Sample viewer

vx.netlux.org/Virus.DOS.HLLP.Krile.5864

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:01:35.293684167Z	98	PC: 18986 \| Get current PSP
2018-12-17T22:01:35.29572622Z	44	PC: 12ac5 \| Get time 0x12ac5: xchg dx, cx 0x12ac7: mov al, dh 0x12ac9: mov ah, 0 0x12acb: mov bl, 0xa 0x12acd: jmp 0x12ae3 0x12acf: div bl 0x12ad1: add al, 0x30 0x12ad3: mov byte ptr [di], al 0x12ad5: inc di 0x12ad6: xchg al, ah 0x12ad8: add al, 0x30 0x12ada: mov byte ptr [di], al 0x12adc: inc di 0x12add: mov al, 0x3a 0x12adf: mov byte ptr [di], al 0x12ae1: inc di 0x12ae2: ret 0x12ae3: call 0x22acf 0x12ae6: mov al, dl 0x12ae8: mov ah, 0
2018-12-17T22:01:35.298622006Z	71	PC: 12d64 \| Get current directory
2018-12-17T22:01:35.302214014Z	67	PC: 14089 \| Get or set file attributes
2018-12-17T22:01:35.308420731Z	65	PC: 1379d \| Delete file (Filename = 'anti-vir.dat')
2018-12-17T22:01:35.320413726Z	67	PC: 14089 \| Get or set file attributes
2018-12-17T22:01:35.325926143Z	65	PC: 1379d \| Delete file (Filename = 'chklist.ms')
2018-12-17T22:01:35.332388882Z	67	PC: 14089 \| Get or set file attributes
2018-12-17T22:01:35.337907989Z	65	PC: 1379d \| Delete file (Filename = 'chklist.cps')
2018-12-17T22:01:35.343509346Z	67	PC: 14089 \| Get or set file attributes
2018-12-17T22:01:35.35285423Z	65	PC: 1379d \| Delete file (Filename = 'vs.vsn')
2018-12-17T22:01:35.359484556Z	67	PC: 14089 \| Get or set file attributes
2018-12-17T22:01:35.366351688Z	65	PC: 1379d \| Delete file (Filename = 'ivb.ntz')
2018-12-17T22:01:35.373502799Z	26	PC: 12e25 \| Set disk transfer address
2018-12-17T22:01:35.37439405Z	78	PC: 12e37 \| Find first file
2018-12-17T22:01:35.378335903Z	67	PC: 14052 \| Get or set file attributes
2018-12-17T22:01:35.382507118Z	67	PC: 14089 \| Get or set file attributes
2018-12-17T22:01:35.395515636Z	61	PC: 141ce \| Open file (Filename = 'A:\TEST.EXE')
2018-12-17T22:01:35.402142275Z	63	PC: 14270 \| Read file or device (Read 5864 bytes on handle 5)
2018-12-17T22:01:35.410449794Z	62	PC: 142b6 \| Close file
2018-12-17T22:01:35.412347295Z	67	PC: 14089 \| Get or set file attributes
2018-12-17T22:01:35.425288068Z	47	PC: 187b5 \| Get disk transfer address
2018-12-17T22:01:35.42630342Z	26	PC: 187c0 \| Set disk transfer address
2018-12-17T22:01:35.428098766Z	78	PC: 187cc \| Find first file
2018-12-17T22:01:35.434096057Z	26	PC: 187de \| Set disk transfer address
2018-12-17T22:01:35.436135459Z	26	PC: 1364e \| Set disk transfer address
2018-12-17T22:01:35.43783732Z	78	PC: 13660 \| Find first file
2018-12-17T22:01:35.44367088Z	67	PC: 14052 \| Get or set file attributes
2018-12-17T22:01:35.454305595Z	67	PC: 14089 \| Get or set file attributes
2018-12-17T22:01:35.464224901Z	61	PC: 141ce \| Open file (Filename = 'TEST.EXE')
2018-12-17T22:01:35.47077635Z	66	PC: 18aab \| Move file pointer
2018-12-17T22:01:35.472449966Z	63	PC: 14270 \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:01:35.478847686Z	62	PC: 142b6 \| Close file
2018-12-17T22:01:35.480557293Z	67	PC: 14089 \| Get or set file attributes
2018-12-17T22:01:35.490463332Z	47	PC: 187f2 \| Get disk transfer address
2018-12-17T22:01:35.492023069Z	26	PC: 187fd \| Set disk transfer address
2018-12-17T22:01:35.493025081Z	79	PC: 18801 \| Find next file
2018-12-17T22:01:35.495256396Z	26	PC: 18811 \| Set disk transfer address
2018-12-17T22:01:35.49792664Z	47	PC: 187b5 \| Get disk transfer address
2018-12-17T22:01:35.498994275Z	26	PC: 187c0 \| Set disk transfer address
2018-12-17T22:01:35.500000368Z	78	PC: 187cc \| Find first file
2018-12-17T22:01:35.508615056Z	26	PC: 187de \| Set disk transfer address
2018-12-17T22:01:35.51166953Z	26	PC: 1364e \| Set disk transfer address
2018-12-17T22:01:35.512606914Z	78	PC: 13660 \| Find first file
2018-12-17T22:01:35.519672805Z	47	PC: 187f2 \| Get disk transfer address
2018-12-17T22:01:35.521131903Z	26	PC: 187fd \| Set disk transfer address
2018-12-17T22:01:35.522066894Z	79	PC: 18801 \| Find next file
2018-12-17T22:01:35.52561952Z	26	PC: 18811 \| Set disk transfer address
2018-12-17T22:01:35.528518254Z	26	PC: 1364e \| Set disk transfer address
2018-12-17T22:01:35.529524016Z	78	PC: 13660 \| Find first file
2018-12-17T22:01:35.535818911Z	47	PC: 187f2 \| Get disk transfer address
2018-12-17T22:01:35.536853815Z	26	PC: 187fd \| Set disk transfer address
2018-12-17T22:01:35.537839017Z	79	PC: 18801 \| Find next file
2018-12-17T22:01:35.5408032Z	26	PC: 18811 \| Set disk transfer address
2018-12-17T22:01:35.543688118Z	26	PC: 1364e \| Set disk transfer address
2018-12-17T22:01:35.544662734Z	78	PC: 13660 \| Find first file
2018-12-17T22:01:35.550905222Z	47	PC: 187f2 \| Get disk transfer address
2018-12-17T22:01:35.551866569Z	26	PC: 187fd \| Set disk transfer address
2018-12-17T22:01:35.552789047Z	79	PC: 18801 \| Find next file
2018-12-17T22:01:35.555792121Z	26	PC: 18811 \| Set disk transfer address
2018-12-17T22:01:35.558939596Z	26	PC: 1364e \| Set disk transfer address
2018-12-17T22:01:35.560107897Z	78	PC: 13660 \| Find first file
2018-12-17T22:01:35.566373528Z	47	PC: 187f2 \| Get disk transfer address
2018-12-17T22:01:35.567358089Z	26	PC: 187fd \| Set disk transfer address
2018-12-17T22:01:35.568301049Z	79	PC: 18801 \| Find next file
2018-12-17T22:01:35.571188524Z	26	PC: 18811 \| Set disk transfer address
2018-12-17T22:01:35.574094898Z	26	PC: 1364e \| Set disk transfer address
2018-12-17T22:01:35.575192339Z	78	PC: 13660 \| Find first file
2018-12-17T22:01:35.581532925Z	47	PC: 187f2 \| Get disk transfer address
2018-12-17T22:01:35.582362262Z	26	PC: 187fd \| Set disk transfer address
2018-12-17T22:01:35.583110618Z	79	PC: 18801 \| Find next file
2018-12-17T22:01:35.585468398Z	26	PC: 18811 \| Set disk transfer address
2018-12-17T22:01:35.589262142Z	47	PC: 187f2 \| Get disk transfer address
2018-12-17T22:01:35.590345249Z	26	PC: 187fd \| Set disk transfer address
2018-12-17T22:01:35.591807244Z	79	PC: 18801 \| Find next file
2018-12-17T22:01:35.594157871Z	26	PC: 18811 \| Set disk transfer address
2018-12-17T22:01:35.596968826Z	26	PC: 1364e \| Set disk transfer address
2018-12-17T22:01:35.598431233Z	78	PC: 13660 \| Find first file
2018-12-17T22:01:35.604290499Z	47	PC: 187f2 \| Get disk transfer address
2018-12-17T22:01:35.605274262Z	26	PC: 187fd \| Set disk transfer address
2018-12-17T22:01:35.606844408Z	79	PC: 18801 \| Find next file
2018-12-17T22:01:35.609117669Z	26	PC: 18811 \| Set disk transfer address
2018-12-17T22:01:35.612948288Z	76	PC: 12ec6 \| Terminate with return code (Return code = '0')