Sample viewer

vx.netlux.org/Virus.DOS.KYCC

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:02:47.774061236Z	78	PC: 12a4a \| Find first file
2018-12-17T23:02:47.78123789Z	61	PC: 12a56 \| Open file (Filename = 'As')
2018-12-17T23:02:47.79105196Z	64	PC: 12a70 \| Write file or device (Write 1281 bytes on handle 2)
2018-12-17T23:02:47.823711052Z	62	PC: 12a76 \| Close file
2018-12-17T23:02:47.826712942Z	79	PC: 12a80 \| Find next file
2018-12-17T23:02:47.832305129Z	61	PC: 12a56 \| Open file (Filename = 'CD.ï¿½ï¿½Nxb')
2018-12-17T23:02:47.849323435Z	64	PC: 12a70 \| Write file or device (Write 1316 bytes on handle 2)
2018-12-17T23:02:47.869202535Z	62	PC: 12a76 \| Close file
2018-12-17T23:02:47.885260767Z	79	PC: 12a80 \| Find next file
2018-12-17T23:02:47.889866891Z	61	PC: 12a56 \| Open file
2018-12-17T23:02:47.898763286Z	64	PC: 12a70 \| Write file or device (Write 1340 bytes on handle 2)
2018-12-17T23:02:47.909124484Z	62	PC: 12a76 \| Close file
2018-12-17T23:02:47.918100438Z	79	PC: 12a80 \| Find next file
2018-12-17T23:02:47.920977835Z	61	PC: 12a56 \| Open file (Filename = 'ï¿½')
2018-12-17T23:02:47.933756635Z	64	PC: 12a70 \| Write file or device (Write 1305 bytes on handle 2)
2018-12-17T23:02:47.935810784Z	62	PC: 12a76 \| Close file
2018-12-17T23:02:47.937425689Z	79	PC: 12a80 \| Find next file
2018-12-17T23:02:47.940106135Z	61	PC: 12a56 \| Open file (Filename = 'J~Cï¿½')
2018-12-17T23:02:47.949338421Z	64	PC: 12a70 \| Write file or device (Write 1260 bytes on handle 2)
2018-12-17T23:02:47.959144616Z	62	PC: 12a76 \| Close file
2018-12-17T23:02:47.968230607Z	79	PC: 12a80 \| Find next file
2018-12-17T23:02:47.973258474Z	61	PC: 12a56 \| Open file (Filename = 'Oï¿½Mï¿½\|\|E%;%9Kï¿½Iï¿½Oï¿½Mï¿½%ï¿½(Ó‰ï¿½Oï¿½ï¿½2%CJï¿½Hï¿½ï¿½ï¿½Qï¿½$$ï¿½ï¿½"ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ ï¿½Iï¿½Ð€ï¿½ï¿½Aï¿½ï¿½P~ï¿½Ì¹PPï¿½ï¿½Fï¿½ï¿½ï¿½ï¿½ï¿½Pï¿½Pï¿½Pï¿½Pï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½Ä¶Pï¿½Pï¿½Pï¿½Pï¿½.ï¿½.t ï¿½P')
2018-12-17T23:02:47.982359473Z	64	PC: 12a70 \| Write file or device (Write 1386 bytes on handle 2)
2018-12-17T23:02:47.984386933Z	62	PC: 12a76 \| Close file
2018-12-17T23:02:47.987032384Z	79	PC: 12a80 \| Find next file
2018-12-17T23:02:47.990163476Z	61	PC: 12a56 \| Open file (Filename = '~HxHzHtHvHpH
2018-12-17T23:02:47.999521309Z	64	PC: 12a70 \| Write file or device (Write 1306 bytes on handle 2)
2018-12-17T23:02:48.010536665Z	62	PC: 12a76 \| Close file
2018-12-17T23:02:48.020775413Z	79	PC: 12a80 \| Find next file
2018-12-17T23:02:48.023976848Z	61	PC: 12a56 \| Open file (Filename = 'dï¿½><8P')
2018-12-17T23:02:48.03360091Z	64	PC: 12a70 \| Write file or device (Write 1381 bytes on handle 2)
2018-12-17T23:02:48.036106077Z	62	PC: 12a76 \| Close file
2018-12-17T23:02:48.038379308Z	79	PC: 12a80 \| Find next file
2018-12-17T23:02:48.043322556Z	61	PC: 12a56 \| Open file (Filename = 'ï¿½ï¿½ï¿½ï¿½9CVÇµï¿½ï¿½ÒŒï¿½ï¿½ï¿½ï¿½&1ï¿½ï¿½ï¿½ ï¿½ï¿½ï¿½ï¿½Kï¿½ï¿½ï¿½ï¿½ÞŽï¿½ï¿½ÂŽï¿½ ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½lï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½Oï¿½::ï¿½ï¿½ï¿½2ï¿½2ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½Sï¿½Ø±ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½K ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½EObï¿½ï¿½ï¿½ï¿½Þ˜ï¿½%ï¿½%%ï¿½ï¿½2=ï¿½&ï¿½,,ï¿½ï¿½*ï¿½ï¿½&Wï¿½# ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½Îšï¿½ï¿½ï¿½ï¿½')
2018-12-17T23:02:48.052894831Z	64	PC: 12a70 \| Write file or device (Write 1378 bytes on handle 2)
2018-12-17T23:02:48.062374162Z	62	PC: 12a76 \| Close file
2018-12-17T23:02:48.071439204Z	79	PC: 12a80 \| Find next file
2018-12-17T23:02:48.075315617Z	61	PC: 12a56 \| Open file (Filename = 'Lï¿½ï¿½Nï¿½ï¿½Lï¿½ï¿½Nï¿½ï¿½Lï¿½ï¿½Nï¿½ï¿½Lï¿½ï¿½ï¿½ï¿½Lï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½Lï¿½ï¿½~ï¿½LzR\ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½LÈ˜ï¿½ï¿½ï¿½ï¿½~ï¿½\|ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½')
2018-12-17T23:02:48.084653883Z	64	PC: 12a70 \| Write file or device (Write 1309 bytes on handle 2)
2018-12-17T23:02:48.0873455Z	62	PC: 12a76 \| Close file
2018-12-17T23:02:48.090218257Z	79	PC: 12a80 \| Find next file
2018-12-17T23:02:48.093599891Z	61	PC: 12a56 \| Open file
2018-12-17T23:02:48.100734606Z	64	PC: 12a70 \| Write file or device (Write 1337 bytes on handle 2)
2018-12-17T23:02:48.103948275Z	62	PC: 12a76 \| Close file
2018-12-17T23:02:48.106672944Z	79	PC: 12a80 \| Find next file
2018-12-17T23:02:48.110083261Z	61	PC: 12a56 \| Open file (Filename = '99ï¿½9ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ ï¿½ï¿½ï¿½')
2018-12-17T23:02:48.121058973Z	64	PC: 12a70 \| Write file or device (Write 1270 bytes on handle 2)
2018-12-17T23:02:48.131307149Z	62	PC: 12a76 \| Close file
2018-12-17T23:02:48.140584189Z	79	PC: 12a80 \| Find next file
2018-12-17T23:02:48.14402301Z	61	PC: 12a56 \| Open file (Filename = '`')
2018-12-17T23:02:48.154153284Z	64	PC: 12a70 \| Write file or device (Write 1314 bytes on handle 2)
2018-12-17T23:02:48.163907972Z	62	PC: 12a76 \| Close file
2018-12-17T23:02:48.173870791Z	79	PC: 12a80 \| Find next file
2018-12-17T23:02:48.178920979Z	61	PC: 12a56 \| Open file (Filename = 'Ô')
2018-12-17T23:02:48.188140422Z	64	PC: 12a70 \| Write file or device (Write 1279 bytes on handle 2)
2018-12-17T23:02:48.197895991Z	62	PC: 12a76 \| Close file
2018-12-17T23:02:48.207823063Z	79	PC: 12a80 \| Find next file
2018-12-17T23:02:48.210955098Z	61	PC: 12a56 \| Open file (Filename = '{W')
2018-12-17T23:02:48.219968433Z	64	PC: 12a70 \| Write file or device (Write 1296 bytes on handle 2)
2018-12-17T23:02:48.230588576Z	62	PC: 12a76 \| Close file
2018-12-17T23:02:48.240658066Z	79	PC: 12a80 \| Find next file
2018-12-17T23:02:48.243616094Z	76	PC: 12a88 \| Terminate with return code (Return code = '0')