Sample viewer

vx.netlux.org/Virus.DOS.Voodoo.3071

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T23:02:23.764354385Z 72 PC: 138df | Allocate memory
2018-12-17T23:02:23.767102399Z 73 PC: 138df | Release memory
2018-12-17T23:02:23.770071327Z 72 PC: 138df | Allocate memory
2018-12-17T23:02:23.772674789Z 72 PC: 138df | Allocate memory
2018-12-17T23:02:23.775131765Z 72 PC: 138df | Allocate memory
2018-12-17T23:02:23.778046031Z 37 PC: 13820 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:02:23.77973829Z 67 PC: 138df | Get or set file attributes
2018-12-17T23:02:23.786499745Z 71 PC: 13853 | Get current directory
2018-12-17T23:02:23.791001243Z 47 PC: 138df | Get disk transfer address
2018-12-17T23:02:23.799533734Z 26 PC: 138df | Set disk transfer address
2018-12-17T23:02:23.800856249Z 78 PC: 138df | Find first file
2018-12-17T23:02:23.807803272Z 26 PC: 138df | Set disk transfer address
2018-12-17T23:02:23.810568598Z 47 PC: 138df | Get disk transfer address
2018-12-17T23:02:23.813030103Z 26 PC: 138df | Set disk transfer address
2018-12-17T23:02:23.814983704Z 78 PC: 138df | Find first file
2018-12-17T23:02:23.821934274Z 67 PC: 138df | Get or set file attributes
2018-12-17T23:02:23.842728244Z 79 PC: 138df | Find next file
2018-12-17T23:02:23.846481696Z 67 PC: 138df | Get or set file attributes
2018-12-17T23:02:23.858058338Z 79 PC: 138df | Find next file
2018-12-17T23:02:23.861458627Z 67 PC: 138df | Get or set file attributes
2018-12-17T23:02:23.872885116Z 79 PC: 138df | Find next file
2018-12-17T23:02:23.877599494Z 67 PC: 138df | Get or set file attributes
2018-12-17T23:02:23.889209899Z 79 PC: 138df | Find next file
2018-12-17T23:02:23.892288844Z 79 PC: 138df | Find next file
2018-12-17T23:02:23.895868851Z 67 PC: 138df | Get or set file attributes
2018-12-17T23:02:23.906468657Z 26 PC: 138df | Set disk transfer address
2018-12-17T23:02:23.908087268Z 61 PC: 138df | Open file (Filename = 'SLEEP.COM')
2018-12-17T23:02:23.916594292Z 66 PC: 138df | Move file pointer
2018-12-17T23:02:23.918574453Z 66 PC: 138df | Move file pointer
2018-12-17T23:02:23.920324972Z 63 PC: 138df | Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:02:23.930661022Z 66 PC: 138df | Move file pointer
2018-12-17T23:02:23.932668835Z 64 PC: 138df | Write file or device (Write 3539 bytes on handle 5)
2018-12-17T23:02:23.947990153Z 66 PC: 138df | Move file pointer
2018-12-17T23:02:23.950174457Z 64 PC: 138df | Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:02:23.959012573Z 87 PC: 138df | Get or set file date and time
2018-12-17T23:02:23.96144311Z 87 PC: 138df | Get or set file date and time
2018-12-17T23:02:23.96455169Z 62 PC: 138df | Close file
2018-12-17T23:02:23.974256465Z 67 PC: 138df | Get or set file attributes
2018-12-17T23:02:23.979705473Z 61 PC: 138df | Open file (Filename = 'PRINT.COM')
2018-12-17T23:02:23.987662784Z 66 PC: 138df | Move file pointer
2018-12-17T23:02:23.990276606Z 66 PC: 138df | Move file pointer
2018-12-17T23:02:23.992138043Z 63 PC: 138df | Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:02:24.001521514Z 66 PC: 138df | Move file pointer
2018-12-17T23:02:24.004501773Z 64 PC: 138df | Write file or device (Write 3539 bytes on handle 5)
2018-12-17T23:02:24.013984341Z 66 PC: 138df | Move file pointer
2018-12-17T23:02:24.015808077Z 64 PC: 138df | Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:02:24.023916242Z 87 PC: 138df | Get or set file date and time
2018-12-17T23:02:24.025797146Z 87 PC: 138df | Get or set file date and time
2018-12-17T23:02:24.028670935Z 62 PC: 138df | Close file
2018-12-17T23:02:24.037876973Z 67 PC: 138df | Get or set file attributes
2018-12-17T23:02:24.04855711Z 61 PC: 138df | Open file (Filename = 'HELLO.COM')
2018-12-17T23:02:24.055631322Z 66 PC: 138df | Move file pointer
2018-12-17T23:02:24.057485295Z 66 PC: 138df | Move file pointer
2018-12-17T23:02:24.059560655Z 63 PC: 138df | Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:02:24.068552209Z 66 PC: 138df | Move file pointer
2018-12-17T23:02:24.070119955Z 64 PC: 138df | Write file or device (Write 3540 bytes on handle 5)
2018-12-17T23:02:24.225166304Z 66 PC: 138df | Move file pointer
2018-12-17T23:02:24.227019286Z 64 PC: 138df | Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:02:24.234490163Z 87 PC: 138df | Get or set file date and time
2018-12-17T23:02:24.237089217Z 87 PC: 138df | Get or set file date and time
2018-12-17T23:02:24.239610134Z 62 PC: 138df | Close file
2018-12-17T23:02:24.300328939Z 67 PC: 138df | Get or set file attributes
2018-12-17T23:02:24.306676776Z 61 PC: 138df | Open file (Filename = 'PHANG.COM')
2018-12-17T23:02:24.318493228Z 66 PC: 138df | Move file pointer
2018-12-17T23:02:24.320207179Z 66 PC: 138df | Move file pointer
2018-12-17T23:02:24.322037709Z 63 PC: 138df | Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:02:24.332062404Z 66 PC: 138df | Move file pointer
2018-12-17T23:02:24.333669994Z 64 PC: 138df | Write file or device (Write 3537 bytes on handle 5)
2018-12-17T23:02:24.361030904Z 66 PC: 138df | Move file pointer
2018-12-17T23:02:24.364327477Z 64 PC: 138df | Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:02:24.37160952Z 87 PC: 138df | Get or set file date and time
2018-12-17T23:02:24.373443335Z 87 PC: 138df | Get or set file date and time
2018-12-17T23:02:24.376226765Z 62 PC: 138df | Close file
2018-12-17T23:02:24.405000899Z 67 PC: 138df | Get or set file attributes
2018-12-17T23:02:24.425003262Z 61 PC: 138df | Open file (Filename = 'MANDEL.COM')
2018-12-17T23:02:24.433199071Z 66 PC: 138df | Move file pointer
2018-12-17T23:02:24.43546045Z 66 PC: 138df | Move file pointer
2018-12-17T23:02:24.437210629Z 63 PC: 138df | Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:02:24.447273667Z 66 PC: 138df | Move file pointer
2018-12-17T23:02:24.449152407Z 64 PC: 138df | Write file or device (Write 3543 bytes on handle 5)
2018-12-17T23:02:24.465205148Z 66 PC: 138df | Move file pointer
2018-12-17T23:02:24.467234351Z 64 PC: 138df | Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:02:24.475197994Z 87 PC: 138df | Get or set file date and time
2018-12-17T23:02:24.477044754Z 87 PC: 138df | Get or set file date and time
2018-12-17T23:02:24.47902808Z 62 PC: 138df | Close file
2018-12-17T23:02:24.488673905Z 67 PC: 138df | Get or set file attributes
2018-12-17T23:02:24.493984933Z 59 PC: 13862 | Change current directory
2018-12-17T23:02:24.498461905Z 47 PC: 138df | Get disk transfer address
2018-12-17T23:02:24.500847778Z 26 PC: 138df | Set disk transfer address
2018-12-17T23:02:24.50258919Z 78 PC: 138df | Find first file
2018-12-17T23:02:24.509084434Z 26 PC: 138df | Set disk transfer address
2018-12-17T23:02:24.51112581Z 47 PC: 138df | Get disk transfer address
2018-12-17T23:02:24.512678938Z 26 PC: 138df | Set disk transfer address
2018-12-17T23:02:24.514189376Z 78 PC: 138df | Find first file
2018-12-17T23:02:24.521427245Z 79 PC: 138df | Find next file
2018-12-17T23:02:24.524727225Z 79 PC: 138df | Find next file
2018-12-17T23:02:24.527738784Z 79 PC: 138df | Find next file
2018-12-17T23:02:24.530739583Z 79 PC: 138df | Find next file
2018-12-17T23:02:24.534232215Z 79 PC: 138df | Find next file
2018-12-17T23:02:24.537063695Z 79 PC: 138df | Find next file
2018-12-17T23:02:24.539912417Z 79 PC: 138df | Find next file
2018-12-17T23:02:24.543562395Z 67 PC: 138df | Get or set file attributes
2018-12-17T23:02:24.557362064Z 79 PC: 138df | Find next file
2018-12-17T23:02:24.560265769Z 26 PC: 138df | Set disk transfer address
2018-12-17T23:02:24.562281877Z 61 PC: 138df | Open file (Filename = 'TEST.COM')
2018-12-17T23:02:24.569289024Z 66 PC: 138df | Move file pointer
2018-12-17T23:02:24.570973288Z 66 PC: 138df | Move file pointer
2018-12-17T23:02:24.574639376Z 63 PC: 138df | Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:02:24.583975488Z 66 PC: 138df | Move file pointer
2018-12-17T23:02:24.585993079Z 64 PC: 138df | Write file or device (Write 3506 bytes on handle 5)
2018-12-17T23:02:24.597264788Z 66 PC: 138df | Move file pointer
2018-12-17T23:02:24.599039603Z 64 PC: 138df | Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:02:24.602243793Z 87 PC: 138df | Get or set file date and time
2018-12-17T23:02:24.605163128Z 87 PC: 138df | Get or set file date and time
2018-12-17T23:02:24.606892638Z 62 PC: 138df | Close file
2018-12-17T23:02:24.615440398Z 67 PC: 138df | Get or set file attributes
2018-12-17T23:02:24.621364228Z 59 PC: 1386e | Change current directory
2018-12-17T23:02:24.624055245Z 42 PC: 138df | Get date 0x138df: pop si
0x138e0: ret
0x138e1: mov ah, 0x49
0x138e3: int 0x21
0x138e5: ret
0x138e6: mov al, 3
0x138e8: iret
0x138e9: add byte ptr [bx + si], al
0x138eb: call 0x238bd
0x138ee: call 0x238e1
0x138f1: cmp byte ptr cs:[bp + 5], 0
0x138f7: jne 0x138fb
0x138f9: pop ax
0x138fa: pop ax
0x138fb: pop ax
0x138fc: mov word ptr cs:[bp + 0xb8e], ax
0x13901: cmp byte ptr cs:[bp + 5], 0
0x13907: je 0x13929
0x13909: mov bx, word ptr cs:[bp + 0xb8e]
0x1390e: pop es
2018-12-17T23:02:24.627590257Z 37 PC: 138ce | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:02:24.629485669Z 73 PC: 138e5 | Release memory