Sample viewer

vx.netlux.org/Virus.DOS.SillyC.96.b

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:01:35.841102734Z	78	PC: 13e5b \| Find first file
2018-12-17T23:01:35.847365386Z	61	PC: 13e63 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T23:01:35.885793828Z	63	PC: 13e6f \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:01:35.893020431Z	66	PC: 13e7c \| Move file pointer
2018-12-17T23:01:35.8951482Z	64	PC: 13e87 \| Write file or device (Write 96 bytes on handle 5)
2018-12-17T23:01:35.898914356Z	66	PC: 13e8f \| Move file pointer
2018-12-17T23:01:35.900791394Z	64	PC: 13e98 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:01:35.904215214Z	79	PC: 13e9c \| Find next file
2018-12-17T23:01:35.910727581Z	61	PC: 13e63 \| Open file (Filename = 'PRINT.COM')
2018-12-17T23:01:35.918297819Z	63	PC: 13e6f \| Read file or device (Read 3 bytes on handle 6)
2018-12-17T23:01:35.925306805Z	66	PC: 13e7c \| Move file pointer
2018-12-17T23:01:35.927948246Z	64	PC: 13e87 \| Write file or device (Write 96 bytes on handle 6)
2018-12-17T23:01:35.932122901Z	66	PC: 13e8f \| Move file pointer
2018-12-17T23:01:35.934157204Z	64	PC: 13e98 \| Write file or device (Write 3 bytes on handle 6)
2018-12-17T23:01:35.938483892Z	79	PC: 13e9c \| Find next file
2018-12-17T23:01:35.941593319Z	61	PC: 13e63 \| Open file (Filename = 'HELLO.COM')
2018-12-17T23:01:35.949365745Z	63	PC: 13e6f \| Read file or device (Read 3 bytes on handle 7)
2018-12-17T23:01:35.957033474Z	66	PC: 13e7c \| Move file pointer
2018-12-17T23:01:35.95859778Z	64	PC: 13e87 \| Write file or device (Write 96 bytes on handle 7)
2018-12-17T23:01:35.961526165Z	66	PC: 13e8f \| Move file pointer
2018-12-17T23:01:35.963241171Z	64	PC: 13e98 \| Write file or device (Write 3 bytes on handle 7)
2018-12-17T23:01:35.968332633Z	79	PC: 13e9c \| Find next file
2018-12-17T23:01:35.971309815Z	61	PC: 13e63 \| Open file (Filename = 'PHANG.COM')
2018-12-17T23:01:35.978792959Z	63	PC: 13e6f \| Read file or device (Read 3 bytes on handle 8)
2018-12-17T23:01:35.985948731Z	66	PC: 13e7c \| Move file pointer
2018-12-17T23:01:35.987743592Z	64	PC: 13e87 \| Write file or device (Write 96 bytes on handle 8)
2018-12-17T23:01:35.990929669Z	66	PC: 13e8f \| Move file pointer
2018-12-17T23:01:35.993674788Z	64	PC: 13e98 \| Write file or device (Write 3 bytes on handle 8)
2018-12-17T23:01:35.996777532Z	79	PC: 13e9c \| Find next file
2018-12-17T23:01:35.999808284Z	61	PC: 13e63 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T23:01:36.008213604Z	63	PC: 13e6f \| Read file or device (Read 3 bytes on handle 9)
2018-12-17T23:01:36.015240134Z	66	PC: 13e7c \| Move file pointer
2018-12-17T23:01:36.016965604Z	64	PC: 13e87 \| Write file or device (Write 96 bytes on handle 9)
2018-12-17T23:01:36.020933105Z	66	PC: 13e8f \| Move file pointer
2018-12-17T23:01:36.02270393Z	64	PC: 13e98 \| Write file or device (Write 3 bytes on handle 9)
2018-12-17T23:01:36.025811039Z	79	PC: 13e9c \| Find next file
2018-12-17T23:01:36.030124222Z	61	PC: 13e63 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T23:01:36.037528191Z	63	PC: 13e6f \| Read file or device (Read 3 bytes on handle 10)
2018-12-17T23:01:36.045011489Z	66	PC: 13e7c \| Move file pointer
2018-12-17T23:01:36.047114672Z	64	PC: 13e87 \| Write file or device (Write 96 bytes on handle 10)
2018-12-17T23:01:36.063325687Z	66	PC: 13e8f \| Move file pointer
2018-12-17T23:01:36.065085425Z	64	PC: 13e98 \| Write file or device (Write 3 bytes on handle 10)
2018-12-17T23:01:36.072425699Z	79	PC: 13e9c \| Find next file
2018-12-17T23:01:36.07594808Z	61	PC: 13e63 \| Open file (Filename = 'PAH.COM')
2018-12-17T23:01:36.083819263Z	63	PC: 13e6f \| Read file or device (Read 3 bytes on handle 11)
2018-12-17T23:01:36.090857083Z	66	PC: 13e7c \| Move file pointer
2018-12-17T23:01:36.093485268Z	64	PC: 13e87 \| Write file or device (Write 96 bytes on handle 11)
2018-12-17T23:01:36.09667283Z	66	PC: 13e8f \| Move file pointer
2018-12-17T23:01:36.09842572Z	64	PC: 13e98 \| Write file or device (Write 3 bytes on handle 11)
2018-12-17T23:01:36.102673168Z	79	PC: 13e9c \| Find next file
2018-12-17T23:01:36.105877427Z	61	PC: 13e63 \| Open file (Filename = 'TEST.COM')
2018-12-17T23:01:36.113146838Z	63	PC: 13e6f \| Read file or device (Read 3 bytes on handle 12)
2018-12-17T23:01:36.116770702Z	79	PC: 13e9c \| Find next file
2018-12-17T23:01:36.119579918Z	9	PC: 12a85 \| Display string (String= 'Sophos Ltd, Oxford sacrificial COM goat 1400H bytes long ')
2018-12-17T23:01:36.125898349Z	0	PC: 12a89 \| Program terminate