Sample viewer

vx.netlux.org/Virus.DOS.HLLP.Koles.7754

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:02:26.58441119Z	53	PC: 13d0a \| Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T23:02:26.585856534Z	53	PC: 13d0a \| Get interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T23:02:26.586884443Z	53	PC: 13d0a \| Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T23:02:26.587746432Z	53	PC: 13d0a \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T23:02:26.588828572Z	53	PC: 13d0a \| Get interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T23:02:26.590231866Z	53	PC: 13d0a \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:02:26.591064784Z	53	PC: 13d0a \| Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T23:02:26.592120054Z	53	PC: 13d0a \| Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T23:02:26.593535791Z	53	PC: 13d0a \| Get interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T23:02:26.594537164Z	53	PC: 13d0a \| Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T23:02:26.59567212Z	53	PC: 13d0a \| Get interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T23:02:26.597143425Z	53	PC: 13d0a \| Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T23:02:26.598234776Z	53	PC: 13d0a \| Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T23:02:26.599389Z	53	PC: 13d0a \| Get interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T23:02:26.601102152Z	53	PC: 13d0a \| Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T23:02:26.602330721Z	53	PC: 13d0a \| Get interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T23:02:26.603520729Z	53	PC: 13d0a \| Get interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T23:02:26.605376756Z	53	PC: 13d0a \| Get interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T23:02:26.606440607Z	53	PC: 13d0a \| Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T23:02:26.607475373Z	37	PC: 13d1f \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T23:02:26.615062422Z	37	PC: 13d27 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T23:02:26.616360803Z	37	PC: 13d2f \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:02:26.617557284Z	37	PC: 13d37 \| Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T23:02:26.619992912Z	68	PC: 14ab2 \| I/O control for devices (Set for = '4�3�!��<v��A�6��~��04��r ��r ��4��0�!P2�2�X��2�4��3�r&�=')
2018-12-17T23:02:26.621518586Z	53	PC: 13625 \| Get interrupt vector (Interrupt = '51' AKA 'Get or set Ctrl-Break')
2018-12-17T23:02:26.733271227Z	64	PC: 1442f \| Write file or device (Write 0 bytes on handle 1)
2018-12-17T23:02:26.735505232Z	37	PC: 13e61 \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T23:02:26.736644518Z	37	PC: 13e61 \| Set interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T23:02:26.737687291Z	37	PC: 13e61 \| Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T23:02:26.739550758Z	37	PC: 13e61 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T23:02:26.74066512Z	37	PC: 13e61 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T23:02:26.741747648Z	37	PC: 13e61 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:02:26.743580351Z	37	PC: 13e61 \| Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T23:02:26.744954831Z	37	PC: 13e61 \| Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T23:02:26.746287449Z	37	PC: 13e61 \| Set interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T23:02:26.747589293Z	37	PC: 13e61 \| Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T23:02:26.749595733Z	37	PC: 13e61 \| Set interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T23:02:26.750904208Z	37	PC: 13e61 \| Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T23:02:26.752279796Z	37	PC: 13e61 \| Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T23:02:26.754345991Z	37	PC: 13e61 \| Set interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T23:02:26.755669511Z	37	PC: 13e61 \| Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T23:02:26.756972149Z	37	PC: 13e61 \| Set interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T23:02:26.759318126Z	37	PC: 13e61 \| Set interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T23:02:26.760524026Z	37	PC: 13e61 \| Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T23:02:26.76177767Z	37	PC: 13e61 \| Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T23:02:26.763594389Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.765813146Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.767986436Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.770981147Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.773147462Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.775296732Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.778320204Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.78050765Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.782628436Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.784943955Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.788507449Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.79063884Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.792777577Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.795777614Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.797931793Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.800073353Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.803082933Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.805253575Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.807432852Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.810441927Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.812560863Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.814734564Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.818103272Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.820234763Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.822345633Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.824853093Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.826852709Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.828767729Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.83112719Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.832935758Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.834654347Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.836907432Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.838669925Z	6	PC: 13ee8 \| Direct console I/O
2018-12-17T23:02:26.842002103Z	76	PC: 13ea0 \| Terminate with return code (Return code = '200')