\COMMAND.COM')
2018-12-17T22:57:40.581790255Z	37	PC: 17674 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:57:40.582969374Z	66	PC: 17683 \| Move file pointer
2018-12-17T22:57:40.584739574Z	63	PC: 17691 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:57:40.58923761Z	62	PC: 17695 \| Close file
2018-12-17T22:57:40.591422836Z	37	PC: 176a4 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:57:40.59342424Z	61	PC: 176e4 \| Open file (Filename = 'C:\COMMAND.COM')
2018-12-17T22:57:40.600460049Z	63	PC: 176f8 \| Read file or device (Read 12 bytes on handle 5)
2018-12-17T22:57:40.603277443Z	66	PC: 17701 \| Move file pointer
2018-12-17T22:57:40.608801724Z	64	PC: 1772b \| Write file or device (Write 1568 bytes on handle 5)
2018-12-17T22:57:40.946984612Z	66	PC: 17734 \| Move file pointer
2018-12-17T22:57:40.949065Z	64	PC: 17742 \| Write file or device (Write 12 bytes on handle 5)
2018-12-17T22:57:40.953505403Z	62	PC: 1774a \| Close file
2018-12-17T22:57:40.963560134Z	99	PC: 13726 \| Get DBCS lead byte table pointer
2018-12-17T22:57:40.965162659Z	68	PC: 13740 \| I/O control for devices (Set for = '')
2018-12-17T22:57:40.967886611Z	68	PC: 1374b \| I/O control for devices (Set for = '')
2018-12-17T22:57:40.970671386Z	68	PC: 13756 \| I/O control for devices (Set for = '')
2018-12-17T22:57:40.972091006Z	68	PC: 1375e \| I/O control for devices (Set for = '��b��g�t�S3��[r�2��W�<t��>W')
2018-12-17T22:57:40.974394624Z	48	PC: 13763 \| Get DOS version
2018-12-17T22:57:40.975892154Z	64	PC: 139e5 \| Write file or device (Write 29 bytes on handle 2)
2018-12-17T22:57:40.979875145Z	64	PC: 139e5 \| Write file or device (Write 9 bytes on handle 1)
2018-12-17T22:57:40.987670926Z	64	PC: 139e5 \| Write file or device (Write 17 bytes on handle 1)
2018-12-17T22:57:40.992942455Z	76	PC: 147f8 \| Terminate with return code (Return code = '4')