Sample viewer

vx.netlux.org/Virus.DOS.Vicky.Demon.1186

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T23:02:07.368100079Z 78 PC: 12a4c | Find first file
2018-12-17T23:02:07.376285389Z 67 PC: 12a90 | Get or set file attributes
2018-12-17T23:02:07.383053799Z 67 PC: 12a9e | Get or set file attributes
2018-12-17T23:02:07.405602969Z 61 PC: 12aa6 | Open file (Filename = 'SLEEP.COM')
2018-12-17T23:02:07.413720858Z 87 PC: 12ab2 | Get or set file date and time
2018-12-17T23:02:07.416391548Z 64 PC: 12ac7 | Write file or device (Write 1186 bytes on handle 5)
2018-12-17T23:02:07.425614555Z 87 PC: 12ad7 | Get or set file date and time
2018-12-17T23:02:07.427359598Z 62 PC: 12adb | Close file
2018-12-17T23:02:07.442695115Z 67 PC: 12ae8 | Get or set file attributes
2018-12-17T23:02:07.457410407Z 79 PC: 12a5f | Find next file
2018-12-17T23:02:07.460819105Z 67 PC: 12a90 | Get or set file attributes
2018-12-17T23:02:07.468435071Z 67 PC: 12a9e | Get or set file attributes
2018-12-17T23:02:07.479426063Z 61 PC: 12aa6 | Open file (Filename = 'PRINT.COM')
2018-12-17T23:02:07.486894548Z 87 PC: 12ab2 | Get or set file date and time
2018-12-17T23:02:07.489636049Z 64 PC: 12ac7 | Write file or device (Write 1186 bytes on handle 5)
2018-12-17T23:02:07.500620592Z 87 PC: 12ad7 | Get or set file date and time
2018-12-17T23:02:07.503484388Z 62 PC: 12adb | Close file
2018-12-17T23:02:07.513304514Z 67 PC: 12ae8 | Get or set file attributes
2018-12-17T23:02:07.525241175Z 79 PC: 12a5f | Find next file
2018-12-17T23:02:07.528780276Z 67 PC: 12a90 | Get or set file attributes
2018-12-17T23:02:07.535640925Z 67 PC: 12a9e | Get or set file attributes
2018-12-17T23:02:07.547562043Z 61 PC: 12aa6 | Open file (Filename = 'HELLO.COM')
2018-12-17T23:02:07.55531715Z 87 PC: 12ab2 | Get or set file date and time
2018-12-17T23:02:07.557265828Z 64 PC: 12ac7 | Write file or device (Write 1186 bytes on handle 5)
2018-12-17T23:02:07.565495082Z 87 PC: 12ad7 | Get or set file date and time
2018-12-17T23:02:07.567441456Z 62 PC: 12adb | Close file
2018-12-17T23:02:07.577190235Z 67 PC: 12ae8 | Get or set file attributes
2018-12-17T23:02:07.590567245Z 79 PC: 12a5f | Find next file
2018-12-17T23:02:07.594522596Z 67 PC: 12a90 | Get or set file attributes
2018-12-17T23:02:07.60131654Z 67 PC: 12a9e | Get or set file attributes
2018-12-17T23:02:07.613557261Z 61 PC: 12aa6 | Open file (Filename = 'PHANG.COM')
2018-12-17T23:02:07.621287618Z 87 PC: 12ab2 | Get or set file date and time
2018-12-17T23:02:07.623197237Z 64 PC: 12ac7 | Write file or device (Write 1186 bytes on handle 5)
2018-12-17T23:02:07.633158478Z 87 PC: 12ad7 | Get or set file date and time
2018-12-17T23:02:07.635932667Z 62 PC: 12adb | Close file
2018-12-17T23:02:07.645277251Z 67 PC: 12ae8 | Get or set file attributes
2018-12-17T23:02:07.657064999Z 79 PC: 12a5f | Find next file
2018-12-17T23:02:07.662185507Z 67 PC: 12a90 | Get or set file attributes
2018-12-17T23:02:07.669506846Z 67 PC: 12a9e | Get or set file attributes
2018-12-17T23:02:07.680902441Z 61 PC: 12aa6 | Open file (Filename = 'PRINTA~1.COM')
2018-12-17T23:02:07.689780236Z 87 PC: 12ab2 | Get or set file date and time
2018-12-17T23:02:07.691835193Z 64 PC: 12ac7 | Write file or device (Write 1186 bytes on handle 5)
2018-12-17T23:02:07.701708295Z 87 PC: 12ad7 | Get or set file date and time
2018-12-17T23:02:07.704750133Z 62 PC: 12adb | Close file
2018-12-17T23:02:07.715692099Z 67 PC: 12ae8 | Get or set file attributes
2018-12-17T23:02:07.727212519Z 79 PC: 12a5f | Find next file
2018-12-17T23:02:07.730817451Z 67 PC: 12a90 | Get or set file attributes
2018-12-17T23:02:07.738426726Z 67 PC: 12a9e | Get or set file attributes
2018-12-17T23:02:07.751633758Z 61 PC: 12aa6 | Open file (Filename = 'MANDEL.COM')
2018-12-17T23:02:07.759802346Z 87 PC: 12ab2 | Get or set file date and time
2018-12-17T23:02:07.76241523Z 64 PC: 12ac7 | Write file or device (Write 1186 bytes on handle 5)
2018-12-17T23:02:07.773131004Z 87 PC: 12ad7 | Get or set file date and time
2018-12-17T23:02:07.775274975Z 62 PC: 12adb | Close file
2018-12-17T23:02:07.785684372Z 67 PC: 12ae8 | Get or set file attributes
2018-12-17T23:02:07.797030908Z 79 PC: 12a5f | Find next file
2018-12-17T23:02:07.800421543Z 67 PC: 12a90 | Get or set file attributes
2018-12-17T23:02:07.808171406Z 67 PC: 12a9e | Get or set file attributes
2018-12-17T23:02:07.819822865Z 61 PC: 12aa6 | Open file (Filename = 'PAH.COM')
2018-12-17T23:02:07.837485255Z 87 PC: 12ab2 | Get or set file date and time
2018-12-17T23:02:07.840531311Z 64 PC: 12ac7 | Write file or device (Write 1186 bytes on handle 5)
2018-12-17T23:02:07.851065547Z 87 PC: 12ad7 | Get or set file date and time
2018-12-17T23:02:07.854142076Z 62 PC: 12adb | Close file
2018-12-17T23:02:07.869156653Z 67 PC: 12ae8 | Get or set file attributes
2018-12-17T23:02:07.880275508Z 79 PC: 12a5f | Find next file
2018-12-17T23:02:07.883422532Z 42 PC: 12a6c | Get date 0x12a6c: cmp al, 5
0x12a6e: je 0x12a74
0x12a70: mov ah, 0x4c
0x12a72: int 0x21
0x12a74: mov byte ptr [0x1b5], 0
0x12a79: nop
0x12a7a: jmp 0x12a7d
0x12a7c: nop
0x12a7d: mov ah, 9
0x12a7f: mov dx, 0x1e5
0x12a82: int 0x21
0x12a84: mov ah, 0x4c
0x12a86: int 0x21
0x12a88: mov dx, 0x9e
0x12a8b: mov ax, 0x4300
0x12a8e: int 0x21
0x12a90: mov word ptr [0x1b3], cx
0x12a94: nop
0x12a95: xor cx, cx
0x12a97: mov ax, 0x4301
2018-12-17T23:02:07.886006982Z 76 PC: 12a74 | Terminate with return code (Return code = '1')

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":14109,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:39:46.162951528Z 78 PC: 12a4c | Find first file
2018-12-25T12:39:46.169463497Z 67 PC: 12a90 | Get or set file attributes
2018-12-25T12:39:46.175297271Z 67 PC: 12a9e | Get or set file attributes
2018-12-25T12:39:46.190102688Z 61 PC: 12aa6 | Open file (Filename = 'SLEEP.COM')
2018-12-25T12:39:46.19745408Z 87 PC: 12ab2 | Get or set file date and time
2018-12-25T12:39:46.198817146Z 64 PC: 12ac7 | Write file or device (Write 1186 bytes on handle 5)
2018-12-25T12:39:46.207072462Z 87 PC: 12ad7 | Get or set file date and time
2018-12-25T12:39:46.208807831Z 62 PC: 12adb | Close file
2018-12-25T12:39:46.217375369Z 67 PC: 12ae8 | Get or set file attributes
2018-12-25T12:39:46.227051695Z 79 PC: 12a5f | Find next file
2018-12-25T12:39:46.230089379Z 67 PC: 12a90 | Get or set file attributes (See above)
2018-12-25T12:39:46.236387664Z 67 PC: 12a9e | Get or set file attributes (See above)
2018-12-25T12:39:46.246001578Z 61 PC: 12aa6 | Open file (See above)
2018-12-25T12:39:46.252527444Z 87 PC: 12ab2 | Get or set file date and time (See above)
2018-12-25T12:39:46.254791072Z 64 PC: 12ac7 | Write file or device (See above)
2018-12-25T12:39:46.274874291Z 87 PC: 12ad7 | Get or set file date and time (See above)
2018-12-25T12:39:46.27698783Z 62 PC: 12adb | Close file (See above)
2018-12-25T12:39:46.298406944Z 67 PC: 12ae8 | Get or set file attributes (See above)
2018-12-25T12:39:46.308407093Z 79 PC: 12a5f | Find next file (See above)
2018-12-25T12:39:46.311378449Z 67 PC: 12a90 | Get or set file attributes (See above)
2018-12-25T12:39:46.317805815Z 67 PC: 12a9e | Get or set file attributes (See above)
2018-12-25T12:39:46.32779283Z 61 PC: 12aa6 | Open file (See above)
2018-12-25T12:39:46.334261923Z 87 PC: 12ab2 | Get or set file date and time (See above)
2018-12-25T12:39:46.336821937Z 64 PC: 12ac7 | Write file or device (See above)
2018-12-25T12:39:46.345854102Z 87 PC: 12ad7 | Get or set file date and time (See above)
2018-12-25T12:39:46.34767864Z 62 PC: 12adb | Close file (See above)
2018-12-25T12:39:46.356921432Z 67 PC: 12ae8 | Get or set file attributes (See above)
2018-12-25T12:39:46.366752061Z 79 PC: 12a5f | Find next file (See above)
2018-12-25T12:39:46.369330738Z 67 PC: 12a90 | Get or set file attributes (See above)
2018-12-25T12:39:46.375446024Z 67 PC: 12a9e | Get or set file attributes (See above)
2018-12-25T12:39:46.385389661Z 61 PC: 12aa6 | Open file (See above)
2018-12-25T12:39:46.392355392Z 87 PC: 12ab2 | Get or set file date and time (See above)
2018-12-25T12:39:46.405922245Z 64 PC: 12ac7 | Write file or device (See above)
2018-12-25T12:39:46.414466439Z 87 PC: 12ad7 | Get or set file date and time (See above)
2018-12-25T12:39:46.416194571Z 62 PC: 12adb | Close file (See above)
2018-12-25T12:39:46.424370515Z 67 PC: 12ae8 | Get or set file attributes (See above)
2018-12-25T12:39:46.435399271Z 79 PC: 12a5f | Find next file (See above)
2018-12-25T12:39:46.438133035Z 67 PC: 12a90 | Get or set file attributes (See above)
2018-12-25T12:39:46.444035929Z 67 PC: 12a9e | Get or set file attributes (See above)
2018-12-25T12:39:46.46765495Z 61 PC: 12aa6 | Open file (See above)
2018-12-25T12:39:46.476382838Z 87 PC: 12ab2 | Get or set file date and time (See above)
2018-12-25T12:39:46.477809542Z 64 PC: 12ac7 | Write file or device (See above)
2018-12-25T12:39:46.487791188Z 87 PC: 12ad7 | Get or set file date and time (See above)
2018-12-25T12:39:46.489534079Z 62 PC: 12adb | Close file (See above)
2018-12-25T12:39:46.497788132Z 67 PC: 12ae8 | Get or set file attributes (See above)
2018-12-25T12:39:46.508570832Z 79 PC: 12a5f | Find next file (See above)
2018-12-25T12:39:46.511831168Z 67 PC: 12a90 | Get or set file attributes (See above)
2018-12-25T12:39:46.517708948Z 67 PC: 12a9e | Get or set file attributes (See above)
2018-12-25T12:39:46.527689965Z 61 PC: 12aa6 | Open file (See above)
2018-12-25T12:39:46.535120206Z 87 PC: 12ab2 | Get or set file date and time (See above)
2018-12-25T12:39:46.53676789Z 64 PC: 12ac7 | Write file or device (See above)
2018-12-25T12:39:46.54528986Z 87 PC: 12ad7 | Get or set file date and time (See above)
2018-12-25T12:39:46.548075629Z 62 PC: 12adb | Close file (See above)
2018-12-25T12:39:46.556275073Z 67 PC: 12ae8 | Get or set file attributes (See above)
2018-12-25T12:39:46.566652663Z 79 PC: 12a5f | Find next file (See above)
2018-12-25T12:39:46.570569632Z 67 PC: 12a90 | Get or set file attributes (See above)
2018-12-25T12:39:46.576369811Z 67 PC: 12a9e | Get or set file attributes (See above)
2018-12-25T12:39:46.586096509Z 61 PC: 12aa6 | Open file (See above)
2018-12-25T12:39:46.593584933Z 87 PC: 12ab2 | Get or set file date and time (See above)
2018-12-25T12:39:46.595539138Z 64 PC: 12ac7 | Write file or device (See above)
2018-12-25T12:39:46.604032838Z 87 PC: 12ad7 | Get or set file date and time (See above)
2018-12-25T12:39:46.606561204Z 62 PC: 12adb | Close file (See above)
2018-12-25T12:39:46.614400694Z 67 PC: 12ae8 | Get or set file attributes (See above)
2018-12-25T12:39:46.626894344Z 79 PC: 12a5f | Find next file (See above)
2018-12-25T12:39:46.630280274Z 42 PC: 12a6c | Get date 0x12a6c: cmp al, 5
0x12a6e: je 0x12a74
0x12a70: mov ah, 0x4c
0x12a72: int 0x21
0x12a74: mov byte ptr [0x1b5], 0
0x12a79: nop
0x12a7a: jmp 0x12a7d
0x12a7c: nop
0x12a7d: mov ah, 9
0x12a7f: mov dx, 0x1e5
0x12a82: int 0x21
0x12a84: mov ah, 0x4c
0x12a86: int 0x21
0x12a88: mov dx, 0x9e
0x12a8b: mov ax, 0x4300
0x12a8e: int 0x21
0x12a90: mov word ptr [0x1b3], cx
0x12a94: nop
0x12a95: xor cx, cx
0x12a97: mov ax, 0x4301
2018-12-25T12:39:46.632898338Z 76 PC: 12a74 | Terminate with return code (Return code = '2')

{"DateBased":true,"Day":4,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":14109,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:39:46.323067029Z 78 PC: 12a4c | Find first file
2018-12-25T12:39:46.3301523Z 67 PC: 12a90 | Get or set file attributes
2018-12-25T12:39:46.350360675Z 67 PC: 12a9e | Get or set file attributes
2018-12-25T12:39:46.371288825Z 61 PC: 12aa6 | Open file (Filename = 'SLEEP.COM')
2018-12-25T12:39:46.38460856Z 87 PC: 12ab2 | Get or set file date and time
2018-12-25T12:39:46.389328899Z 64 PC: 12ac7 | Write file or device (Write 1186 bytes on handle 5)
2018-12-25T12:39:46.398741985Z 87 PC: 12ad7 | Get or set file date and time
2018-12-25T12:39:46.400469102Z 62 PC: 12adb | Close file
2018-12-25T12:39:46.409750798Z 67 PC: 12ae8 | Get or set file attributes
2018-12-25T12:39:46.421798319Z 79 PC: 12a5f | Find next file
2018-12-25T12:39:46.424954103Z 67 PC: 12a90 | Get or set file attributes (See above)
2018-12-25T12:39:46.431858254Z 67 PC: 12a9e | Get or set file attributes (See above)
2018-12-25T12:39:46.44251318Z 61 PC: 12aa6 | Open file (See above)
2018-12-25T12:39:46.451910652Z 87 PC: 12ab2 | Get or set file date and time (See above)
2018-12-25T12:39:46.454001906Z 64 PC: 12ac7 | Write file or device (See above)
2018-12-25T12:39:46.4645912Z 87 PC: 12ad7 | Get or set file date and time (See above)
2018-12-25T12:39:46.474546246Z 62 PC: 12adb | Close file (See above)
2018-12-25T12:39:46.483771853Z 67 PC: 12ae8 | Get or set file attributes (See above)
2018-12-25T12:39:46.496458431Z 79 PC: 12a5f | Find next file (See above)
2018-12-25T12:39:46.500363809Z 67 PC: 12a90 | Get or set file attributes (See above)
2018-12-25T12:39:46.507803955Z 67 PC: 12a9e | Get or set file attributes (See above)
2018-12-25T12:39:46.520650345Z 61 PC: 12aa6 | Open file (See above)
2018-12-25T12:39:46.545557332Z 87 PC: 12ab2 | Get or set file date and time (See above)
2018-12-25T12:39:46.547657752Z 64 PC: 12ac7 | Write file or device (See above)
2018-12-25T12:39:46.557957204Z 87 PC: 12ad7 | Get or set file date and time (See above)
2018-12-25T12:39:46.560447074Z 62 PC: 12adb | Close file (See above)
2018-12-25T12:39:46.569938308Z 67 PC: 12ae8 | Get or set file attributes (See above)
2018-12-25T12:39:46.581666513Z 79 PC: 12a5f | Find next file (See above)
2018-12-25T12:39:46.585842533Z 67 PC: 12a90 | Get or set file attributes (See above)
2018-12-25T12:39:46.59220799Z 67 PC: 12a9e | Get or set file attributes (See above)
2018-12-25T12:39:46.603150075Z 61 PC: 12aa6 | Open file (See above)
2018-12-25T12:39:46.611124735Z 87 PC: 12ab2 | Get or set file date and time (See above)
2018-12-25T12:39:46.612849905Z 64 PC: 12ac7 | Write file or device (See above)
2018-12-25T12:39:46.622686596Z 87 PC: 12ad7 | Get or set file date and time (See above)
2018-12-25T12:39:46.625631005Z 62 PC: 12adb | Close file (See above)
2018-12-25T12:39:46.647669716Z 67 PC: 12ae8 | Get or set file attributes (See above)
2018-12-25T12:39:46.658837426Z 79 PC: 12a5f | Find next file (See above)
2018-12-25T12:39:46.662975776Z 67 PC: 12a90 | Get or set file attributes (See above)
2018-12-25T12:39:46.669673542Z 67 PC: 12a9e | Get or set file attributes (See above)
2018-12-25T12:39:46.6807909Z 61 PC: 12aa6 | Open file (See above)
2018-12-25T12:39:46.688935461Z 87 PC: 12ab2 | Get or set file date and time (See above)
2018-12-25T12:39:46.690912803Z 64 PC: 12ac7 | Write file or device (See above)
2018-12-25T12:39:46.700595275Z 87 PC: 12ad7 | Get or set file date and time (See above)
2018-12-25T12:39:46.70254335Z 62 PC: 12adb | Close file (See above)
2018-12-25T12:39:46.711839855Z 67 PC: 12ae8 | Get or set file attributes (See above)
2018-12-25T12:39:46.722374711Z 79 PC: 12a5f | Find next file (See above)
2018-12-25T12:39:46.725202304Z 67 PC: 12a90 | Get or set file attributes (See above)
2018-12-25T12:39:46.731689554Z 67 PC: 12a9e | Get or set file attributes (See above)
2018-12-25T12:39:46.742099645Z 61 PC: 12aa6 | Open file (See above)
2018-12-25T12:39:46.75500488Z 87 PC: 12ab2 | Get or set file date and time (See above)
2018-12-25T12:39:46.75760284Z 64 PC: 12ac7 | Write file or device (See above)
2018-12-25T12:39:46.767558809Z 87 PC: 12ad7 | Get or set file date and time (See above)
2018-12-25T12:39:46.769615163Z 62 PC: 12adb | Close file (See above)
2018-12-25T12:39:46.77917317Z 67 PC: 12ae8 | Get or set file attributes (See above)
2018-12-25T12:39:46.790548685Z 79 PC: 12a5f | Find next file (See above)
2018-12-25T12:39:46.793497245Z 67 PC: 12a90 | Get or set file attributes (See above)
2018-12-25T12:39:46.801145764Z 67 PC: 12a9e | Get or set file attributes (See above)
2018-12-25T12:39:46.812615672Z 61 PC: 12aa6 | Open file (See above)
2018-12-25T12:39:46.826086817Z 87 PC: 12ab2 | Get or set file date and time (See above)
2018-12-25T12:39:46.827925865Z 64 PC: 12ac7 | Write file or device (See above)
2018-12-25T12:39:46.83865217Z 87 PC: 12ad7 | Get or set file date and time (See above)
2018-12-25T12:39:46.840346658Z 62 PC: 12adb | Close file (See above)
2018-12-25T12:39:46.849446181Z 67 PC: 12ae8 | Get or set file attributes (See above)
2018-12-25T12:39:46.861186618Z 79 PC: 12a5f | Find next file (See above)
2018-12-25T12:39:46.864421156Z 42 PC: 12a6c | Get date 0x12a6c: cmp al, 5
0x12a6e: je 0x12a74
0x12a70: mov ah, 0x4c
0x12a72: int 0x21
0x12a74: mov byte ptr [0x1b5], 0
0x12a79: nop
0x12a7a: jmp 0x12a7d
0x12a7c: nop
0x12a7d: mov ah, 9
0x12a7f: mov dx, 0x1e5
0x12a82: int 0x21
0x12a84: mov ah, 0x4c
0x12a86: int 0x21
0x12a88: mov dx, 0x9e
0x12a8b: mov ax, 0x4300
0x12a8e: int 0x21
0x12a90: mov word ptr [0x1b3], cx
0x12a94: nop
0x12a95: xor cx, cx
0x12a97: mov ax, 0x4301
2018-12-25T12:39:46.867364878Z 9 PC: 12a84 | Display string (Could not find end pointer)
2018-12-25T12:39:46.908555205Z 76 PC: 12a88 | Terminate with return code (Return code = '36')