Sample viewer

vx.netlux.org/Virus.DOS.Trux.1464

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:04:37.409154698Z	48	PC: 12c5c \| Get DOS version
2018-12-17T23:04:37.411678477Z	74	PC: 12c6b \| Reallocate memory
2018-12-17T23:04:37.414020835Z	74	PC: 12c76 \| Reallocate memory
2018-12-17T23:04:37.415695693Z	72	PC: 12c7d \| Allocate memory
2018-12-17T23:04:37.418625168Z	53	PC: 9f63a \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:04:37.427693948Z	37	PC: 9f64e \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:04:37.428860646Z	67	PC: 9f65a \| Get or set file attributes
2018-12-17T23:04:37.438431409Z	67	PC: 9f666 \| Get or set file attributes
2018-12-17T23:04:37.446077694Z	37	PC: 9f726 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:04:37.450899369Z	67	PC: 12ce4 \| Get or set file attributes
2018-12-17T23:04:37.457696822Z	53	PC: 9f63a \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:04:37.459745269Z	37	PC: 9f64e \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:04:37.461202766Z	67	PC: 9f65a \| Get or set file attributes
2018-12-17T23:04:37.468218988Z	67	PC: 9f666 \| Get or set file attributes
2018-12-17T23:04:37.814852416Z	61	PC: 9f670 \| Open file (Filename = '��t��t=�2u�4��.�.%��O��̜��<')
2018-12-17T23:04:37.822382782Z	63	PC: 9f681 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T23:04:37.828814126Z	87	PC: 9f6a3 \| Get or set file date and time
2018-12-17T23:04:37.831644256Z	66	PC: 9f6b3 \| Move file pointer
2018-12-17T23:04:37.833155091Z	64	PC: 9f6e7 \| Write file or device (Write 1721 bytes on handle 5)
2018-12-17T23:04:37.842645016Z	66	PC: 9f6ef \| Move file pointer
2018-12-17T23:04:37.844809721Z	64	PC: 9f6f9 \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T23:04:37.850562076Z	87	PC: 9f70c \| Get or set file date and time
2018-12-17T23:04:37.851940725Z	62	PC: 9f710 \| Close file
2018-12-17T23:04:37.859611361Z	67	PC: 9f71c \| Get or set file attributes
2018-12-17T23:04:37.870712136Z	37	PC: 9f726 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:04:37.872212153Z	67	PC: 12ced \| Get or set file attributes
2018-12-17T23:04:37.879387429Z	53	PC: 9f63a \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:04:37.88256441Z	37	PC: 9f64e \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:04:37.884184151Z	67	PC: 9f65a \| Get or set file attributes
2018-12-17T23:04:37.892042446Z	67	PC: 9f666 \| Get or set file attributes
2018-12-17T23:04:37.902433316Z	61	PC: 9f670 \| Open file (Filename = '�4��.�.%��O��̜��<')
2018-12-17T23:04:37.909299617Z	63	PC: 9f681 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T23:04:37.915647322Z	87	PC: 9f6a3 \| Get or set file date and time
2018-12-17T23:04:37.929774424Z	66	PC: 9f6b3 \| Move file pointer
2018-12-17T23:04:37.932012229Z	64	PC: 9f6e7 \| Write file or device (Write 1721 bytes on handle 5)
2018-12-17T23:04:37.947873074Z	66	PC: 9f6ef \| Move file pointer
2018-12-17T23:04:37.955267446Z	64	PC: 9f6f9 \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T23:04:37.958076465Z	87	PC: 9f70c \| Get or set file date and time
2018-12-17T23:04:37.959621153Z	62	PC: 9f710 \| Close file
2018-12-17T23:04:37.967737276Z	67	PC: 9f71c \| Get or set file attributes
2018-12-17T23:04:37.977289114Z	37	PC: 9f726 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:04:37.978370707Z	67	PC: 12cf6 \| Get or set file attributes
2018-12-17T23:04:37.984624512Z	53	PC: 9f63a \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:04:37.985790646Z	37	PC: 9f64e \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:04:37.986784822Z	67	PC: 9f65a \| Get or set file attributes
2018-12-17T23:04:37.994151282Z	67	PC: 9f666 \| Get or set file attributes
2018-12-17T23:04:38.003587872Z	61	PC: 9f670 \| Open file (Filename = '�O��̜��<')
2018-12-17T23:04:38.022619208Z	63	PC: 9f681 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T23:04:38.028715464Z	87	PC: 9f6a3 \| Get or set file date and time
2018-12-17T23:04:38.03017894Z	66	PC: 9f6b3 \| Move file pointer
2018-12-17T23:04:38.031700377Z	64	PC: 9f6e7 \| Write file or device (Write 1721 bytes on handle 5)
2018-12-17T23:04:38.040963637Z	66	PC: 9f6ef \| Move file pointer
2018-12-17T23:04:38.042444732Z	64	PC: 9f6f9 \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T23:04:38.045291474Z	87	PC: 9f70c \| Get or set file date and time
2018-12-17T23:04:38.048068783Z	62	PC: 9f710 \| Close file
2018-12-17T23:04:38.054945589Z	67	PC: 9f71c \| Get or set file attributes
2018-12-17T23:04:38.065124711Z	37	PC: 9f726 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:04:38.0673011Z	67	PC: 12cff \| Get or set file attributes
2018-12-17T23:04:38.073505782Z	53	PC: 9f63a \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:04:38.074780165Z	37	PC: 9f64e \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:04:38.076274226Z	67	PC: 9f65a \| Get or set file attributes
2018-12-17T23:04:38.082779147Z	67	PC: 9f666 \| Get or set file attributes
2018-12-17T23:04:38.106721874Z	61	PC: 9f670 \| Open file (Filename = '?PS�Q�!��&;')
2018-12-17T23:04:38.113797344Z	63	PC: 9f681 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T23:04:38.1201915Z	87	PC: 9f6a3 \| Get or set file date and time
2018-12-17T23:04:38.122297024Z	66	PC: 9f6b3 \| Move file pointer
2018-12-17T23:04:38.124588182Z	64	PC: 9f6e7 \| Write file or device (Write 1721 bytes on handle 5)
2018-12-17T23:04:38.13456979Z	66	PC: 9f6ef \| Move file pointer
2018-12-17T23:04:38.135867127Z	64	PC: 9f6f9 \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T23:04:38.139368305Z	87	PC: 9f70c \| Get or set file date and time
2018-12-17T23:04:38.141293768Z	62	PC: 9f710 \| Close file
2018-12-17T23:04:38.14933636Z	67	PC: 9f71c \| Get or set file attributes
2018-12-17T23:04:38.159608443Z	37	PC: 9f726 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:04:38.161005836Z	67	PC: 12d08 \| Get or set file attributes
2018-12-17T23:04:38.16843155Z	53	PC: 9f63a \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:04:38.170067019Z	37	PC: 9f64e \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:04:38.171713443Z	67	PC: 9f65a \| Get or set file attributes
2018-12-17T23:04:38.178864681Z	67	PC: 9f666 \| Get or set file attributes
2018-12-17T23:04:38.18672077Z	37	PC: 9f726 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:04:38.188187365Z	67	PC: 12d11 \| Get or set file attributes
2018-12-17T23:04:38.194824075Z	53	PC: 9f63a \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:04:38.196502952Z	37	PC: 9f64e \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:04:38.198182698Z	67	PC: 9f65a \| Get or set file attributes
2018-12-17T23:04:38.207434126Z	67	PC: 9f666 \| Get or set file attributes
2018-12-17T23:04:38.223451838Z	61	PC: 9f670 \| Open file (Filename = '��&�G$<t�&�o�&�_')
2018-12-17T23:04:38.230779941Z	63	PC: 9f681 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T23:04:38.236253225Z	87	PC: 9f6a3 \| Get or set file date and time
2018-12-17T23:04:38.23785225Z	66	PC: 9f6b3 \| Move file pointer
2018-12-17T23:04:38.239955603Z	64	PC: 9f6e7 \| Write file or device (Write 1721 bytes on handle 5)
2018-12-17T23:04:38.252250731Z	66	PC: 9f6ef \| Move file pointer
2018-12-17T23:04:38.253858229Z	64	PC: 9f6f9 \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T23:04:38.256770172Z	87	PC: 9f70c \| Get or set file date and time
2018-12-17T23:04:38.258260344Z	62	PC: 9f710 \| Close file
2018-12-17T23:04:38.265297959Z	67	PC: 9f71c \| Get or set file attributes
2018-12-17T23:04:38.275067401Z	37	PC: 9f726 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:04:38.276377567Z	67	PC: 12d1a \| Get or set file attributes
2018-12-17T23:04:38.282581384Z	2	PC: 13049 \| Character output (Char = '54')
2018-12-17T23:04:38.285657604Z	2	PC: 13049 \| Character output (Char = '52')
2018-12-17T23:04:38.28799021Z	2	PC: 13049 \| Character output (Char = '55')
2018-12-17T23:04:38.290439747Z	2	PC: 13049 \| Character output (Char = '58')
2018-12-17T23:04:38.293467232Z	2	PC: 13049 \| Character output (Char = '45')
2018-12-17T23:04:38.296929006Z	2	PC: 13049 \| Character output (Char = '53')
2018-12-17T23:04:38.299556062Z	2	PC: 13049 \| Character output (Char = '54')
2018-12-17T23:04:38.302890926Z	2	PC: 13049 \| Character output (Char = '45')
2018-12-17T23:04:38.305779029Z	2	PC: 13049 \| Character output (Char = '44')
2018-12-17T23:04:38.308367058Z	2	PC: 13049 \| Character output (Char = '20')
2018-12-17T23:04:38.311846673Z	2	PC: 13049 \| Character output (Char = '76')
2018-12-17T23:04:38.314749276Z	2	PC: 13049 \| Character output (Char = '69')
2018-12-17T23:04:38.317350909Z	2	PC: 13049 \| Character output (Char = '72')
2018-12-17T23:04:38.32061119Z	2	PC: 13049 \| Character output (Char = '75')
2018-12-17T23:04:38.324219586Z	2	PC: 13049 \| Character output (Char = '73')
2018-12-17T23:04:38.326821844Z	2	PC: 13049 \| Character output (Char = '20')
2018-12-17T23:04:38.330400289Z	2	PC: 13049 \| Character output (Char = '70')
2018-12-17T23:04:38.333053498Z	2	PC: 13049 \| Character output (Char = '72')
2018-12-17T23:04:38.335667578Z	2	PC: 13049 \| Character output (Char = '65')
2018-12-17T23:04:38.338676605Z	2	PC: 13049 \| Character output (Char = '73')
2018-12-17T23:04:38.341258228Z	2	PC: 13049 \| Character output (Char = '65')
2018-12-17T23:04:38.343614778Z	2	PC: 13049 \| Character output (Char = '6e')
2018-12-17T23:04:38.346101721Z	2	PC: 13049 \| Character output (Char = '74')
2018-12-17T23:04:38.349013178Z	2	PC: 13049 \| Character output (Char = '73')
2018-12-17T23:04:38.351346348Z	2	PC: 13049 \| Character output (Char = '3a')
2018-12-17T23:04:38.354139801Z	2	PC: 13049 \| Character output (Char = '0d')
2018-12-17T23:04:38.35690668Z	2	PC: 13049 \| Character output (Char = '0a')
2018-12-17T23:04:38.360624239Z	2	PC: 13049 \| Character output (Char = '74')
2018-12-17T23:04:38.362914524Z	2	PC: 13049 \| Character output (Char = '68')
2018-12-17T23:04:38.366133623Z	2	PC: 13049 \| Character output (Char = '65')
2018-12-17T23:04:38.368419541Z	2	PC: 13049 \| Character output (Char = '20')
2018-12-17T23:04:38.371800202Z	2	PC: 13049 \| Character output (Char = '64')
2018-12-17T23:04:38.37641285Z	2	PC: 13049 \| Character output (Char = '65')
2018-12-17T23:04:38.385357639Z	2	PC: 13049 \| Character output (Char = '6d')
2018-12-17T23:04:38.387531936Z	2	PC: 13049 \| Character output (Char = '6f')
2018-12-17T23:04:38.39131329Z	2	PC: 13049 \| Character output (Char = '20')
2018-12-17T23:04:38.393444722Z	2	PC: 13049 \| Character output (Char = '65')
2018-12-17T23:04:38.395484509Z	2	PC: 13049 \| Character output (Char = '66')
2018-12-17T23:04:38.399780095Z	2	PC: 13049 \| Character output (Char = '66')
2018-12-17T23:04:38.401903897Z	2	PC: 13049 \| Character output (Char = '65')
2018-12-17T23:04:38.404063811Z	2	PC: 13049 \| Character output (Char = '63')
2018-12-17T23:04:38.407185729Z	2	PC: 13049 \| Character output (Char = '74')
2018-12-17T23:04:38.408778633Z	2	PC: 13049 \| Character output (Char = '20')
2018-12-17T23:04:38.412021245Z	2	PC: 13049 \| Character output (Char = '6f')
2018-12-17T23:04:38.421679552Z	2	PC: 13049 \| Character output (Char = '66')
2018-12-17T23:04:38.423737426Z	2	PC: 13049 \| Character output (Char = '20')
2018-12-17T23:04:38.425732016Z	2	PC: 13049 \| Character output (Char = '74')
2018-12-17T23:04:38.428152312Z	2	PC: 13049 \| Character output (Char = '68')
2018-12-17T23:04:38.430077515Z	2	PC: 13049 \| Character output (Char = '65')
2018-12-17T23:04:38.432015374Z	2	PC: 13049 \| Character output (Char = '20')
2018-12-17T23:04:38.434604304Z	2	PC: 13049 \| Character output (Char = '76')
2018-12-17T23:04:38.436696404Z	2	PC: 13049 \| Character output (Char = '69')
2018-12-17T23:04:38.438679893Z	2	PC: 13049 \| Character output (Char = '72')
2018-12-17T23:04:38.450081172Z	2	PC: 13049 \| Character output (Char = '75')
2018-12-17T23:04:38.452751443Z	2	PC: 13049 \| Character output (Char = '73')
2018-12-17T23:04:38.454903943Z	2	PC: 13049 \| Character output (Char = '20')
2018-12-17T23:04:38.45829045Z	2	PC: 13049 \| Character output (Char = '44')
2018-12-17T23:04:38.462112234Z	2	PC: 13049 \| Character output (Char = '65')
2018-12-17T23:04:38.464143037Z	2	PC: 13049 \| Character output (Char = '76')
2018-12-17T23:04:38.466647552Z	2	PC: 13049 \| Character output (Char = '69')
2018-12-17T23:04:38.468614513Z	2	PC: 13049 \| Character output (Char = '6c')
2018-12-17T23:04:38.470572753Z	2	PC: 13049 \| Character output (Char = '2e')
2018-12-17T23:04:38.47296851Z	2	PC: 13049 \| Character output (Char = '39')
2018-12-17T23:04:38.47490785Z	2	PC: 13049 \| Character output (Char = '34')
2018-12-17T23:04:38.47671825Z	2	PC: 13049 \| Character output (Char = '31')
2018-12-17T23:04:38.479179145Z	2	PC: 13051 \| Character output (Char = '0d')
2018-12-17T23:04:38.480983529Z	2	PC: 13057 \| Character output (Char = '0a')