Sample viewer

vx.netlux.org/Virus.DOS.Trux.1472

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:59:33.793493706Z	48	PC: 12c5c \| Get DOS version
2018-12-17T22:59:33.795064939Z	74	PC: 12c6b \| Reallocate memory
2018-12-17T22:59:33.797849772Z	74	PC: 12c76 \| Reallocate memory
2018-12-17T22:59:33.799579634Z	72	PC: 12c7d \| Allocate memory
2018-12-17T22:59:33.801845312Z	53	PC: 9f73a \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:59:33.806136626Z	37	PC: 9f74e \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:59:33.807667223Z	67	PC: 9f75a \| Get or set file attributes
2018-12-17T22:59:33.818644814Z	67	PC: 9f766 \| Get or set file attributes
2018-12-17T22:59:33.826580698Z	37	PC: 9f826 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:59:33.827947226Z	67	PC: 12ce4 \| Get or set file attributes
2018-12-17T22:59:33.835243268Z	53	PC: 9f73a \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:59:33.837791637Z	37	PC: 9f74e \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:59:33.839382397Z	67	PC: 9f75a \| Get or set file attributes
2018-12-17T22:59:33.848744342Z	67	PC: 9f766 \| Get or set file attributes
2018-12-17T22:59:34.19499147Z	61	PC: 9f770 \| Open file (Filename = '')
2018-12-17T22:59:34.202119566Z	63	PC: 9f781 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:59:34.207815841Z	87	PC: 9f7a3 \| Get or set file date and time
2018-12-17T22:59:34.210222174Z	66	PC: 9f7b3 \| Move file pointer
2018-12-17T22:59:34.212151219Z	64	PC: 9f7e7 \| Write file or device (Write 1472 bytes on handle 5)
2018-12-17T22:59:34.220114725Z	66	PC: 9f7ef \| Move file pointer
2018-12-17T22:59:34.222039312Z	64	PC: 9f7f9 \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:59:34.22928035Z	87	PC: 9f80c \| Get or set file date and time
2018-12-17T22:59:34.231319082Z	62	PC: 9f810 \| Close file
2018-12-17T22:59:34.238648166Z	67	PC: 9f81c \| Get or set file attributes
2018-12-17T22:59:34.24948949Z	37	PC: 9f826 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:59:34.251147597Z	67	PC: 12ced \| Get or set file attributes
2018-12-17T22:59:34.258157671Z	53	PC: 9f73a \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:59:34.262229934Z	37	PC: 9f74e \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:59:34.263606421Z	67	PC: 9f75a \| Get or set file attributes
2018-12-17T22:59:34.270170347Z	67	PC: 9f766 \| Get or set file attributes
2018-12-17T22:59:34.281524114Z	61	PC: 9f770 \| Open file (Filename = '')
2018-12-17T22:59:34.28979581Z	63	PC: 9f781 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:59:34.295767783Z	87	PC: 9f7a3 \| Get or set file date and time
2018-12-17T22:59:34.298362089Z	66	PC: 9f7b3 \| Move file pointer
2018-12-17T22:59:34.300049911Z	64	PC: 9f7e7 \| Write file or device (Write 1472 bytes on handle 5)
2018-12-17T22:59:34.308677225Z	66	PC: 9f7ef \| Move file pointer
2018-12-17T22:59:34.311229992Z	64	PC: 9f7f9 \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:59:34.314359944Z	87	PC: 9f80c \| Get or set file date and time
2018-12-17T22:59:34.316084446Z	62	PC: 9f810 \| Close file
2018-12-17T22:59:34.329015498Z	67	PC: 9f81c \| Get or set file attributes
2018-12-17T22:59:34.340909039Z	37	PC: 9f826 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:59:34.342140163Z	67	PC: 12cf6 \| Get or set file attributes
2018-12-17T22:59:34.348823514Z	53	PC: 9f73a \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:59:34.350875189Z	37	PC: 9f74e \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:59:34.352501145Z	67	PC: 9f75a \| Get or set file attributes
2018-12-17T22:59:34.360170739Z	67	PC: 9f766 \| Get or set file attributes
2018-12-17T22:59:34.372210786Z	61	PC: 9f770 \| Open file (Filename = '')
2018-12-17T22:59:34.380616774Z	63	PC: 9f781 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:59:34.387700817Z	87	PC: 9f7a3 \| Get or set file date and time
2018-12-17T22:59:34.391025927Z	66	PC: 9f7b3 \| Move file pointer
2018-12-17T22:59:34.393719378Z	64	PC: 9f7e7 \| Write file or device (Write 1472 bytes on handle 5)
2018-12-17T22:59:34.405030686Z	66	PC: 9f7ef \| Move file pointer
2018-12-17T22:59:34.408305852Z	64	PC: 9f7f9 \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:59:34.412085535Z	87	PC: 9f80c \| Get or set file date and time
2018-12-17T22:59:34.414415844Z	62	PC: 9f810 \| Close file
2018-12-17T22:59:34.423729618Z	67	PC: 9f81c \| Get or set file attributes
2018-12-17T22:59:34.43586222Z	37	PC: 9f826 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:59:34.437832893Z	67	PC: 12cff \| Get or set file attributes
2018-12-17T22:59:34.445215147Z	53	PC: 9f73a \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:59:34.448274026Z	37	PC: 9f74e \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:59:34.450292389Z	67	PC: 9f75a \| Get or set file attributes
2018-12-17T22:59:34.457658652Z	67	PC: 9f766 \| Get or set file attributes
2018-12-17T22:59:34.470037777Z	61	PC: 9f770 \| Open file (Filename = '=C:\WINDOWS\TEMP ')
2018-12-17T22:59:34.478752395Z	63	PC: 9f781 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:59:34.485453809Z	87	PC: 9f7a3 \| Get or set file date and time
2018-12-17T22:59:34.487870541Z	66	PC: 9f7b3 \| Move file pointer
2018-12-17T22:59:34.490129757Z	64	PC: 9f7e7 \| Write file or device (Write 1472 bytes on handle 5)
2018-12-17T22:59:34.500485279Z	66	PC: 9f7ef \| Move file pointer
2018-12-17T22:59:34.502692407Z	64	PC: 9f7f9 \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:59:34.507534757Z	87	PC: 9f80c \| Get or set file date and time
2018-12-17T22:59:34.509848456Z	62	PC: 9f810 \| Close file
2018-12-17T22:59:34.518228213Z	67	PC: 9f81c \| Get or set file attributes
2018-12-17T22:59:34.530385452Z	37	PC: 9f826 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:59:34.532356426Z	67	PC: 12d08 \| Get or set file attributes
2018-12-17T22:59:34.539869024Z	53	PC: 9f73a \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:59:34.542742875Z	37	PC: 9f74e \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:59:34.544733647Z	67	PC: 9f75a \| Get or set file attributes
2018-12-17T22:59:34.552455398Z	67	PC: 9f766 \| Get or set file attributes
2018-12-17T22:59:34.560393697Z	37	PC: 9f826 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:59:34.562386272Z	67	PC: 12d11 \| Get or set file attributes
2018-12-17T22:59:34.570756643Z	53	PC: 9f73a \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:59:34.572644891Z	37	PC: 9f74e \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:59:34.575448881Z	67	PC: 9f75a \| Get or set file attributes
2018-12-17T22:59:34.585284466Z	67	PC: 9f766 \| Get or set file attributes
2018-12-17T22:59:34.596101334Z	61	PC: 9f770 \| Open file (Filename = '')
2018-12-17T22:59:34.605066172Z	63	PC: 9f781 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:59:34.611577589Z	87	PC: 9f7a3 \| Get or set file date and time
2018-12-17T22:59:34.613628274Z	66	PC: 9f7b3 \| Move file pointer
2018-12-17T22:59:34.620442089Z	64	PC: 9f7e7 \| Write file or device (Write 1472 bytes on handle 5)
2018-12-17T22:59:34.632125005Z	66	PC: 9f7ef \| Move file pointer
2018-12-17T22:59:34.633868532Z	64	PC: 9f7f9 \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:59:34.638258001Z	87	PC: 9f80c \| Get or set file date and time
2018-12-17T22:59:34.640179632Z	62	PC: 9f810 \| Close file
2018-12-17T22:59:34.648298771Z	67	PC: 9f81c \| Get or set file attributes
2018-12-17T22:59:34.659331465Z	37	PC: 9f826 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:59:34.661898009Z	67	PC: 12d1a \| Get or set file attributes
2018-12-17T22:59:34.669045331Z	2	PC: 12f50 \| Character output (Char = '54')
2018-12-17T22:59:34.67172637Z	2	PC: 12f50 \| Character output (Char = '52')
2018-12-17T22:59:34.675557871Z	2	PC: 12f50 \| Character output (Char = '55')
2018-12-17T22:59:34.678372149Z	2	PC: 12f50 \| Character output (Char = '58')
2018-12-17T22:59:34.681104124Z	2	PC: 12f50 \| Character output (Char = '45')
2018-12-17T22:59:34.68440628Z	2	PC: 12f50 \| Character output (Char = '53')
2018-12-17T22:59:34.687088741Z	2	PC: 12f50 \| Character output (Char = '54')
2018-12-17T22:59:34.689732349Z	2	PC: 12f50 \| Character output (Char = '45')
2018-12-17T22:59:34.693268906Z	2	PC: 12f50 \| Character output (Char = '44')
2018-12-17T22:59:34.695929186Z	2	PC: 12f50 \| Character output (Char = '20')
2018-12-17T22:59:34.69867719Z	2	PC: 12f50 \| Character output (Char = '76')
2018-12-17T22:59:34.702772165Z	2	PC: 12f50 \| Character output (Char = '69')
2018-12-17T22:59:34.705651056Z	2	PC: 12f50 \| Character output (Char = '72')
2018-12-17T22:59:34.708540186Z	2	PC: 12f50 \| Character output (Char = '75')
2018-12-17T22:59:34.712568075Z	2	PC: 12f50 \| Character output (Char = '73')
2018-12-17T22:59:34.716903583Z	2	PC: 12f50 \| Character output (Char = '20')
2018-12-17T22:59:34.71962598Z	2	PC: 12f50 \| Character output (Char = '70')
2018-12-17T22:59:34.722298933Z	2	PC: 12f50 \| Character output (Char = '72')
2018-12-17T22:59:34.726312516Z	2	PC: 12f50 \| Character output (Char = '65')
2018-12-17T22:59:34.729277528Z	2	PC: 12f50 \| Character output (Char = '73')
2018-12-17T22:59:34.732048636Z	2	PC: 12f50 \| Character output (Char = '65')
2018-12-17T22:59:34.736079161Z	2	PC: 12f50 \| Character output (Char = '6e')
2018-12-17T22:59:34.73884046Z	2	PC: 12f50 \| Character output (Char = '74')
2018-12-17T22:59:34.741610426Z	2	PC: 12f50 \| Character output (Char = '73')
2018-12-17T22:59:34.745442488Z	2	PC: 12f50 \| Character output (Char = '3a')
2018-12-17T22:59:34.748169423Z	2	PC: 12f50 \| Character output (Char = '0d')
2018-12-17T22:59:34.750760592Z	2	PC: 12f50 \| Character output (Char = '0a')
2018-12-17T22:59:34.75765503Z	2	PC: 12f50 \| Character output (Char = '74')
2018-12-17T22:59:34.760434132Z	2	PC: 12f50 \| Character output (Char = '68')
2018-12-17T22:59:34.763262678Z	2	PC: 12f50 \| Character output (Char = '65')
2018-12-17T22:59:34.766310066Z	2	PC: 12f50 \| Character output (Char = '20')
2018-12-17T22:59:34.769618132Z	2	PC: 12f50 \| Character output (Char = '64')
2018-12-17T22:59:34.772331782Z	2	PC: 12f50 \| Character output (Char = '65')
2018-12-17T22:59:34.775148436Z	2	PC: 12f50 \| Character output (Char = '6d')
2018-12-17T22:59:34.778798095Z	2	PC: 12f50 \| Character output (Char = '6f')
2018-12-17T22:59:34.781609929Z	2	PC: 12f50 \| Character output (Char = '20')
2018-12-17T22:59:34.784371189Z	2	PC: 12f50 \| Character output (Char = '65')
2018-12-17T22:59:34.788339386Z	2	PC: 12f50 \| Character output (Char = '66')
2018-12-17T22:59:34.791150128Z	2	PC: 12f50 \| Character output (Char = '66')
2018-12-17T22:59:34.793979846Z	2	PC: 12f50 \| Character output (Char = '65')
2018-12-17T22:59:34.798133793Z	2	PC: 12f50 \| Character output (Char = '63')
2018-12-17T22:59:34.800955706Z	2	PC: 12f50 \| Character output (Char = '74')
2018-12-17T22:59:34.803760618Z	2	PC: 12f50 \| Character output (Char = '20')
2018-12-17T22:59:34.807568925Z	2	PC: 12f50 \| Character output (Char = '6f')
2018-12-17T22:59:34.810801981Z	2	PC: 12f50 \| Character output (Char = '66')
2018-12-17T22:59:34.813597925Z	2	PC: 12f50 \| Character output (Char = '20')
2018-12-17T22:59:34.817331052Z	2	PC: 12f50 \| Character output (Char = '74')
2018-12-17T22:59:34.82009198Z	2	PC: 12f50 \| Character output (Char = '68')
2018-12-17T22:59:34.822804157Z	2	PC: 12f50 \| Character output (Char = '65')
2018-12-17T22:59:34.82649869Z	2	PC: 12f50 \| Character output (Char = '20')
2018-12-17T22:59:34.829283464Z	2	PC: 12f50 \| Character output (Char = '76')
2018-12-17T22:59:34.832082494Z	2	PC: 12f50 \| Character output (Char = '69')
2018-12-17T22:59:34.836675977Z	2	PC: 12f50 \| Character output (Char = '72')
2018-12-17T22:59:34.839601526Z	2	PC: 12f50 \| Character output (Char = '75')
2018-12-17T22:59:34.842065396Z	2	PC: 12f50 \| Character output (Char = '73')
2018-12-17T22:59:34.845343416Z	2	PC: 12f50 \| Character output (Char = '20')
2018-12-17T22:59:34.847950586Z	2	PC: 12f50 \| Character output (Char = '47')
2018-12-17T22:59:34.852155038Z	2	PC: 12f50 \| Character output (Char = '6f')
2018-12-17T22:59:34.855731279Z	2	PC: 12f50 \| Character output (Char = '6f')
2018-12-17T22:59:34.858856542Z	2	PC: 12f50 \| Character output (Char = '64')
2018-12-17T22:59:34.861645033Z	2	PC: 12f50 \| Character output (Char = '42')
2018-12-17T22:59:34.865399919Z	2	PC: 12f50 \| Character output (Char = '79')
2018-12-17T22:59:34.868264162Z	2	PC: 12f50 \| Character output (Char = '65')
2018-12-17T22:59:34.870844672Z	2	PC: 12f50 \| Character output (Char = '2e')
2018-12-17T22:59:34.873729203Z	2	PC: 12f50 \| Character output (Char = '38')
2018-12-17T22:59:34.876729542Z	2	PC: 12f50 \| Character output (Char = '33')
2018-12-17T22:59:34.879487956Z	2	PC: 12f50 \| Character output (Char = '39')
2018-12-17T22:59:34.884596897Z	2	PC: 12f58 \| Character output (Char = '0d')
2018-12-17T22:59:34.887267176Z	2	PC: 12f5e \| Character output (Char = '0a')