Sample viewer

vx.netlux.org/Virus.DOS.Tout.275

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:00:35.534878254Z	48	PC: 13a44 \| Get DOS version
2018-12-17T23:00:35.544269456Z	26	PC: 13a76 \| Set disk transfer address
2018-12-17T23:00:35.545163865Z	78	PC: 13a8a \| Find first file
2018-12-17T23:00:35.551016139Z	61	PC: 13a97 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T23:00:35.558541661Z	63	PC: 13ad3 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:00:35.562543172Z	66	PC: 13b31 \| Move file pointer
2018-12-17T23:00:35.564037394Z	64	PC: 13b07 \| Write file or device (Write 275 bytes on handle 5)
2018-12-17T23:00:35.578937726Z	66	PC: 13b31 \| Move file pointer
2018-12-17T23:00:35.580899751Z	64	PC: 13b18 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:00:35.587450795Z	87	PC: 13b1f \| Get or set file date and time
2018-12-17T23:00:35.589066907Z	62	PC: 13aba \| Close file
2018-12-17T23:00:35.597714576Z	79	PC: 13a8a \| Find next file
2018-12-17T23:00:35.600238115Z	61	PC: 13a97 \| Open file (Filename = 'PRINT.COM')
2018-12-17T23:00:35.607129122Z	62	PC: 13aba \| Close file
2018-12-17T23:00:35.609807792Z	79	PC: 13a8a \| Find next file
2018-12-17T23:00:35.61262964Z	61	PC: 13a97 \| Open file (Filename = 'HELLO.COM')
2018-12-17T23:00:35.619408146Z	62	PC: 13aba \| Close file
2018-12-17T23:00:35.622450053Z	79	PC: 13a8a \| Find next file
2018-12-17T23:00:35.62491077Z	61	PC: 13a97 \| Open file (Filename = 'PHANG.COM')
2018-12-17T23:00:35.631880564Z	62	PC: 13aba \| Close file
2018-12-17T23:00:35.634248549Z	79	PC: 13a8a \| Find next file
2018-12-17T23:00:35.636927119Z	61	PC: 13a97 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T23:00:35.643375394Z	62	PC: 13aba \| Close file
2018-12-17T23:00:35.645748304Z	79	PC: 13a8a \| Find next file
2018-12-17T23:00:35.648124699Z	61	PC: 13a97 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T23:00:35.65481551Z	63	PC: 13ad3 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:00:35.661605822Z	66	PC: 13b31 \| Move file pointer
2018-12-17T23:00:35.663027831Z	64	PC: 13b07 \| Write file or device (Write 275 bytes on handle 5)
2018-12-17T23:00:35.670749546Z	66	PC: 13b31 \| Move file pointer
2018-12-17T23:00:35.67300519Z	64	PC: 13b18 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:00:35.679446483Z	87	PC: 13b1f \| Get or set file date and time
2018-12-17T23:00:35.680882384Z	62	PC: 13aba \| Close file
2018-12-17T23:00:35.689428644Z	79	PC: 13a8a \| Find next file
2018-12-17T23:00:35.692211238Z	61	PC: 13a97 \| Open file (Filename = 'PAH.COM')
2018-12-17T23:00:35.699309291Z	62	PC: 13aba \| Close file
2018-12-17T23:00:35.701139102Z	79	PC: 13a8a \| Find next file
2018-12-17T23:00:35.703735765Z	26	PC: 13b2a \| Set disk transfer address
2018-12-17T23:00:35.704758149Z	9	PC: 13a3c \| Display string (String= 'Goat file (COM). Size=00001000h/0000004096d bytes. ')
2018-12-17T23:00:35.708865163Z	76	PC: 13a40 \| Terminate with return code (Return code = '36')