Sample viewer

vx.netlux.org/Virus.DOS.HLLO.Gothmod.4176

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T23:03:22.813696797Z 53 PC: 12e5a | Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T23:03:22.815644345Z 53 PC: 12e5a | Get interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T23:03:22.816799891Z 53 PC: 12e5a | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T23:03:22.817928829Z 53 PC: 12e5a | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T23:03:22.819808344Z 53 PC: 12e5a | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T23:03:22.821339703Z 53 PC: 12e5a | Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:03:22.822773131Z 53 PC: 12e5a | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T23:03:22.824486593Z 53 PC: 12e5a | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T23:03:22.826045779Z 53 PC: 12e5a | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T23:03:22.8271688Z 53 PC: 12e5a | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T23:03:22.828317253Z 53 PC: 12e5a | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T23:03:22.838252811Z 53 PC: 12e5a | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T23:03:22.839692024Z 53 PC: 12e5a | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T23:03:22.841124268Z 53 PC: 12e5a | Get interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T23:03:22.843489551Z 53 PC: 12e5a | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T23:03:22.845005123Z 53 PC: 12e5a | Get interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T23:03:22.846424546Z 53 PC: 12e5a | Get interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T23:03:22.84881873Z 53 PC: 12e5a | Get interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T23:03:22.850041844Z 53 PC: 12e5a | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T23:03:22.851174627Z 37 PC: 12e6f | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T23:03:22.85300857Z 37 PC: 12e77 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T23:03:22.85413357Z 37 PC: 12e7f | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:03:22.855216685Z 37 PC: 12e87 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T23:03:22.857239834Z 68 PC: 13b52 | I/O control for devices (Set for = '$�,@�\')
2018-12-17T23:03:22.858973144Z 25 PC: 136fb | Get default drive
2018-12-17T23:03:22.859943678Z 71 PC: 1370e | Get current directory
2018-12-17T23:03:22.863435258Z 26 PC: 12dcc | Set disk transfer address
2018-12-17T23:03:22.864738664Z 78 PC: 12dcc | Find first file
2018-12-17T23:03:22.871204586Z 48 PC: 1366e | Get DOS version
2018-12-17T23:03:22.872609135Z 61 PC: 13520 | Open file (Filename = 'A:\TEST.EXE')
2018-12-17T23:03:22.892119779Z 61 PC: 13520 | Open file (Filename = 'SLEEP.COM')
2018-12-17T23:03:22.899837469Z 66 PC: 13c51 | Move file pointer
2018-12-17T23:03:22.90165947Z 66 PC: 13c5f | Move file pointer
2018-12-17T23:03:22.906701056Z 66 PC: 13c6d | Move file pointer
2018-12-17T23:03:22.908199009Z 66 PC: 13c51 | Move file pointer
2018-12-17T23:03:22.909629368Z 66 PC: 13c5f | Move file pointer
2018-12-17T23:03:22.911149304Z 66 PC: 13c6d | Move file pointer
2018-12-17T23:03:22.912632927Z 64 PC: 13551 | Write file or device (Write 0 bytes on handle 6)
2018-12-17T23:03:22.92617742Z 63 PC: 135f3 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T23:03:22.941730078Z 64 PC: 135f3 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T23:03:22.945447856Z 63 PC: 135f3 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T23:03:22.947981114Z 64 PC: 135f3 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T23:03:22.951445557Z 63 PC: 135f3 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T23:03:22.95922118Z 64 PC: 135f3 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T23:03:22.962900067Z 63 PC: 135f3 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T23:03:22.966546322Z 64 PC: 135f3 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T23:03:22.969331401Z 63 PC: 135f3 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T23:03:22.976940755Z 64 PC: 135f3 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T23:03:22.981411439Z 63 PC: 135f3 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T23:03:22.984053548Z 64 PC: 135f3 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T23:03:22.986962773Z 63 PC: 135f3 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T23:03:22.996133464Z 64 PC: 135f3 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T23:03:22.999948738Z 63 PC: 135f3 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T23:03:23.002681383Z 64 PC: 135f3 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T23:03:23.009495545Z 63 PC: 135f3 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T23:03:23.017352156Z 64 PC: 135f3 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T23:03:23.021296035Z 63 PC: 135f3 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T23:03:23.024886454Z 64 PC: 135f3 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T23:03:23.027936405Z 63 PC: 135f3 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T23:03:23.035882113Z 64 PC: 135f3 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T23:03:23.040818014Z 63 PC: 135f3 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T23:03:23.043575143Z 64 PC: 135f3 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T23:03:23.046825331Z 63 PC: 135f3 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T23:03:23.05592059Z 64 PC: 135f3 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T23:03:23.060131208Z 63 PC: 135f3 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T23:03:23.063815752Z 64 PC: 135f3 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T23:03:23.0679113Z 63 PC: 135f3 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T23:03:23.076104273Z 64 PC: 135f3 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T23:03:23.080196995Z 63 PC: 135f3 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T23:03:23.083354667Z 64 PC: 135f3 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T23:03:23.087464377Z 63 PC: 135f3 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T23:03:23.095720975Z 64 PC: 135f3 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T23:03:23.099797271Z 63 PC: 135f3 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T23:03:23.103985988Z 64 PC: 135f3 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T23:03:23.107012698Z 63 PC: 135f3 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T23:03:23.110255558Z 64 PC: 135f3 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T23:03:23.119238971Z 63 PC: 135f3 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T23:03:23.122280204Z 64 PC: 135f3 | Write file or device (Write 144 bytes on handle 6)
2018-12-17T23:03:23.125511033Z 63 PC: 135f3 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T23:03:23.128493581Z 62 PC: 13570 | Close file
2018-12-17T23:03:23.131387826Z 62 PC: 13570 | Close file
2018-12-17T23:03:23.139922071Z 64 PC: 13278 | Write file or device (Write 35 bytes on handle 1)
2018-12-17T23:03:23.146100567Z 64 PC: 13278 | Write file or device (Write 0 bytes on handle 1)
2018-12-17T23:03:23.148132684Z 37 PC: 12fb1 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T23:03:23.149570443Z 37 PC: 12fb1 | Set interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T23:03:23.152044851Z 37 PC: 12fb1 | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T23:03:23.153474258Z 37 PC: 12fb1 | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T23:03:23.154870405Z 37 PC: 12fb1 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T23:03:23.157207596Z 37 PC: 12fb1 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:03:23.159031144Z 37 PC: 12fb1 | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T23:03:23.160417173Z 37 PC: 12fb1 | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T23:03:23.162535151Z 37 PC: 12fb1 | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T23:03:23.16435353Z 37 PC: 12fb1 | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T23:03:23.165738734Z 37 PC: 12fb1 | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T23:03:23.167809532Z 37 PC: 12fb1 | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T23:03:23.169583869Z 37 PC: 12fb1 | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T23:03:23.170920058Z 37 PC: 12fb1 | Set interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T23:03:23.172927165Z 37 PC: 12fb1 | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T23:03:23.174718563Z 37 PC: 12fb1 | Set interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T23:03:23.176102036Z 37 PC: 12fb1 | Set interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T23:03:23.177658982Z 37 PC: 12fb1 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T23:03:23.17979318Z 37 PC: 12fb1 | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T23:03:23.181143922Z 76 PC: 12ff0 | Terminate with return code (Return code = '0')