Sample viewer

vx.netlux.org/Virus.DOS.Artem.2165

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:02:54.241520465Z	48	PC: 12bdf \| Get DOS version
2018-12-17T23:02:54.243712615Z	53	PC: 12c21 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T23:02:54.244999665Z	37	PC: 132a4 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T23:02:54.24614901Z	53	PC: 132a4 \| Get interrupt vector (Interrupt = '28' AKA 'Get allocation info for specified drive')
2018-12-17T23:02:54.247617799Z	37	PC: 132a4 \| Set interrupt vector (Interrupt = '28' AKA 'Get allocation info for specified drive')
2018-12-17T23:02:54.249723757Z	9	PC: 12a82 \| Display string (String= 'Goat file (COM). Size=0000014Dh/0000000333d bytes. ')
2018-12-17T23:02:54.253795045Z	76	PC: 12a86 \| Terminate with return code (Return code = '36')
2018-12-17T23:02:54.257157371Z	77	PC: 11fe0 \| Get program return code
2018-12-17T23:02:54.259610628Z	72	PC: 12174 \| Allocate memory
2018-12-17T23:02:54.261720583Z	72	PC: 1218d \| Allocate memory
2018-12-17T23:02:54.264251826Z	37	PC: 123c4 \| Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T23:02:54.277556576Z	37	PC: 123cb \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T23:02:54.279054043Z	37	PC: 123d2 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:02:54.280377922Z	62	PC: 9dc14 \| Close file
2018-12-17T23:02:54.282780103Z	25	PC: 9dc14 \| Get default drive
2018-12-17T23:02:54.283981601Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:02:54.285841471Z	62	PC: 9dc14 \| Close file
2018-12-17T23:02:54.287884063Z	25	PC: 9dc14 \| Get default drive
2018-12-17T23:02:54.290377705Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:02:54.292514237Z	62	PC: 9dc14 \| Close file
2018-12-17T23:02:54.294919027Z	25	PC: 9dc14 \| Get default drive
2018-12-17T23:02:54.2963122Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:02:54.298214415Z	62	PC: 9dc14 \| Close file
2018-12-17T23:02:54.300721838Z	25	PC: 9dc14 \| Get default drive
2018-12-17T23:02:54.302483806Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:02:54.304407553Z	62	PC: 9dc14 \| Close file
2018-12-17T23:02:54.305954451Z	25	PC: 9dc14 \| Get default drive
2018-12-17T23:02:54.30754943Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:02:54.30955024Z	62	PC: 9dc14 \| Close file
2018-12-17T23:02:54.311205851Z	25	PC: 9dc14 \| Get default drive
2018-12-17T23:02:54.329814582Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:02:54.332199957Z	62	PC: 9dc14 \| Close file
2018-12-17T23:02:54.334532232Z	25	PC: 9dc14 \| Get default drive
2018-12-17T23:02:54.337168607Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:02:54.339765651Z	62	PC: 9dc14 \| Close file
2018-12-17T23:02:54.342108297Z	25	PC: 9dc14 \| Get default drive
2018-12-17T23:02:54.344793785Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:02:54.347856458Z	62	PC: 9dc14 \| Close file
2018-12-17T23:02:54.350770554Z	25	PC: 9dc14 \| Get default drive
2018-12-17T23:02:54.356631772Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:02:54.359905213Z	62	PC: 9dc14 \| Close file
2018-12-17T23:02:54.361553448Z	25	PC: 9dc14 \| Get default drive
2018-12-17T23:02:54.373160245Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:02:54.37531797Z	62	PC: 9dc14 \| Close file
2018-12-17T23:02:54.37716053Z	25	PC: 9dc14 \| Get default drive
2018-12-17T23:02:54.379748445Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:02:54.38293845Z	62	PC: 9dc14 \| Close file
2018-12-17T23:02:54.387113738Z	25	PC: 9dc14 \| Get default drive
2018-12-17T23:02:54.38897303Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:02:54.391317622Z	62	PC: 9dc14 \| Close file
2018-12-17T23:02:54.392753889Z	25	PC: 9dc14 \| Get default drive
2018-12-17T23:02:54.394280505Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:02:54.4023514Z	62	PC: 9dc14 \| Close file
2018-12-17T23:02:54.403979509Z	25	PC: 9dc14 \| Get default drive
2018-12-17T23:02:54.405366754Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:02:54.40807211Z	62	PC: 9dc14 \| Close file
2018-12-17T23:02:54.409630428Z	25	PC: 9dc14 \| Get default drive
2018-12-17T23:02:54.410904641Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:02:54.414898116Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:02:54.416503958Z	67	PC: 9dc14 \| Get or set file attributes
2018-12-17T23:02:54.421770228Z	67	PC: 9dc14 \| Get or set file attributes
2018-12-17T23:02:54.770432358Z	61	PC: 9dc14 \| Open file (Filename = 'C:\COMMAND .COM')
2018-12-17T23:02:54.777737642Z	87	PC: 9dc14 \| Get or set file date and time
2018-12-17T23:02:54.779815756Z	66	PC: 9dc14 \| Move file pointer
2018-12-17T23:02:54.782478632Z	66	PC: 9dc14 \| Move file pointer
2018-12-17T23:02:54.784373691Z	66	PC: 9dc14 \| Move file pointer
2018-12-17T23:02:54.786123578Z	63	PC: 9dc14 \| Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:02:54.790035627Z	66	PC: 9dc14 \| Move file pointer
2018-12-17T23:02:54.79188674Z	63	PC: 9dc14 \| Read file or device (Read 48 bytes on handle 5)
2018-12-17T23:02:54.795050654Z	62	PC: 9dc14 \| Close file
2018-12-17T23:02:54.798039106Z	67	PC: 9dc14 \| Get or set file attributes
2018-12-17T23:02:54.807649893Z	61	PC: 9dc14 \| Open file (Filename = 'C:\COMMAND.COM')
2018-12-17T23:02:54.815312698Z	66	PC: 12372 \| Move file pointer
2018-12-17T23:02:54.818213237Z	63	PC: 12383 \| Read file or device (Read 44693 bytes on handle 5)
2018-12-17T23:02:54.831298679Z	62	PC: 9dc14 \| Close file
2018-12-17T23:02:54.833900356Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:02:54.836822144Z	67	PC: 9dc14 \| Get or set file attributes
2018-12-17T23:02:54.843127425Z	67	PC: 9dc14 \| Get or set file attributes
2018-12-17T23:02:54.852563364Z	61	PC: 9dc14 \| Open file (Filename = 'C:\COMMAND .COM')
2018-12-17T23:02:54.860138308Z	87	PC: 9dc14 \| Get or set file date and time
2018-12-17T23:02:54.862239109Z	63	PC: 9dc14 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:02:54.865612676Z	66	PC: 9dc14 \| Move file pointer
2018-12-17T23:02:54.86879114Z	66	PC: 9dc14 \| Move file pointer
2018-12-17T23:02:54.87086692Z	66	PC: 9dc14 \| Move file pointer
2018-12-17T23:02:54.872850893Z	63	PC: 9dc14 \| Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:02:54.876553229Z	66	PC: 9dc14 \| Move file pointer
2018-12-17T23:02:54.879493944Z	63	PC: 9dc14 \| Read file or device (Read 48 bytes on handle 5)
2018-12-17T23:02:54.882782712Z	66	PC: 9dc14 \| Move file pointer
2018-12-17T23:02:54.88463672Z	63	PC: 9dc14 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:02:54.889031219Z	66	PC: 9dc14 \| Move file pointer
2018-12-17T23:02:54.891866283Z	64	PC: 9dc14 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:02:54.895204245Z	66	PC: 9dc14 \| Move file pointer
2018-12-17T23:02:54.898386207Z	64	PC: 9dc14 \| Write file or device (Write 2149 bytes on handle 5)
2018-12-17T23:02:55.168267339Z	66	PC: 9dc14 \| Move file pointer
2018-12-17T23:02:55.170364899Z	64	PC: 9dc14 \| Write file or device (Write 1 bytes on handle 5)
2018-12-17T23:02:55.174594092Z	87	PC: 9dc14 \| Get or set file date and time
2018-12-17T23:02:55.17670047Z	62	PC: 9dc14 \| Close file
2018-12-17T23:02:55.20490571Z	67	PC: 9dc14 \| Get or set file attributes
2018-12-17T23:02:55.216687581Z	99	PC: 97dc7 \| Get DBCS lead byte table pointer
2018-12-17T23:02:55.219026211Z	56	PC: 925e9 \| Get or set country info
2018-12-17T23:02:55.221540179Z	64	PC: 98038 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:02:55.227344535Z	25	PC: 92652 \| Get default drive
2018-12-17T23:02:55.229962676Z	71	PC: 948cd \| Get current directory
2018-12-17T23:02:55.234457707Z	64	PC: 98038 \| Write file or device (Write 3 bytes on handle 1)
2018-12-17T23:02:55.240588804Z	2	PC: 948a2 \| Character output (Char = '3e')
2018-12-17T23:02:55.244306458Z	93	PC: 92710 \| File sharing functions
2018-12-17T23:02:55.246612568Z	93	PC: 92717 \| File sharing functions
2018-12-17T23:02:55.249795826Z	10	PC: 92729 \| Buffered keyboard input
2018-12-17T23:03:09.223225321Z	0	PC: 0 \| Program terminate
2018-12-17T23:03:10.577503338Z	0	PC: 0 \| Program terminate
2018-12-17T23:03:10.679449092Z	64	PC: 98038 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:03:10.683660454Z	41	PC: 9279e \| Parse filename
2018-12-17T23:03:10.686029113Z	41	PC: 9281f \| Parse filename
2018-12-17T23:03:10.687406477Z	41	PC: 9283c \| Parse filename
2018-12-17T23:03:10.689137681Z	26	PC: 95ce7 \| Set disk transfer address
2018-12-17T23:03:10.691634007Z	71	PC: 95ee3 \| Get current directory
2018-12-17T23:03:10.701429718Z	78	PC: 9dc14 \| Find first file
2018-12-17T23:03:10.710301762Z	47	PC: 9dc14 \| Get disk transfer address
2018-12-17T23:03:10.712027614Z	71	PC: 95d5c \| Get current directory
2018-12-17T23:03:10.715732786Z	73	PC: 953f9 \| Release memory
2018-12-17T23:03:10.717594094Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:03:10.719496445Z	67	PC: 9dc14 \| Get or set file attributes
2018-12-17T23:03:10.725679311Z	67	PC: 9dc14 \| Get or set file attributes
2018-12-17T23:03:10.755333101Z	61	PC: 9dc14 \| Open file (Filename = 'A:\PRINT .COM')
2018-12-17T23:03:10.766546742Z	87	PC: 9dc14 \| Get or set file date and time
2018-12-17T23:03:10.768913291Z	63	PC: 9dc14 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:03:10.775348748Z	66	PC: 9dc14 \| Move file pointer
2018-12-17T23:03:10.77709759Z	66	PC: 9dc14 \| Move file pointer
2018-12-17T23:03:10.778859436Z	66	PC: 9dc14 \| Move file pointer
2018-12-17T23:03:10.780136443Z	63	PC: 9dc14 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:03:10.782772606Z	66	PC: 9dc14 \| Move file pointer
2018-12-17T23:03:10.785248449Z	64	PC: 9dc14 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:03:10.78779753Z	66	PC: 9dc14 \| Move file pointer
2018-12-17T23:03:10.789429693Z	64	PC: 9dc14 \| Write file or device (Write 2149 bytes on handle 5)
2018-12-17T23:03:10.799019458Z	66	PC: 9dc14 \| Move file pointer
2018-12-17T23:03:10.800667153Z	64	PC: 9dc14 \| Write file or device (Write 1 bytes on handle 5)
2018-12-17T23:03:10.803482182Z	87	PC: 9dc14 \| Get or set file date and time
2018-12-17T23:03:10.806441029Z	62	PC: 9dc14 \| Close file
2018-12-17T23:03:10.822797883Z	67	PC: 9dc14 \| Get or set file attributes
2018-12-17T23:03:10.833124678Z	75	PC: 11821 \| Execute program
2018-12-17T23:03:10.850246435Z	9	PC: 12a47 \| Display string (String= 'Hello, World! ')
2018-12-17T23:03:10.854252777Z	76	PC: 12a4b \| Terminate with return code (Return code = '36')
2018-12-17T23:03:10.865522032Z	77	PC: 11fe0 \| Get program return code
2018-12-17T23:03:10.867745352Z	72	PC: 12174 \| Allocate memory
2018-12-17T23:03:10.869851603Z	72	PC: 1218d \| Allocate memory
2018-12-17T23:03:10.871796274Z	37	PC: 123c4 \| Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T23:03:10.873851104Z	37	PC: 123cb \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T23:03:10.875731355Z	37	PC: 123d2 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:03:10.877133152Z	62	PC: 9dc14 \| Close file
2018-12-17T23:03:10.878869779Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:03:10.880531668Z	67	PC: 9dc14 \| Get or set file attributes
2018-12-17T23:03:10.885645512Z	67	PC: 9dc14 \| Get or set file attributes
2018-12-17T23:03:10.894884368Z	61	PC: 9dc14 \| Open file (Filename = 'C:\COMMAND .COM')
2018-12-17T23:03:10.901732815Z	87	PC: 9dc14 \| Get or set file date and time
2018-12-17T23:03:10.903139594Z	63	PC: 9dc14 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:03:10.905822985Z	66	PC: 9dc14 \| Move file pointer
2018-12-17T23:03:10.907099946Z	66	PC: 9dc14 \| Move file pointer
2018-12-17T23:03:10.908428799Z	66	PC: 9dc14 \| Move file pointer
2018-12-17T23:03:10.910451537Z	63	PC: 9dc14 \| Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:03:10.914121594Z	66	PC: 9dc14 \| Move file pointer
2018-12-17T23:03:10.915401352Z	63	PC: 9dc14 \| Read file or device (Read 48 bytes on handle 5)
2018-12-17T23:03:10.918808253Z	87	PC: 9dc14 \| Get or set file date and time
2018-12-17T23:03:10.92020075Z	62	PC: 9dc14 \| Close file
2018-12-17T23:03:10.926475488Z	67	PC: 9dc14 \| Get or set file attributes
2018-12-17T23:03:10.93646571Z	62	PC: 9dc14 \| Close file
2018-12-17T23:03:10.94541801Z	25	PC: 9dc14 \| Get default drive
2018-12-17T23:03:10.946668925Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:03:10.949321416Z	62	PC: 9dc14 \| Close file
2018-12-17T23:03:10.950775967Z	25	PC: 9dc14 \| Get default drive
2018-12-17T23:03:10.951943916Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:03:10.954830961Z	62	PC: 9dc14 \| Close file
2018-12-17T23:03:10.956800158Z	25	PC: 9dc14 \| Get default drive
2018-12-17T23:03:10.958586073Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:03:10.96087829Z	62	PC: 9dc14 \| Close file
2018-12-17T23:03:10.962664109Z	25	PC: 9dc14 \| Get default drive
2018-12-17T23:03:10.964083184Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:03:10.967193114Z	62	PC: 9dc14 \| Close file
2018-12-17T23:03:10.968682094Z	25	PC: 9dc14 \| Get default drive
2018-12-17T23:03:10.969961164Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:03:10.972527375Z	62	PC: 9dc14 \| Close file
2018-12-17T23:03:10.973788956Z	25	PC: 9dc14 \| Get default drive
2018-12-17T23:03:10.974871145Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:03:10.986327445Z	62	PC: 9dc14 \| Close file
2018-12-17T23:03:10.990273732Z	25	PC: 9dc14 \| Get default drive
2018-12-17T23:03:10.992113939Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:03:10.994604689Z	62	PC: 9dc14 \| Close file
2018-12-17T23:03:10.996499597Z	25	PC: 9dc14 \| Get default drive
2018-12-17T23:03:10.998916387Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:03:11.00117962Z	62	PC: 9dc14 \| Close file
2018-12-17T23:03:11.002904472Z	25	PC: 9dc14 \| Get default drive
2018-12-17T23:03:11.005285611Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:03:11.007061627Z	62	PC: 9dc14 \| Close file
2018-12-17T23:03:11.0097087Z	25	PC: 9dc14 \| Get default drive
2018-12-17T23:03:11.011802524Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:03:11.013624207Z	62	PC: 9dc14 \| Close file
2018-12-17T23:03:11.016209946Z	25	PC: 9dc14 \| Get default drive
2018-12-17T23:03:11.01834226Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:03:11.020383166Z	62	PC: 9dc14 \| Close file
2018-12-17T23:03:11.021894063Z	25	PC: 9dc14 \| Get default drive
2018-12-17T23:03:11.023635785Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:03:11.025794781Z	62	PC: 9dc14 \| Close file
2018-12-17T23:03:11.027534284Z	25	PC: 9dc14 \| Get default drive
2018-12-17T23:03:11.029317857Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:03:11.0310863Z	62	PC: 9dc14 \| Close file
2018-12-17T23:03:11.032491365Z	25	PC: 9dc14 \| Get default drive
2018-12-17T23:03:11.034310576Z	41	PC: 9dc14 \| Parse filename
2018-12-17T23:03:11.03799187Z	99	PC: 97dc7 \| Get DBCS lead byte table pointer
2018-12-17T23:03:11.039816553Z	56	PC: 925e9 \| Get or set country info
2018-12-17T23:03:11.04256372Z	64	PC: 98038 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:03:11.047087166Z	25	PC: 92652 \| Get default drive
2018-12-17T23:03:11.049016819Z	71	PC: 948cd \| Get current directory
2018-12-17T23:03:11.053079004Z	64	PC: 98038 \| Write file or device (Write 3 bytes on handle 1)
2018-12-17T23:03:11.057068428Z	2	PC: 948a2 \| Character output (Char = '3e')
2018-12-17T23:03:11.062274927Z	93	PC: 92710 \| File sharing functions
2018-12-17T23:03:11.063996992Z	93	PC: 92717 \| File sharing functions
2018-12-17T23:03:11.065779696Z	10	PC: 92729 \| Buffered keyboard input