Sample viewer

vx.netlux.org/Virus.DOS.Vpp.722

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T23:00:54.126724481Z 53 PC: 13064 | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T23:00:54.130071047Z 37 PC: 13091 | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T23:00:54.131617336Z 47 PC: 13097 | Get disk transfer address
2018-12-17T23:00:54.133118959Z 26 PC: 130a6 | Set disk transfer address
2018-12-17T23:00:54.134776948Z 78 PC: 130b0 | Find first file
2018-12-17T23:00:54.141026492Z 67 PC: 130db | Get or set file attributes
2018-12-17T23:00:54.155096824Z 61 PC: 130e1 | Open file (Filename = 'SLEEP.COM')
2018-12-17T23:00:54.161659936Z 66 PC: 13143 | Move file pointer
2018-12-17T23:00:54.164315413Z 66 PC: 13143 | Move file pointer
2018-12-17T23:00:54.165725621Z 63 PC: 1310a | Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:00:54.171885459Z 66 PC: 13143 | Move file pointer
2018-12-17T23:00:54.174134182Z 63 PC: 1314c | Read file or device (Read 256 bytes on handle 5)
2018-12-17T23:00:54.176686738Z 66 PC: 13143 | Move file pointer
2018-12-17T23:00:54.178359323Z 64 PC: 131c2 | Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:00:54.181742246Z 66 PC: 13143 | Move file pointer
2018-12-17T23:00:54.183755606Z 64 PC: 13276 | Write file or device (Write 69 bytes on handle 5)
2018-12-17T23:00:54.187174102Z 64 PC: 13299 | Write file or device (Write 722 bytes on handle 5)
2018-12-17T23:00:54.196112095Z 62 PC: 1311b | Close file
2018-12-17T23:00:54.204101089Z 67 PC: 13129 | Get or set file attributes
2018-12-17T23:00:54.213538912Z 87 PC: 13135 | Get or set file date and time
2018-12-17T23:00:54.220440999Z 79 PC: 130b0 | Find next file
2018-12-17T23:00:54.223126742Z 67 PC: 130db | Get or set file attributes
2018-12-17T23:00:54.233093762Z 61 PC: 130e1 | Open file (Filename = 'PRINT.COM')
2018-12-17T23:00:54.246614441Z 66 PC: 13143 | Move file pointer
2018-12-17T23:00:54.248603942Z 62 PC: 1311b | Close file
2018-12-17T23:00:54.250916912Z 67 PC: 13129 | Get or set file attributes
2018-12-17T23:00:54.261551761Z 87 PC: 13135 | Get or set file date and time
2018-12-17T23:00:54.263789185Z 79 PC: 130b0 | Find next file
2018-12-17T23:00:54.266709472Z 67 PC: 130db | Get or set file attributes
2018-12-17T23:00:54.27671009Z 61 PC: 130e1 | Open file (Filename = 'HELLO.COM')
2018-12-17T23:00:54.298082615Z 66 PC: 13143 | Move file pointer
2018-12-17T23:00:54.299990511Z 62 PC: 1311b | Close file
2018-12-17T23:00:54.302146258Z 67 PC: 13129 | Get or set file attributes
2018-12-17T23:00:54.314198176Z 87 PC: 13135 | Get or set file date and time
2018-12-17T23:00:54.315923558Z 79 PC: 130b0 | Find next file
2018-12-17T23:00:54.318681067Z 67 PC: 130db | Get or set file attributes
2018-12-17T23:00:54.329234727Z 61 PC: 130e1 | Open file (Filename = 'PHANG.COM')
2018-12-17T23:00:54.33573455Z 66 PC: 13143 | Move file pointer
2018-12-17T23:00:54.337452271Z 62 PC: 1311b | Close file
2018-12-17T23:00:54.340375196Z 67 PC: 13129 | Get or set file attributes
2018-12-17T23:00:54.350991609Z 87 PC: 13135 | Get or set file date and time
2018-12-17T23:00:54.35255312Z 79 PC: 130b0 | Find next file
2018-12-17T23:00:54.355816429Z 67 PC: 130db | Get or set file attributes
2018-12-17T23:00:54.369099397Z 61 PC: 130e1 | Open file (Filename = 'PRINTA~1.COM')
2018-12-17T23:00:54.37559741Z 66 PC: 13143 | Move file pointer
2018-12-17T23:00:54.377169167Z 62 PC: 1311b | Close file
2018-12-17T23:00:54.382570927Z 67 PC: 13129 | Get or set file attributes
2018-12-17T23:00:54.392393583Z 87 PC: 13135 | Get or set file date and time
2018-12-17T23:00:54.393897729Z 79 PC: 130b0 | Find next file
2018-12-17T23:00:54.39734252Z 67 PC: 130db | Get or set file attributes
2018-12-17T23:00:54.407966592Z 61 PC: 130e1 | Open file (Filename = 'MANDEL.COM')
2018-12-17T23:00:54.414681923Z 66 PC: 13143 | Move file pointer
2018-12-17T23:00:54.419374943Z 66 PC: 13143 | Move file pointer
2018-12-17T23:00:54.42120807Z 63 PC: 1310a | Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:00:54.427457814Z 66 PC: 13143 | Move file pointer
2018-12-17T23:00:54.429648687Z 63 PC: 1314c | Read file or device (Read 256 bytes on handle 5)
2018-12-17T23:00:54.433026401Z 66 PC: 13143 | Move file pointer
2018-12-17T23:00:54.434589401Z 64 PC: 131c2 | Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:00:54.438366142Z 66 PC: 13143 | Move file pointer
2018-12-17T23:00:54.440286396Z 64 PC: 13276 | Write file or device (Write 67 bytes on handle 5)
2018-12-17T23:00:54.448575973Z 64 PC: 13299 | Write file or device (Write 722 bytes on handle 5)
2018-12-17T23:00:54.46068247Z 62 PC: 1311b | Close file
2018-12-17T23:00:54.468778454Z 67 PC: 13129 | Get or set file attributes
2018-12-17T23:00:54.478726863Z 87 PC: 13135 | Get or set file date and time
2018-12-17T23:00:54.481565845Z 79 PC: 130b0 | Find next file
2018-12-17T23:00:54.48483082Z 67 PC: 130db | Get or set file attributes
2018-12-17T23:00:54.494651589Z 61 PC: 130e1 | Open file (Filename = 'PAH.COM')
2018-12-17T23:00:54.503023243Z 66 PC: 13143 | Move file pointer
2018-12-17T23:00:54.505136184Z 62 PC: 1311b | Close file
2018-12-17T23:00:54.50720341Z 67 PC: 13129 | Get or set file attributes
2018-12-17T23:00:54.517779717Z 87 PC: 13135 | Get or set file date and time
2018-12-17T23:00:54.520083099Z 79 PC: 130b0 | Find next file
2018-12-17T23:00:54.522951062Z 67 PC: 130db | Get or set file attributes
2018-12-17T23:00:54.533352609Z 61 PC: 130e1 | Open file (Filename = 'TEST.COM')
2018-12-17T23:00:54.541022049Z 66 PC: 13143 | Move file pointer
2018-12-17T23:00:54.542765002Z 66 PC: 13143 | Move file pointer
2018-12-17T23:00:54.544632913Z 63 PC: 1310a | Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:00:54.552087365Z 62 PC: 1311b | Close file
2018-12-17T23:00:54.554201073Z 67 PC: 13129 | Get or set file attributes
2018-12-17T23:00:54.565054402Z 87 PC: 13135 | Get or set file date and time
2018-12-17T23:00:54.567761068Z 79 PC: 130b0 | Find next file
2018-12-17T23:00:54.57126655Z 26 PC: 130b9 | Set disk transfer address
2018-12-17T23:00:54.57275856Z 37 PC: 130cc | Set interrupt vector (Interrupt = '33' AKA 'Random read')