Sample viewer

vx.netlux.org/Virus.DOS.Sirius.Annihilator.308

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T21:51:36.409631413Z 26 PC: 15182 | Set disk transfer address
2018-12-17T21:51:36.411399746Z 78 PC: 15196 | Find first file
2018-12-17T21:51:36.417719911Z 61 PC: 151a3 | Open file (Filename = 'SLEEP.COM')
2018-12-17T21:51:36.424471369Z 66 PC: 1525a | Move file pointer
2018-12-17T21:51:36.42737467Z 62 PC: 151ca | Close file
2018-12-17T21:51:36.42950098Z 79 PC: 15196 | Find next file
2018-12-17T21:51:36.438777882Z 61 PC: 151a3 | Open file (Filename = 'PRINT.COM')
2018-12-17T21:51:36.44625599Z 66 PC: 1525a | Move file pointer
2018-12-17T21:51:36.447831806Z 62 PC: 151ca | Close file
2018-12-17T21:51:36.449590143Z 79 PC: 15196 | Find next file
2018-12-17T21:51:36.452712337Z 61 PC: 151a3 | Open file (Filename = 'HELLO.COM')
2018-12-17T21:51:36.459155547Z 66 PC: 1525a | Move file pointer
2018-12-17T21:51:36.460669708Z 62 PC: 151ca | Close file
2018-12-17T21:51:36.463153704Z 79 PC: 15196 | Find next file
2018-12-17T21:51:36.466331771Z 61 PC: 151a3 | Open file (Filename = 'PHANG.COM')
2018-12-17T21:51:36.472705249Z 66 PC: 1525a | Move file pointer
2018-12-17T21:51:36.474343621Z 62 PC: 151ca | Close file
2018-12-17T21:51:36.476570785Z 79 PC: 15196 | Find next file
2018-12-17T21:51:36.478895099Z 61 PC: 151a3 | Open file (Filename = 'PRINTA~1.COM')
2018-12-17T21:51:36.485099196Z 66 PC: 1525a | Move file pointer
2018-12-17T21:51:36.487123048Z 62 PC: 151ca | Close file
2018-12-17T21:51:36.488868514Z 79 PC: 15196 | Find next file
2018-12-17T21:51:36.491395446Z 61 PC: 151a3 | Open file (Filename = 'MANDEL.COM')
2018-12-17T21:51:36.498265458Z 66 PC: 1525a | Move file pointer
2018-12-17T21:51:36.499537844Z 62 PC: 151ca | Close file
2018-12-17T21:51:36.501098657Z 79 PC: 15196 | Find next file
2018-12-17T21:51:36.503956931Z 61 PC: 151a3 | Open file (Filename = 'PAH.COM')
2018-12-17T21:51:36.510361726Z 66 PC: 1525a | Move file pointer
2018-12-17T21:51:36.511750418Z 62 PC: 151ca | Close file
2018-12-17T21:51:36.525797808Z 79 PC: 15196 | Find next file
2018-12-17T21:51:36.528096739Z 61 PC: 151a3 | Open file (Filename = 'TEST.COM')
2018-12-17T21:51:36.534338219Z 66 PC: 1525a | Move file pointer
2018-12-17T21:51:36.536418138Z 87 PC: 151ba | Get or set file date and time
2018-12-17T21:51:36.537763239Z 44 PC: 151da | Get time 0x151da: or dx, dx
0x151dc: je 0x151d6
0x151de: mov word ptr [bp + 0x236], dx
0x151e2: mov ax, 0x4200
0x151e5: call 0x15254
0x151e8: mov ah, 0x3f
0x151ea: lea dx, word ptr [bp + 0x213]
0x151ee: mov cx, 3
0x151f1: int 0x21
0x151f3: cmp byte ptr [bp + 0x213], 0x4d
0x151f8: je 0x151c6
0x151fa: cmp byte ptr [bp + 0x213], 0x5a
0x151ff: je 0x151c6
0x15201: mov ax, 0x4202
0x15204: call 0x15254
0x15207: sub ax, 3
0x1520a: mov word ptr cs:[bp + 0x211], ax
0x1520f: lea si, word ptr [bp + 0x105]
0x15213: mov di, 0xfb90
0x15216: mov cx, 0x134
2018-12-17T21:51:36.53971347Z 66 PC: 1525a | Move file pointer
2018-12-17T21:51:36.541583299Z 63 PC: 151f3 | Read file or device (Read 3 bytes on handle 5)
2018-12-17T21:51:36.544023516Z 66 PC: 1525a | Move file pointer
2018-12-17T21:51:36.546065816Z 64 PC: 1522c | Write file or device (Write 308 bytes on handle 5)
2018-12-17T21:51:36.549554281Z 66 PC: 1525a | Move file pointer
2018-12-17T21:51:36.550855474Z 64 PC: 1523d | Write file or device (Write 3 bytes on handle 5)
2018-12-17T21:51:36.553527838Z 87 PC: 15244 | Get or set file date and time
2018-12-17T21:51:36.555442793Z 62 PC: 15248 | Close file
2018-12-17T21:51:36.56708915Z 26 PC: 1524f | Set disk transfer address
2018-12-17T21:51:36.570167837Z 9 PC: 12bb5 | Display string (String= '')
2018-12-17T21:51:36.572716156Z 9 PC: 12bbc | Display string (Could not find end pointer)
2018-12-17T21:51:36.583238176Z 76 PC: 12bd2 | Terminate with return code (Return code = '0')