Sample viewer

vx.netlux.org/Virus.DOS.Iper.1062

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T23:02:37.320794212Z 61 PC: 17a7f | Open file (Filename = 'C:\COMMAND.COM')
2018-12-17T23:02:37.327676683Z 66 PC: 17a8e | Move file pointer
2018-12-17T23:02:37.331034933Z 63 PC: 17aa2 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:02:37.334295219Z 66 PC: 17ac0 | Move file pointer
2018-12-17T23:02:37.336174229Z 63 PC: 17ad4 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:02:37.340585358Z 87 PC: 17af0 | Get or set file date and time
2018-12-17T23:02:37.342567111Z 66 PC: 17b07 | Move file pointer
2018-12-17T23:02:37.34436028Z 66 PC: 17b1e | Move file pointer
2018-12-17T23:02:37.351889687Z 64 PC: 17b30 | Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:02:37.355201139Z 66 PC: 17b3b | Move file pointer
2018-12-17T23:02:37.357009948Z 64 PC: 17b5a | Write file or device (Write 1059 bytes on handle 5)
2018-12-17T23:02:37.780347295Z 66 PC: 17b68 | Move file pointer
2018-12-17T23:02:37.782857101Z 64 PC: 17b89 | Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:02:37.786122717Z 87 PC: 17b9c | Get or set file date and time
2018-12-17T23:02:37.788272406Z 62 PC: 17ba2 | Close file
2018-12-17T23:02:37.798234964Z 26 PC: 178e2 | Set disk transfer address
2018-12-17T23:02:37.799777072Z 78 PC: 178f2 | Find first file
2018-12-17T23:02:37.806512327Z 61 PC: 17a7f | Open file (Filename = 'SLEEP.COM')
2018-12-17T23:02:37.815023619Z 66 PC: 17a8e | Move file pointer
2018-12-17T23:02:37.816924891Z 63 PC: 17aa2 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:02:37.824144526Z 66 PC: 17ac0 | Move file pointer
2018-12-17T23:02:37.826538173Z 63 PC: 17ad4 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:02:37.829585679Z 62 PC: 17ba2 | Close file
2018-12-17T23:02:37.831813996Z 79 PC: 17927 | Find next file
2018-12-17T23:02:37.835839119Z 61 PC: 17a7f | Open file (Filename = 'PRINT.COM')
2018-12-17T23:02:37.843103999Z 66 PC: 17a8e | Move file pointer
2018-12-17T23:02:37.844977679Z 63 PC: 17aa2 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:02:37.852532303Z 66 PC: 17ac0 | Move file pointer
2018-12-17T23:02:37.854545646Z 63 PC: 17ad4 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:02:37.857103593Z 62 PC: 17ba2 | Close file
2018-12-17T23:02:37.859913181Z 79 PC: 17927 | Find next file
2018-12-17T23:02:37.864318519Z 61 PC: 17a7f | Open file (Filename = 'HELLO.COM')
2018-12-17T23:02:37.87151478Z 66 PC: 17a8e | Move file pointer
2018-12-17T23:02:37.874023253Z 63 PC: 17aa2 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:02:37.881634764Z 66 PC: 17ac0 | Move file pointer
2018-12-17T23:02:37.883754557Z 63 PC: 17ad4 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:02:37.887513179Z 62 PC: 17ba2 | Close file
2018-12-17T23:02:37.891982216Z 78 PC: 1793d | Find first file
2018-12-17T23:02:37.901894239Z 61 PC: 17a7f | Open file (Filename = 'C:\DOS\EDIT.COM')
2018-12-17T23:02:37.910255048Z 66 PC: 17a8e | Move file pointer
2018-12-17T23:02:37.912477975Z 63 PC: 17aa2 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:02:37.919145483Z 66 PC: 17ac0 | Move file pointer
2018-12-17T23:02:37.921201316Z 63 PC: 17ad4 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:02:37.925147941Z 62 PC: 17ba2 | Close file
2018-12-17T23:02:37.927232457Z 79 PC: 17972 | Find next file
2018-12-17T23:02:37.930717175Z 61 PC: 17a7f | Open file (Filename = 'C:\DOS\FORMAT.COM')
2018-12-17T23:02:37.939898455Z 66 PC: 17a8e | Move file pointer
2018-12-17T23:02:37.942048956Z 63 PC: 17aa2 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:02:37.948849453Z 66 PC: 17ac0 | Move file pointer
2018-12-17T23:02:37.951369428Z 63 PC: 17ad4 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:02:37.957674715Z 62 PC: 17ba2 | Close file
2018-12-17T23:02:37.959772607Z 79 PC: 17972 | Find next file
2018-12-17T23:02:37.963639052Z 61 PC: 17a7f | Open file (Filename = 'C:\DOS\KEYB.COM')
2018-12-17T23:02:37.971012005Z 66 PC: 17a8e | Move file pointer
2018-12-17T23:02:37.972594358Z 63 PC: 17aa2 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:02:37.979708555Z 66 PC: 17ac0 | Move file pointer
2018-12-17T23:02:37.981672444Z 63 PC: 17ad4 | Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:02:37.988001907Z 87 PC: 17af0 | Get or set file date and time
2018-12-17T23:02:37.990405363Z 66 PC: 17b07 | Move file pointer
2018-12-17T23:02:37.992340148Z 66 PC: 17b1e | Move file pointer
2018-12-17T23:02:37.99387369Z 64 PC: 17b30 | Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:02:37.996980887Z 66 PC: 17b3b | Move file pointer
2018-12-17T23:02:37.999293092Z 64 PC: 17b5a | Write file or device (Write 1059 bytes on handle 5)
2018-12-17T23:02:38.008457391Z 66 PC: 17b68 | Move file pointer
2018-12-17T23:02:38.010361679Z 64 PC: 17b89 | Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:02:38.014152962Z 87 PC: 17b9c | Get or set file date and time
2018-12-17T23:02:38.016084341Z 62 PC: 17ba2 | Close file
2018-12-17T23:02:38.024330334Z 42 PC: 17978 | Get date 0x17978: cmp dl, 0x11
0x1797b: jne 0x179cf
0x1797d: mov ax, cs
0x1797f: mov ds, ax
0x17981: xor ax, ax
0x17983: mov es, ax
0x17985: cmp byte ptr es:[0x415], 0x55
0x1798b: je 0x17996
0x1798d: mov byte ptr es:[0x415], 0x55
0x17993: jmp 0x179cf
0x17995: nop
0x17996: mov ax, 0x3513
0x17999: int 0x21
0x1799b: mov ax, bx
0x1799d: cmp ax, 0x505
0x179a0: je 0x179cf
0x179a2: call 0x17a21
0x179a5: add bx, 0x78
0x179a9: mov word ptr [bx], ax
0x179ab: mov word ptr [bx + 2], es
2018-12-17T23:02:38.028258996Z 9 PC: 1785e | Display string (String= 'Hello - Copyright S & S International, 1990 ')

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":14276,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:40:17.233878244Z 61 PC: 17a7f | Open file (Filename = 'C:\COMMAND.COM')
2018-12-25T12:40:17.240548978Z 66 PC: 17a8e | Move file pointer
2018-12-25T12:40:17.241930729Z 63 PC: 17aa2 | Read file or device (Read 4 bytes on handle 5)
2018-12-25T12:40:17.244763523Z 66 PC: 17ac0 | Move file pointer
2018-12-25T12:40:17.247057899Z 63 PC: 17ad4 | Read file or device (Read 4 bytes on handle 5)
2018-12-25T12:40:17.248754557Z 87 PC: 17af0 | Get or set file date and time
2018-12-25T12:40:17.249812834Z 66 PC: 17b07 | Move file pointer
2018-12-25T12:40:17.251219801Z 66 PC: 17b1e | Move file pointer
2018-12-25T12:40:17.257927763Z 64 PC: 17b30 | Write file or device (Write 3 bytes on handle 5)
2018-12-25T12:40:17.259640419Z 66 PC: 17b3b | Move file pointer
2018-12-25T12:40:17.260810881Z 64 PC: 17b5a | Write file or device (Write 1059 bytes on handle 5)
2018-12-25T12:40:18.209124231Z 66 PC: 17b68 | Move file pointer
2018-12-25T12:40:18.211241764Z 64 PC: 17b89 | Write file or device (Write 3 bytes on handle 5)
2018-12-25T12:40:18.222703609Z 87 PC: 17b9c | Get or set file date and time
2018-12-25T12:40:18.227943159Z 62 PC: 17ba2 | Close file
2018-12-25T12:40:18.238085149Z 26 PC: 178e2 | Set disk transfer address
2018-12-25T12:40:18.240127621Z 78 PC: 178f2 | Find first file
2018-12-25T12:40:18.246167366Z 61 PC: 17a7f | Open file (See above)
2018-12-25T12:40:18.253309671Z 66 PC: 17a8e | Move file pointer (See above)
2018-12-25T12:40:18.255246366Z 63 PC: 17aa2 | Read file or device (See above)
2018-12-25T12:40:18.261979109Z 66 PC: 17ac0 | Move file pointer (See above)
2018-12-25T12:40:18.265099625Z 63 PC: 17ad4 | Read file or device (See above)
2018-12-25T12:40:18.267649809Z 62 PC: 17ba2 | Close file (See above)
2018-12-25T12:40:18.269767622Z 79 PC: 17927 | Find next file
2018-12-25T12:40:18.273025376Z 61 PC: 17a7f | Open file (See above)
2018-12-25T12:40:18.280085715Z 66 PC: 17a8e | Move file pointer (See above)
2018-12-25T12:40:18.281788875Z 63 PC: 17aa2 | Read file or device (See above)
2018-12-25T12:40:18.28921433Z 66 PC: 17ac0 | Move file pointer (See above)
2018-12-25T12:40:18.290998844Z 63 PC: 17ad4 | Read file or device (See above)
2018-12-25T12:40:18.293748436Z 62 PC: 17ba2 | Close file (See above)
2018-12-25T12:40:18.296062097Z 79 PC: 17927 | Find next file (See above)
2018-12-25T12:40:18.300272739Z 61 PC: 17a7f | Open file (See above)
2018-12-25T12:40:18.306972258Z 66 PC: 17a8e | Move file pointer (See above)
2018-12-25T12:40:18.309449472Z 63 PC: 17aa2 | Read file or device (See above)
2018-12-25T12:40:18.316141642Z 66 PC: 17ac0 | Move file pointer (See above)
2018-12-25T12:40:18.317824658Z 63 PC: 17ad4 | Read file or device (See above)
2018-12-25T12:40:18.320783571Z 62 PC: 17ba2 | Close file (See above)
2018-12-25T12:40:18.323286277Z 78 PC: 1793d | Find first file
2018-12-25T12:40:18.332249822Z 61 PC: 17a7f | Open file (See above)
2018-12-25T12:40:18.339581426Z 66 PC: 17a8e | Move file pointer (See above)
2018-12-25T12:40:18.342311764Z 63 PC: 17aa2 | Read file or device (See above)
2018-12-25T12:40:18.348076921Z 66 PC: 17ac0 | Move file pointer (See above)
2018-12-25T12:40:18.349442406Z 63 PC: 17ad4 | Read file or device (See above)
2018-12-25T12:40:18.352764755Z 62 PC: 17ba2 | Close file (See above)
2018-12-25T12:40:18.354577986Z 79 PC: 17972 | Find next file
2018-12-25T12:40:18.357880698Z 61 PC: 17a7f | Open file (See above)
2018-12-25T12:40:18.365536848Z 66 PC: 17a8e | Move file pointer (See above)
2018-12-25T12:40:18.367010809Z 63 PC: 17aa2 | Read file or device (See above)
2018-12-25T12:40:18.373707083Z 66 PC: 17ac0 | Move file pointer (See above)
2018-12-25T12:40:18.376225983Z 63 PC: 17ad4 | Read file or device (See above)
2018-12-25T12:40:18.382065122Z 62 PC: 17ba2 | Close file (See above)
2018-12-25T12:40:18.384276601Z 79 PC: 17972 | Find next file (See above)
2018-12-25T12:40:18.388332177Z 61 PC: 17a7f | Open file (See above)
2018-12-25T12:40:18.395599212Z 66 PC: 17a8e | Move file pointer (See above)
2018-12-25T12:40:18.396980394Z 63 PC: 17aa2 | Read file or device (See above)
2018-12-25T12:40:18.403125813Z 66 PC: 17ac0 | Move file pointer (See above)
2018-12-25T12:40:18.404443839Z 63 PC: 17ad4 | Read file or device (See above)
2018-12-25T12:40:18.410251205Z 87 PC: 17af0 | Get or set file date and time (See above)
2018-12-25T12:40:18.412599284Z 66 PC: 17b07 | Move file pointer (See above)
2018-12-25T12:40:18.414226511Z 66 PC: 17b1e | Move file pointer (See above)
2018-12-25T12:40:18.416220571Z 64 PC: 17b30 | Write file or device (See above)
2018-12-25T12:40:18.419075084Z 66 PC: 17b3b | Move file pointer (See above)
2018-12-25T12:40:18.420338455Z 64 PC: 17b5a | Write file or device (See above)
2018-12-25T12:40:18.425614186Z 66 PC: 17b68 | Move file pointer (See above)
2018-12-25T12:40:18.427495721Z 64 PC: 17b89 | Write file or device (See above)
2018-12-25T12:40:18.429426226Z 87 PC: 17b9c | Get or set file date and time (See above)
2018-12-25T12:40:18.43064558Z 62 PC: 17ba2 | Close file (See above)
2018-12-25T12:40:18.436493769Z 42 PC: 17978 | Get date 0x17978: cmp dl, 0x11
0x1797b: jne 0x179cf
0x1797d: mov ax, cs
0x1797f: mov ds, ax
0x17981: xor ax, ax
0x17983: mov es, ax
0x17985: cmp byte ptr es:[0x415], 0x55
0x1798b: je 0x17996
0x1798d: mov byte ptr es:[0x415], 0x55
0x17993: jmp 0x179cf
0x17995: nop
0x17996: mov ax, 0x3513
0x17999: int 0x21
0x1799b: mov ax, bx
0x1799d: cmp ax, 0x505
0x179a0: je 0x179cf
0x179a2: call 0x17a21
0x179a5: add bx, 0x78
0x179a9: mov word ptr [bx], ax
0x179ab: mov word ptr [bx + 2], es
2018-12-25T12:40:18.438147053Z 9 PC: 1785e | Display string (String= 'Hello - Copyright S & S International, 1990 ')

{"DateBased":true,"Day":17,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":14276,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:40:17.24469922Z 61 PC: 17a7f | Open file (Filename = 'C:\COMMAND.COM')
2018-12-25T12:40:17.251126897Z 66 PC: 17a8e | Move file pointer
2018-12-25T12:40:17.252491189Z 63 PC: 17aa2 | Read file or device (Read 4 bytes on handle 5)
2018-12-25T12:40:17.255781532Z 66 PC: 17ac0 | Move file pointer
2018-12-25T12:40:17.260300861Z 63 PC: 17ad4 | Read file or device (Read 4 bytes on handle 5)
2018-12-25T12:40:17.263178106Z 87 PC: 17af0 | Get or set file date and time
2018-12-25T12:40:17.264894376Z 66 PC: 17b07 | Move file pointer
2018-12-25T12:40:17.267131174Z 66 PC: 17b1e | Move file pointer
2018-12-25T12:40:17.269082947Z 64 PC: 17b30 | Write file or device (Write 3 bytes on handle 5)
2018-12-25T12:40:17.272038979Z 66 PC: 17b3b | Move file pointer
2018-12-25T12:40:17.274890152Z 64 PC: 17b5a | Write file or device (Write 1059 bytes on handle 5)
2018-12-25T12:40:18.217465115Z 66 PC: 17b68 | Move file pointer
2018-12-25T12:40:18.219623395Z 64 PC: 17b89 | Write file or device (Write 3 bytes on handle 5)
2018-12-25T12:40:18.223614434Z 87 PC: 17b9c | Get or set file date and time
2018-12-25T12:40:18.22732518Z 62 PC: 17ba2 | Close file
2018-12-25T12:40:18.235913815Z 26 PC: 178e2 | Set disk transfer address
2018-12-25T12:40:18.238399761Z 78 PC: 178f2 | Find first file
2018-12-25T12:40:18.245448289Z 61 PC: 17a7f | Open file (See above)
2018-12-25T12:40:18.252150656Z 66 PC: 17a8e | Move file pointer (See above)
2018-12-25T12:40:18.253791252Z 63 PC: 17aa2 | Read file or device (See above)
2018-12-25T12:40:18.261358368Z 66 PC: 17ac0 | Move file pointer (See above)
2018-12-25T12:40:18.262888298Z 63 PC: 17ad4 | Read file or device (See above)
2018-12-25T12:40:18.265316503Z 62 PC: 17ba2 | Close file (See above)
2018-12-25T12:40:18.268516717Z 79 PC: 17927 | Find next file
2018-12-25T12:40:18.271606563Z 61 PC: 17a7f | Open file (See above)
2018-12-25T12:40:18.278943457Z 66 PC: 17a8e | Move file pointer (See above)
2018-12-25T12:40:18.283249803Z 63 PC: 17aa2 | Read file or device (See above)
2018-12-25T12:40:18.292786228Z 66 PC: 17ac0 | Move file pointer (See above)
2018-12-25T12:40:18.294520255Z 63 PC: 17ad4 | Read file or device (See above)
2018-12-25T12:40:18.297839997Z 62 PC: 17ba2 | Close file (See above)
2018-12-25T12:40:18.300068198Z 79 PC: 17927 | Find next file (See above)
2018-12-25T12:40:18.303405441Z 61 PC: 17a7f | Open file (See above)
2018-12-25T12:40:18.311273061Z 66 PC: 17a8e | Move file pointer (See above)
2018-12-25T12:40:18.314844468Z 63 PC: 17aa2 | Read file or device (See above)
2018-12-25T12:40:18.321222021Z 66 PC: 17ac0 | Move file pointer (See above)
2018-12-25T12:40:18.323510039Z 63 PC: 17ad4 | Read file or device (See above)
2018-12-25T12:40:18.32614006Z 62 PC: 17ba2 | Close file (See above)
2018-12-25T12:40:18.328550015Z 78 PC: 1793d | Find first file
2018-12-25T12:40:18.337722614Z 61 PC: 17a7f | Open file (See above)
2018-12-25T12:40:18.345006741Z 66 PC: 17a8e | Move file pointer (See above)
2018-12-25T12:40:18.346276575Z 63 PC: 17aa2 | Read file or device (See above)
2018-12-25T12:40:18.352577605Z 66 PC: 17ac0 | Move file pointer (See above)
2018-12-25T12:40:18.355001981Z 63 PC: 17ad4 | Read file or device (See above)
2018-12-25T12:40:18.357699699Z 62 PC: 17ba2 | Close file (See above)
2018-12-25T12:40:18.359645012Z 79 PC: 17972 | Find next file
2018-12-25T12:40:18.363844317Z 61 PC: 17a7f | Open file (See above)
2018-12-25T12:40:18.370788197Z 66 PC: 17a8e | Move file pointer (See above)
2018-12-25T12:40:18.372482668Z 63 PC: 17aa2 | Read file or device (See above)
2018-12-25T12:40:18.379193196Z 66 PC: 17ac0 | Move file pointer (See above)
2018-12-25T12:40:18.380563182Z 63 PC: 17ad4 | Read file or device (See above)
2018-12-25T12:40:18.386029734Z 62 PC: 17ba2 | Close file (See above)
2018-12-25T12:40:18.388936103Z 79 PC: 17972 | Find next file (See above)
2018-12-25T12:40:18.392721609Z 61 PC: 17a7f | Open file (See above)
2018-12-25T12:40:18.399915701Z 66 PC: 17a8e | Move file pointer (See above)
2018-12-25T12:40:18.402610306Z 63 PC: 17aa2 | Read file or device (See above)
2018-12-25T12:40:18.408395382Z 66 PC: 17ac0 | Move file pointer (See above)
2018-12-25T12:40:18.409920221Z 63 PC: 17ad4 | Read file or device (See above)
2018-12-25T12:40:18.416596823Z 87 PC: 17af0 | Get or set file date and time (See above)
2018-12-25T12:40:18.419396777Z 66 PC: 17b07 | Move file pointer (See above)
2018-12-25T12:40:18.421030497Z 66 PC: 17b1e | Move file pointer (See above)
2018-12-25T12:40:18.423448912Z 64 PC: 17b30 | Write file or device (See above)
2018-12-25T12:40:18.426909572Z 66 PC: 17b3b | Move file pointer (See above)
2018-12-25T12:40:18.428647738Z 64 PC: 17b5a | Write file or device (See above)
2018-12-25T12:40:18.437555845Z 66 PC: 17b68 | Move file pointer (See above)
2018-12-25T12:40:18.439315527Z 64 PC: 17b89 | Write file or device (See above)
2018-12-25T12:40:18.441965729Z 87 PC: 17b9c | Get or set file date and time (See above)
2018-12-25T12:40:18.44428414Z 62 PC: 17ba2 | Close file (See above)
2018-12-25T12:40:18.449433279Z 42 PC: 17978 | Get date 0x17978: cmp dl, 0x11
0x1797b: jne 0x179cf
0x1797d: mov ax, cs
0x1797f: mov ds, ax
0x17981: xor ax, ax
0x17983: mov es, ax
0x17985: cmp byte ptr es:[0x415], 0x55
0x1798b: je 0x17996
0x1798d: mov byte ptr es:[0x415], 0x55
0x17993: jmp 0x179cf
0x17995: nop
0x17996: mov ax, 0x3513
0x17999: int 0x21
0x1799b: mov ax, bx
0x1799d: cmp ax, 0x505
0x179a0: je 0x179cf
0x179a2: call 0x17a21
0x179a5: add bx, 0x78
0x179a9: mov word ptr [bx], ax
0x179ab: mov word ptr [bx + 2], es
2018-12-25T12:40:18.451265954Z 9 PC: 1785e | Display string (String= 'Hello - Copyright S & S International, 1990 ')