Sample viewer

vx.netlux.org/Trojan.DOS.Erase26.j

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:04:43.93241008Z	37	PC: 12a68 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T23:04:43.938256505Z	37	PC: 12a6c \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T23:04:43.940404776Z	9	PC: 12a73 \| Display string (String= 'YAM')
2018-12-17T23:04:43.99508883Z	37	PC: 12a68 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T23:04:43.99702945Z	37	PC: 12a6c \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T23:04:43.999873359Z	9	PC: 12a73 \| Display string (String= 'YAM')
2018-12-17T23:04:44.05389629Z	37	PC: 12a68 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T23:04:44.055745157Z	37	PC: 12a6c \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T23:04:44.058356949Z	9	PC: 12a73 \| Display string (String= 'YAM')
2018-12-17T23:04:44.112679503Z	37	PC: 12a68 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T23:04:44.114557936Z	37	PC: 12a6c \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T23:04:44.117108312Z	9	PC: 12a73 \| Display string (String= 'YAM')
2018-12-17T23:04:44.171056824Z	37	PC: 12a68 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T23:04:44.1726447Z	37	PC: 12a6c \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T23:04:44.174474602Z	9	PC: 12a73 \| Display string (String= 'YAM')
2018-12-17T23:04:44.229002963Z	37	PC: 12a68 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T23:04:44.230597231Z	37	PC: 12a6c \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T23:04:44.232149421Z	9	PC: 12a73 \| Display string (String= 'YAM')
2018-12-17T23:04:44.28913826Z	37	PC: 12a68 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T23:04:44.292200239Z	37	PC: 12a6c \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T23:04:44.293990255Z	9	PC: 12a73 \| Display string (String= 'YAM')
2018-12-17T23:04:44.348772143Z	37	PC: 12a68 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T23:04:44.350418409Z	37	PC: 12a6c \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T23:04:44.352097447Z	9	PC: 12a73 \| Display string (String= 'YAM')
2018-12-17T23:04:44.406826918Z	37	PC: 12a68 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T23:04:44.408485878Z	37	PC: 12a6c \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T23:04:44.410074054Z	9	PC: 12a73 \| Display string (String= 'YAM')
2018-12-17T23:04:44.464758439Z	37	PC: 12a68 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T23:04:44.466238863Z	37	PC: 12a6c \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T23:04:44.46758767Z	9	PC: 12a73 \| Display string (String= 'YAM')
2018-12-17T23:04:44.523293457Z	37	PC: 12a68 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T23:04:44.525139609Z	37	PC: 12a6c \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T23:04:44.526824157Z	9	PC: 12a73 \| Display string (String= 'YAM')
2018-12-17T23:04:44.580813274Z	37	PC: 12a68 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T23:04:44.584545533Z	37	PC: 12a6c \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T23:04:44.587031869Z	9	PC: 12a73 \| Display string (String= 'YAM')
2018-12-17T23:04:44.641770196Z	37	PC: 12a68 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T23:04:44.644417665Z	37	PC: 12a6c \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T23:04:44.64641969Z	9	PC: 12a73 \| Display string (String= 'YAM')
2018-12-17T23:04:44.700424677Z	37	PC: 12a68 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T23:04:44.703740563Z	37	PC: 12a6c \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T23:04:44.706068662Z	9	PC: 12a73 \| Display string (String= 'YAM')
2018-12-17T23:04:44.759140494Z	37	PC: 12a68 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T23:04:44.761218112Z	37	PC: 12a6c \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T23:04:44.763353598Z	9	PC: 12a73 \| Display string (String= 'YAM')
2018-12-17T23:04:44.817634975Z	37	PC: 12a68 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T23:04:44.819485034Z	37	PC: 12a6c \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T23:04:44.821529339Z	9	PC: 12a73 \| Display string (String= 'YAM')
2018-12-17T23:04:44.875274898Z	37	PC: 12a68 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T23:04:44.876954547Z	37	PC: 12a6c \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T23:04:44.879657361Z	9	PC: 12a73 \| Display string (String= 'YAM')
2018-12-17T23:04:44.933287774Z	37	PC: 12a68 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T23:04:44.934877754Z	37	PC: 12a6c \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T23:04:44.937320498Z	9	PC: 12a73 \| Display string (String= 'YAM')
2018-12-17T23:04:44.991771754Z	37	PC: 12a68 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T23:04:44.993618457Z	37	PC: 12a6c \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T23:04:44.996165076Z	9	PC: 12a73 \| Display string (String= 'YAM')
2018-12-17T23:04:45.050395888Z	37	PC: 12a68 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T23:04:45.052241699Z	37	PC: 12a6c \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T23:04:45.054506429Z	9	PC: 12a73 \| Display string (String= 'YAM')
2018-12-17T23:04:45.108512558Z	37	PC: 12a68 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T23:04:45.110059848Z	37	PC: 12a6c \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T23:04:45.111562344Z	9	PC: 12a73 \| Display string (String= 'YAM')
2018-12-17T23:04:45.166612977Z	37	PC: 12a68 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T23:04:45.168170927Z	37	PC: 12a6c \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T23:04:45.169643016Z	9	PC: 12a73 \| Display string (String= 'YAM')
2018-12-17T23:04:45.22511406Z	37	PC: 12a68 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T23:04:45.226739767Z	37	PC: 12a6c \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T23:04:45.228217677Z	9	PC: 12a73 \| Display string (String= 'YAM')
2018-12-17T23:04:45.283053977Z	37	PC: 12a68 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T23:04:45.284925166Z	37	PC: 12a6c \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T23:04:45.287246051Z	9	PC: 12a73 \| Display string (String= 'YAM')
2018-12-17T23:04:45.341617587Z	37	PC: 12a68 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T23:04:45.343349976Z	37	PC: 12a6c \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T23:04:45.344985823Z	9	PC: 12a73 \| Display string (String= 'YAM')
2018-12-17T23:04:45.399724539Z	37	PC: 12a68 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T23:04:45.401921681Z	37	PC: 12a6c \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T23:04:45.404057188Z	9	PC: 12a73 \| Display string (String= 'YAM')
2018-12-17T23:04:45.458605155Z	66	PC: 15c30 \| Move file pointer