Sample viewer

vx.netlux.org/Virus.DOS.Empire.297

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:58:47.120802902Z	78	PC: 12a6f \| Find first file
2018-12-17T22:58:47.127675222Z	61	PC: 12a7c \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:58:47.135521404Z	64	PC: 12a99 \| Write file or device (Write 37 bytes on handle 5)
2018-12-17T22:58:47.142806913Z	64	PC: 12aa3 \| Write file or device (Write 260 bytes on handle 5)
2018-12-17T22:58:47.145688524Z	62	PC: 12aa7 \| Close file
2018-12-17T22:58:47.161795613Z	79	PC: 12a6f \| Find next file
2018-12-17T22:58:47.165257442Z	61	PC: 12a7c \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:58:47.173241792Z	64	PC: 12a99 \| Write file or device (Write 37 bytes on handle 5)
2018-12-17T22:58:47.181825858Z	64	PC: 12aa3 \| Write file or device (Write 260 bytes on handle 5)
2018-12-17T22:58:47.185013006Z	62	PC: 12aa7 \| Close file
2018-12-17T22:58:47.194183863Z	79	PC: 12a6f \| Find next file
2018-12-17T22:58:47.198363405Z	61	PC: 12a7c \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:58:47.206303979Z	64	PC: 12a99 \| Write file or device (Write 37 bytes on handle 5)
2018-12-17T22:58:47.21445377Z	64	PC: 12aa3 \| Write file or device (Write 260 bytes on handle 5)
2018-12-17T22:58:47.21795519Z	62	PC: 12aa7 \| Close file
2018-12-17T22:58:47.227518951Z	79	PC: 12a6f \| Find next file
2018-12-17T22:58:47.231206972Z	61	PC: 12a7c \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:58:47.239568981Z	64	PC: 12a99 \| Write file or device (Write 37 bytes on handle 5)
2018-12-17T22:58:47.247482881Z	64	PC: 12aa3 \| Write file or device (Write 260 bytes on handle 5)
2018-12-17T22:58:47.25051309Z	62	PC: 12aa7 \| Close file
2018-12-17T22:58:47.259818486Z	79	PC: 12a6f \| Find next file
2018-12-17T22:58:47.270009055Z	61	PC: 12a7c \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:58:47.279560987Z	64	PC: 12a99 \| Write file or device (Write 37 bytes on handle 5)
2018-12-17T22:58:47.28677423Z	64	PC: 12aa3 \| Write file or device (Write 260 bytes on handle 5)
2018-12-17T22:58:47.291170343Z	62	PC: 12aa7 \| Close file
2018-12-17T22:58:47.299949135Z	79	PC: 12a6f \| Find next file
2018-12-17T22:58:47.30328906Z	61	PC: 12a7c \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:58:47.311495584Z	64	PC: 12a99 \| Write file or device (Write 37 bytes on handle 5)
2018-12-17T22:58:47.320309984Z	64	PC: 12aa3 \| Write file or device (Write 260 bytes on handle 5)
2018-12-17T22:58:47.324334843Z	62	PC: 12aa7 \| Close file
2018-12-17T22:58:47.334192291Z	79	PC: 12a6f \| Find next file
2018-12-17T22:58:47.337591883Z	61	PC: 12a7c \| Open file (Filename = 'PAH.COM')
2018-12-17T22:58:47.346012948Z	64	PC: 12a99 \| Write file or device (Write 37 bytes on handle 5)
2018-12-17T22:58:47.357296Z	64	PC: 12aa3 \| Write file or device (Write 260 bytes on handle 5)
2018-12-17T22:58:47.360677356Z	62	PC: 12aa7 \| Close file
2018-12-17T22:58:47.369330214Z	79	PC: 12a6f \| Find next file
2018-12-17T22:58:47.37262928Z	61	PC: 12a7c \| Open file (Filename = 'TEST.COM')
2018-12-17T22:58:47.380994664Z	64	PC: 12a99 \| Write file or device (Write 37 bytes on handle 5)
2018-12-17T22:58:47.38450906Z	64	PC: 12aa3 \| Write file or device (Write 260 bytes on handle 5)
2018-12-17T22:58:47.387734702Z	62	PC: 12aa7 \| Close file
2018-12-17T22:58:47.398419768Z	79	PC: 12a6f \| Find next file
2018-12-17T22:58:47.401829965Z	78	PC: 12ab4 \| Find first file
2018-12-17T22:58:47.408614505Z	61	PC: 12abc \| Open file (Filename = 'TEST.COM')
2018-12-17T22:58:47.417209752Z	64	PC: 12ac5 \| Write file or device (Write 0 bytes on handle 5)
2018-12-17T22:58:47.426317792Z	62	PC: 12ac9 \| Close file