Sample viewer

vx.netlux.org/Virus.DOS.HLLO.9000

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:00:50.781263332Z	48	PC: 12a4c \| Get DOS version
2018-12-17T23:00:50.786890373Z	53	PC: 12bf2 \| Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T23:00:50.787932238Z	53	PC: 12bff \| Get interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-17T23:00:50.7889256Z	53	PC: 12c0c \| Get interrupt vector (Interrupt = '5' AKA 'Printer output')
2018-12-17T23:00:50.790616303Z	53	PC: 12c19 \| Get interrupt vector (Interrupt = '6' AKA 'Direct console I/O')
2018-12-17T23:00:50.791678444Z	37	PC: 12c2d \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T23:00:50.792824533Z	74	PC: 12af7 \| Reallocate memory
2018-12-17T23:00:50.795297753Z	68	PC: 12f5d \| I/O control for devices (Set for = 'pyright 1991 Borland Intl.')
2018-12-17T23:00:50.796955797Z	68	PC: 12f5d \| I/O control for devices (Set for = '')
2018-12-17T23:00:50.7988414Z	67	PC: 13a12 \| Get or set file attributes
2018-12-17T23:00:50.804808518Z	61	PC: 13ecd \| Open file (Filename = 'A:\TEST.EXE')
2018-12-17T23:00:50.811108786Z	68	PC: 1365c \| I/O control for devices (Set for = '')
2018-12-17T23:00:50.812505318Z	63	PC: 13049 \| Read file or device (Read 9000 bytes on handle 5)
2018-12-17T23:00:50.820752825Z	62	PC: 13a4d \| Close file
2018-12-17T23:00:50.822505451Z	59	PC: 12e4b \| Change current directory
2018-12-17T23:00:50.826445665Z	47	PC: 13ae6 \| Get disk transfer address
2018-12-17T23:00:50.828202747Z	26	PC: 13aef \| Set disk transfer address
2018-12-17T23:00:50.829151598Z	78	PC: 13af9 \| Find first file
2018-12-17T23:00:50.834796508Z	26	PC: 13b02 \| Set disk transfer address
2018-12-17T23:00:50.836115937Z	67	PC: 13a12 \| Get or set file attributes
2018-12-17T23:00:50.841974385Z	61	PC: 13ecd \| Open file (Filename = '')
2018-12-17T23:00:50.846292746Z	68	PC: 1365c \| I/O control for devices (Set for = '��WJWUWW')
2018-12-17T23:00:50.847226396Z	64	PC: 13d54 \| Write file or device (Write 0 bytes on handle 5)
2018-12-17T23:00:50.859515929Z	64	PC: 144cb \| Write file or device (Write 9000 bytes on handle 5)
2018-12-17T23:00:50.868366976Z	62	PC: 13a4d \| Close file
2018-12-17T23:00:50.876357328Z	47	PC: 13b19 \| Get disk transfer address
2018-12-17T23:00:50.877641201Z	26	PC: 13b22 \| Set disk transfer address
2018-12-17T23:00:50.878634513Z	79	PC: 13b26 \| Find next file
2018-12-17T23:00:50.880839679Z	26	PC: 13b2f \| Set disk transfer address
2018-12-17T23:00:50.883184862Z	47	PC: 13ae6 \| Get disk transfer address
2018-12-17T23:00:50.884130784Z	26	PC: 13aef \| Set disk transfer address
2018-12-17T23:00:50.885100625Z	78	PC: 13af9 \| Find first file
2018-12-17T23:00:50.891587Z	26	PC: 13b02 \| Set disk transfer address
2018-12-17T23:00:50.89259848Z	47	PC: 13b19 \| Get disk transfer address
2018-12-17T23:00:50.893563747Z	26	PC: 13b22 \| Set disk transfer address
2018-12-17T23:00:50.894914308Z	79	PC: 13b26 \| Find next file
2018-12-17T23:00:50.897251293Z	26	PC: 13b2f \| Set disk transfer address
2018-12-17T23:00:50.898243598Z	47	PC: 13b19 \| Get disk transfer address
2018-12-17T23:00:50.901506319Z	26	PC: 13b22 \| Set disk transfer address
2018-12-17T23:00:50.902672213Z	79	PC: 13b26 \| Find next file
2018-12-17T23:00:50.905395198Z	26	PC: 13b2f \| Set disk transfer address
2018-12-17T23:00:50.907438034Z	47	PC: 13b19 \| Get disk transfer address
2018-12-17T23:00:50.908806401Z	26	PC: 13b22 \| Set disk transfer address
2018-12-17T23:00:50.910176665Z	79	PC: 13b26 \| Find next file
2018-12-17T23:00:50.913329866Z	26	PC: 13b2f \| Set disk transfer address
2018-12-17T23:00:50.914485597Z	47	PC: 13b19 \| Get disk transfer address
2018-12-17T23:00:50.915595721Z	26	PC: 13b22 \| Set disk transfer address
2018-12-17T23:00:50.917740097Z	79	PC: 13b26 \| Find next file
2018-12-17T23:00:50.920095886Z	26	PC: 13b2f \| Set disk transfer address
2018-12-17T23:00:50.921096499Z	47	PC: 13b19 \| Get disk transfer address
2018-12-17T23:00:50.922431392Z	26	PC: 13b22 \| Set disk transfer address
2018-12-17T23:00:50.923325006Z	79	PC: 13b26 \| Find next file
2018-12-17T23:00:50.925614623Z	26	PC: 13b2f \| Set disk transfer address
2018-12-17T23:00:50.926895222Z	47	PC: 13b19 \| Get disk transfer address
2018-12-17T23:00:50.927713382Z	26	PC: 13b22 \| Set disk transfer address
2018-12-17T23:00:50.928577056Z	79	PC: 13b26 \| Find next file
2018-12-17T23:00:50.931053039Z	26	PC: 13b2f \| Set disk transfer address
2018-12-17T23:00:50.932047509Z	47	PC: 13b19 \| Get disk transfer address
2018-12-17T23:00:50.932859531Z	26	PC: 13b22 \| Set disk transfer address
2018-12-17T23:00:50.933955851Z	79	PC: 13b26 \| Find next file
2018-12-17T23:00:50.936210948Z	26	PC: 13b2f \| Set disk transfer address
2018-12-17T23:00:50.937049806Z	47	PC: 13b19 \| Get disk transfer address
2018-12-17T23:00:50.938227005Z	26	PC: 13b22 \| Set disk transfer address
2018-12-17T23:00:50.939091305Z	79	PC: 13b26 \| Find next file
2018-12-17T23:00:50.941508769Z	26	PC: 13b2f \| Set disk transfer address
2018-12-17T23:00:50.94957949Z	47	PC: 13b19 \| Get disk transfer address
2018-12-17T23:00:50.950684423Z	26	PC: 13b22 \| Set disk transfer address
2018-12-17T23:00:50.951571865Z	79	PC: 13b26 \| Find next file
2018-12-17T23:00:50.954143384Z	26	PC: 13b2f \| Set disk transfer address
2018-12-17T23:00:50.95550896Z	37	PC: 12c39 \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T23:00:50.956494503Z	37	PC: 12c44 \| Set interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-17T23:00:50.957830561Z	37	PC: 12c4f \| Set interrupt vector (Interrupt = '5' AKA 'Printer output')
2018-12-17T23:00:50.958778933Z	37	PC: 12c5a \| Set interrupt vector (Interrupt = '6' AKA 'Direct console I/O')
2018-12-17T23:00:50.959837093Z	76	PC: 12be3 \| Terminate with return code (Return code = '255')