Sample viewer

vx.netlux.org/Virus.DOS.Clone.218

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:01:29.509764485Z	78	PC: 12aa1 \| Find first file
2018-12-17T22:01:29.515898398Z	61	PC: 12aab \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:01:29.522181912Z	64	PC: 12ab7 \| Write file or device (Write 47 bytes on handle 5)
2018-12-17T22:01:29.528426475Z	64	PC: 12ac0 \| Write file or device (Write 171 bytes on handle 5)
2018-12-17T22:01:29.539420292Z	62	PC: 12ac4 \| Close file
2018-12-17T22:01:29.553609164Z	79	PC: 12aa1 \| Find next file
2018-12-17T22:01:29.556479551Z	61	PC: 12aab \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:01:29.563368997Z	64	PC: 12ab7 \| Write file or device (Write 47 bytes on handle 5)
2018-12-17T22:01:29.571359387Z	64	PC: 12ac0 \| Write file or device (Write 171 bytes on handle 5)
2018-12-17T22:01:29.574492246Z	62	PC: 12ac4 \| Close file
2018-12-17T22:01:29.585457059Z	79	PC: 12aa1 \| Find next file
2018-12-17T22:01:29.58962034Z	61	PC: 12aab \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:01:29.59645453Z	64	PC: 12ab7 \| Write file or device (Write 47 bytes on handle 5)
2018-12-17T22:01:29.603779255Z	64	PC: 12ac0 \| Write file or device (Write 171 bytes on handle 5)
2018-12-17T22:01:29.607658507Z	62	PC: 12ac4 \| Close file
2018-12-17T22:01:29.616332982Z	79	PC: 12aa1 \| Find next file
2018-12-17T22:01:29.618951889Z	61	PC: 12aab \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:01:29.62590097Z	64	PC: 12ab7 \| Write file or device (Write 47 bytes on handle 5)
2018-12-17T22:01:29.6328225Z	64	PC: 12ac0 \| Write file or device (Write 171 bytes on handle 5)
2018-12-17T22:01:29.636682754Z	62	PC: 12ac4 \| Close file
2018-12-17T22:01:29.645397952Z	79	PC: 12aa1 \| Find next file
2018-12-17T22:01:29.64837179Z	61	PC: 12aab \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:01:29.655736101Z	64	PC: 12ab7 \| Write file or device (Write 47 bytes on handle 5)
2018-12-17T22:01:29.662804009Z	64	PC: 12ac0 \| Write file or device (Write 171 bytes on handle 5)
2018-12-17T22:01:29.666506794Z	62	PC: 12ac4 \| Close file
2018-12-17T22:01:29.674340259Z	79	PC: 12aa1 \| Find next file
2018-12-17T22:01:29.677286601Z	61	PC: 12aab \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:01:29.68530322Z	64	PC: 12ab7 \| Write file or device (Write 47 bytes on handle 5)
2018-12-17T22:01:29.692290558Z	64	PC: 12ac0 \| Write file or device (Write 171 bytes on handle 5)
2018-12-17T22:01:29.694873678Z	62	PC: 12ac4 \| Close file
2018-12-17T22:01:29.703233403Z	79	PC: 12aa1 \| Find next file
2018-12-17T22:01:29.706066636Z	61	PC: 12aab \| Open file (Filename = 'PAH.COM')
2018-12-17T22:01:29.712684712Z	64	PC: 12ab7 \| Write file or device (Write 47 bytes on handle 5)
2018-12-17T22:01:29.721196803Z	64	PC: 12ac0 \| Write file or device (Write 171 bytes on handle 5)
2018-12-17T22:01:29.724511672Z	62	PC: 12ac4 \| Close file
2018-12-17T22:01:29.732510669Z	79	PC: 12aa1 \| Find next file
2018-12-17T22:01:29.736253651Z	61	PC: 12aab \| Open file (Filename = 'TEST.COM')
2018-12-17T22:01:29.742780523Z	64	PC: 12ab7 \| Write file or device (Write 47 bytes on handle 5)
2018-12-17T22:01:29.745470391Z	64	PC: 12ac0 \| Write file or device (Write 171 bytes on handle 5)
2018-12-17T22:01:29.74890344Z	62	PC: 12ac4 \| Close file
2018-12-17T22:01:29.75688228Z	79	PC: 12aa1 \| Find next file
2018-12-17T22:01:29.759573865Z	9	PC: 12ad2 \| Display string (String= ' -=[ Please install AVP for detect this virus. ]=- ')