Sample viewer

vx.netlux.org/Virus.DOS.Morgot.841

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:03:46.745705413Z	243	PC: 12c46 \| UNKNOWN!
2018-12-17T23:03:46.747325975Z	9	PC: 12a82 \| Display string (String= 'Goat file (EXE). Size=000003E8h/0000001000d bytes. ')
2018-12-17T23:03:46.751342856Z	76	PC: 12a86 \| Terminate with return code (Return code = '36')
2018-12-17T23:03:46.754585865Z	77	PC: 11fe0 \| Get program return code
2018-12-17T23:03:46.756675087Z	72	PC: 12174 \| Allocate memory
2018-12-17T23:03:46.760219857Z	72	PC: 1218d \| Allocate memory
2018-12-17T23:03:46.762384061Z	37	PC: 123c4 \| Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T23:03:46.763825438Z	37	PC: 123cb \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T23:03:46.765221619Z	37	PC: 123d2 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:03:46.766349413Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:03:46.767780695Z	62	PC: 122ab \| Close file
2018-12-17T23:03:46.769491104Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:03:46.771033036Z	62	PC: 122ab \| Close file
2018-12-17T23:03:46.772654139Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:03:46.774854086Z	62	PC: 122ab \| Close file
2018-12-17T23:03:46.776649375Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:03:46.778421371Z	62	PC: 122ab \| Close file
2018-12-17T23:03:46.781257223Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:03:46.782441244Z	62	PC: 122ab \| Close file
2018-12-17T23:03:46.784094072Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:03:46.786149058Z	62	PC: 122ab \| Close file
2018-12-17T23:03:46.787769439Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:03:46.788895582Z	62	PC: 122ab \| Close file
2018-12-17T23:03:46.790565626Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:03:46.791700305Z	62	PC: 122ab \| Close file
2018-12-17T23:03:46.792759965Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:03:46.794672033Z	62	PC: 122ab \| Close file
2018-12-17T23:03:46.796182254Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:03:46.797369939Z	62	PC: 122ab \| Close file
2018-12-17T23:03:46.799166481Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:03:46.807673515Z	62	PC: 122ab \| Close file
2018-12-17T23:03:46.808856375Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:03:46.810310847Z	62	PC: 122ab \| Close file
2018-12-17T23:03:46.811496945Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:03:46.812907494Z	62	PC: 122ab \| Close file
2018-12-17T23:03:46.814397947Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:03:46.816344551Z	62	PC: 122ab \| Close file
2018-12-17T23:03:46.818324646Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:03:46.821176295Z	62	PC: 122ab \| Close file
2018-12-17T23:03:46.827468267Z	99	PC: 99a47 \| Get DBCS lead byte table pointer
2018-12-17T23:03:46.829163827Z	56	PC: 94269 \| Get or set country info
2018-12-17T23:03:46.83128027Z	64	PC: 99cb8 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:03:46.836376021Z	25	PC: 942d2 \| Get default drive
2018-12-17T23:03:46.838762875Z	71	PC: 9654d \| Get current directory
2018-12-17T23:03:46.842504566Z	64	PC: 99cb8 \| Write file or device (Write 3 bytes on handle 1)
2018-12-17T23:03:46.847342307Z	2	PC: 96522 \| Character output (Char = '3e')
2018-12-17T23:03:46.849470732Z	93	PC: 94390 \| File sharing functions
2018-12-17T23:03:46.851049547Z	93	PC: 94397 \| File sharing functions
2018-12-17T23:03:46.853661461Z	10	PC: 943a9 \| Buffered keyboard input
2018-12-17T23:04:01.741969915Z	0	PC: 0 \| Program terminate
2018-12-17T23:04:03.096818902Z	0	PC: 0 \| Program terminate
2018-12-17T23:04:03.199274387Z	64	PC: 99cb8 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:04:03.205859155Z	41	PC: 9441e \| Parse filename
2018-12-17T23:04:03.208999199Z	41	PC: 9449f \| Parse filename
2018-12-17T23:04:03.212098709Z	41	PC: 944bc \| Parse filename
2018-12-17T23:04:03.214426503Z	26	PC: 97967 \| Set disk transfer address
2018-12-17T23:04:03.225328987Z	71	PC: 97b63 \| Get current directory
2018-12-17T23:04:03.23317757Z	78	PC: 97b6e \| Find first file
2018-12-17T23:04:03.242983358Z	71	PC: 979dc \| Get current directory
2018-12-17T23:04:03.246626658Z	73	PC: 97079 \| Release memory
2018-12-17T23:04:03.24823469Z	67	PC: 9f229 \| Get or set file attributes
2018-12-17T23:04:03.255170715Z	67	PC: 9f229 \| Get or set file attributes
2018-12-17T23:04:03.273439183Z	61	PC: 9f229 \| Open file (Filename = 'A:\PRINT.COM')
2018-12-17T23:04:03.285494966Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:04:03.28724931Z	66	PC: 9f229 \| Move file pointer
2018-12-17T23:04:03.289651381Z	63	PC: 9f229 \| Read file or device (Read 28 bytes on handle 5)
2018-12-17T23:04:03.296734198Z	62	PC: 9f229 \| Close file
2018-12-17T23:04:03.298784992Z	67	PC: 9f229 \| Get or set file attributes
2018-12-17T23:04:03.309789883Z	75	PC: 11821 \| Execute program
2018-12-17T23:04:03.320124278Z	9	PC: 12a47 \| Display string (String= 'Hello, World! ')
2018-12-17T23:04:03.324141663Z	76	PC: 12a4b \| Terminate with return code (Return code = '36')
2018-12-17T23:04:03.328226085Z	77	PC: 11fe0 \| Get program return code
2018-12-17T23:04:03.329797132Z	72	PC: 12174 \| Allocate memory
2018-12-17T23:04:03.331871968Z	72	PC: 1218d \| Allocate memory
2018-12-17T23:04:03.334495941Z	37	PC: 123c4 \| Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T23:04:03.335693219Z	37	PC: 123cb \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T23:04:03.336808541Z	37	PC: 123d2 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:04:03.338795737Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:04:03.340308285Z	62	PC: 122ab \| Close file
2018-12-17T23:04:03.341806718Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:04:03.34423232Z	62	PC: 122ab \| Close file
2018-12-17T23:04:03.345756344Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:04:03.347279411Z	62	PC: 122ab \| Close file
2018-12-17T23:04:03.34948601Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:04:03.350987192Z	62	PC: 122ab \| Close file
2018-12-17T23:04:03.352451292Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:04:03.354126244Z	62	PC: 122ab \| Close file
2018-12-17T23:04:03.356099987Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:04:03.357571847Z	62	PC: 122ab \| Close file
2018-12-17T23:04:03.359028098Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:04:03.365660967Z	62	PC: 122ab \| Close file
2018-12-17T23:04:03.367254486Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:04:03.369580564Z	62	PC: 122ab \| Close file
2018-12-17T23:04:03.37197784Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:04:03.373490797Z	62	PC: 122ab \| Close file
2018-12-17T23:04:03.374990332Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:04:03.377566489Z	62	PC: 122ab \| Close file
2018-12-17T23:04:03.379313669Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:04:03.381014289Z	62	PC: 122ab \| Close file
2018-12-17T23:04:03.383425122Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:04:03.384818076Z	62	PC: 122ab \| Close file
2018-12-17T23:04:03.386227066Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:04:03.388275787Z	62	PC: 122ab \| Close file
2018-12-17T23:04:03.389914823Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:04:03.391600192Z	62	PC: 122ab \| Close file
2018-12-17T23:04:03.39421046Z	87	PC: 9f229 \| Get or set file date and time
2018-12-17T23:04:03.395909495Z	62	PC: 122ab \| Close file
2018-12-17T23:04:03.398858672Z	99	PC: 99a47 \| Get DBCS lead byte table pointer
2018-12-17T23:04:03.402890123Z	56	PC: 94269 \| Get or set country info
2018-12-17T23:04:03.404746671Z	64	PC: 99cb8 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:04:03.408907669Z	25	PC: 942d2 \| Get default drive
2018-12-17T23:04:03.410989384Z	71	PC: 9654d \| Get current directory
2018-12-17T23:04:03.414752193Z	64	PC: 99cb8 \| Write file or device (Write 3 bytes on handle 1)
2018-12-17T23:04:03.41770081Z	2	PC: 96522 \| Character output (Char = '3e')
2018-12-17T23:04:03.420477039Z	93	PC: 94390 \| File sharing functions
2018-12-17T23:04:03.422271137Z	93	PC: 94397 \| File sharing functions
2018-12-17T23:04:03.424119039Z	10	PC: 943a9 \| Buffered keyboard input