Sample viewer

vx.netlux.org/Virus.DOS.Beda.1314

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:04:51.298928466Z	190	PC: 13e7e \| UNKNOWN!
2018-12-17T23:04:51.300647318Z	82	PC: 13e8a \| Get DOS internal pointers (SYSVARS)
2018-12-17T23:04:51.302049004Z	53	PC: 13eb7 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T23:04:51.303273187Z	37	PC: 13ef7 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T23:04:51.304568062Z	9	PC: 12a85 \| Display string (String= 'Sophos Ltd, Oxford sacrificial COM goat 1400H bytes long ')
2018-12-17T23:04:51.309100436Z	0	PC: 12a89 \| Program terminate
2018-12-17T23:04:51.311625364Z	77	PC: 11fe0 \| Get program return code
2018-12-17T23:04:51.31282528Z	72	PC: 12174 \| Allocate memory
2018-12-17T23:04:51.315055454Z	72	PC: 1218d \| Allocate memory
2018-12-17T23:04:51.317742408Z	37	PC: 123c4 \| Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T23:04:51.319015452Z	37	PC: 123cb \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T23:04:51.321985297Z	37	PC: 123d2 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:04:51.32366156Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:04:51.32603845Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:04:51.329544854Z	62	PC: 9f439 \| Close file
2018-12-17T23:04:51.331611832Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:04:51.333449568Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:04:51.335889917Z	62	PC: 9f439 \| Close file
2018-12-17T23:04:51.338198118Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:04:51.340011208Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:04:51.3432136Z	62	PC: 9f439 \| Close file
2018-12-17T23:04:51.346085481Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:04:51.349254681Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:04:51.35489058Z	62	PC: 9f439 \| Close file
2018-12-17T23:04:51.357796656Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:04:51.359997996Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:04:51.362129064Z	62	PC: 9f439 \| Close file
2018-12-17T23:04:51.365420514Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:04:51.36768349Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:04:51.369876745Z	62	PC: 9f439 \| Close file
2018-12-17T23:04:51.373072365Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:04:51.375273174Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:04:51.377356762Z	62	PC: 9f439 \| Close file
2018-12-17T23:04:51.379940892Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:04:51.381614819Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:04:51.383451604Z	62	PC: 9f439 \| Close file
2018-12-17T23:04:51.387662934Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:04:51.389131205Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:04:51.390573658Z	62	PC: 9f439 \| Close file
2018-12-17T23:04:51.392780468Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:04:51.394380638Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:04:51.395767546Z	62	PC: 9f439 \| Close file
2018-12-17T23:04:51.39801337Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:04:51.399823764Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:04:51.401149297Z	62	PC: 9f439 \| Close file
2018-12-17T23:04:51.404404209Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:04:51.406714504Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:04:51.409556328Z	62	PC: 9f439 \| Close file
2018-12-17T23:04:51.41173779Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:04:51.414861785Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:04:51.416946035Z	62	PC: 9f439 \| Close file
2018-12-17T23:04:51.419143959Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:04:51.422171933Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:04:51.424104217Z	62	PC: 9f439 \| Close file
2018-12-17T23:04:51.426162568Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:04:51.431900099Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:04:51.434359194Z	62	PC: 9f439 \| Close file
2018-12-17T23:04:51.437895664Z	99	PC: 999d7 \| Get DBCS lead byte table pointer
2018-12-17T23:04:51.439997748Z	56	PC: 941f9 \| Get or set country info
2018-12-17T23:04:51.442370861Z	64	PC: 99c48 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:04:51.447261648Z	25	PC: 94262 \| Get default drive
2018-12-17T23:04:51.449649869Z	71	PC: 964dd \| Get current directory
2018-12-17T23:04:51.454559763Z	64	PC: 99c48 \| Write file or device (Write 3 bytes on handle 1)
2018-12-17T23:04:51.458700831Z	2	PC: 964b2 \| Character output (Char = '3e')
2018-12-17T23:04:51.461723406Z	93	PC: 94320 \| File sharing functions
2018-12-17T23:04:51.46463429Z	93	PC: 94327 \| File sharing functions
2018-12-17T23:04:51.467161142Z	10	PC: 94339 \| Buffered keyboard input
2018-12-17T23:05:06.296167688Z	0	PC: 0 \| Program terminate
2018-12-17T23:05:07.652002551Z	0	PC: 0 \| Program terminate
2018-12-17T23:05:07.755072127Z	64	PC: 99c48 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:05:07.762641171Z	41	PC: 943ae \| Parse filename
2018-12-17T23:05:07.766254686Z	41	PC: 9442f \| Parse filename
2018-12-17T23:05:07.768120184Z	41	PC: 9444c \| Parse filename
2018-12-17T23:05:07.771125125Z	26	PC: 978f7 \| Set disk transfer address
2018-12-17T23:05:07.7731587Z	71	PC: 97af3 \| Get current directory
2018-12-17T23:05:07.781718838Z	78	PC: 9f3dc \| Find first file
2018-12-17T23:05:07.792636088Z	47	PC: 9f3e4 \| Get disk transfer address
2018-12-17T23:05:07.794588299Z	71	PC: 9796c \| Get current directory
2018-12-17T23:05:07.798344633Z	73	PC: 97009 \| Release memory
2018-12-17T23:05:07.80159724Z	37	PC: 9f21b \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:05:07.803472696Z	67	PC: 9f226 \| Get or set file attributes
2018-12-17T23:05:07.814824253Z	67	PC: 9f237 \| Get or set file attributes
2018-12-17T23:05:07.834424051Z	61	PC: 9f470 \| Open file (Filename = 'A:\PRINT.COM')
2018-12-17T23:05:07.841860626Z	87	PC: 9f484 \| Get or set file date and time
2018-12-17T23:05:07.84357488Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:05:07.845246714Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:05:07.847482769Z	62	PC: 9f439 \| Close file
2018-12-17T23:05:07.849530921Z	61	PC: 9f24f \| Open file (Filename = 'A:\PRINT.COM')
2018-12-17T23:05:07.856716964Z	87	PC: 9f25d \| Get or set file date and time
2018-12-17T23:05:07.859556594Z	66	PC: 9f26f \| Move file pointer
2018-12-17T23:05:07.861510879Z	66	PC: 9f27e \| Move file pointer
2018-12-17T23:05:07.86346831Z	63	PC: 9f288 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:05:07.872299598Z	66	PC: 9f299 \| Move file pointer
2018-12-17T23:05:07.874167049Z	64	PC: 9f2b1 \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T23:05:07.87775138Z	66	PC: 9f2ca \| Move file pointer
2018-12-17T23:05:07.880476264Z	64	PC: 9f45f \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:05:07.88352115Z	66	PC: 9f392 \| Move file pointer
2018-12-17T23:05:07.88523884Z	64	PC: 9f45f \| Write file or device (Write 1314 bytes on handle 5)
2018-12-17T23:05:07.895446426Z	87	PC: 9f3a8 \| Get or set file date and time
2018-12-17T23:05:07.898653247Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:05:07.900679337Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:05:07.902638992Z	62	PC: 9f439 \| Close file
2018-12-17T23:05:07.912497942Z	67	PC: 9f3bd \| Get or set file attributes
2018-12-17T23:05:07.923729644Z	75	PC: 11821 \| Execute program
2018-12-17T23:05:07.939358244Z	9	PC: 12a47 \| Display string (String= 'Hello, World! ')
2018-12-17T23:05:07.943196171Z	76	PC: 12a4b \| Terminate with return code (Return code = '36')
2018-12-17T23:05:07.945837919Z	77	PC: 11fe0 \| Get program return code
2018-12-17T23:05:07.947584844Z	72	PC: 12174 \| Allocate memory
2018-12-17T23:05:07.949569427Z	72	PC: 1218d \| Allocate memory
2018-12-17T23:05:07.951410278Z	37	PC: 123c4 \| Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T23:05:07.952585589Z	37	PC: 123cb \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T23:05:07.953982275Z	37	PC: 123d2 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:05:07.956114816Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:05:07.957602143Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:05:07.959226387Z	62	PC: 9f439 \| Close file
2018-12-17T23:05:07.961107725Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:05:07.962650476Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:05:07.964127914Z	62	PC: 9f439 \| Close file
2018-12-17T23:05:07.966299909Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:05:07.967792225Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:05:07.969268792Z	62	PC: 9f439 \| Close file
2018-12-17T23:05:07.971436148Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:05:07.972916471Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:05:07.974366709Z	62	PC: 9f439 \| Close file
2018-12-17T23:05:07.976601852Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:05:07.978130207Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:05:07.979599209Z	62	PC: 9f439 \| Close file
2018-12-17T23:05:07.981734414Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:05:07.983193688Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:05:07.98477922Z	62	PC: 9f439 \| Close file
2018-12-17T23:05:07.9880443Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:05:07.990384451Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:05:07.992634722Z	62	PC: 9f439 \| Close file
2018-12-17T23:05:07.995742507Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:05:07.997843458Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:05:07.999833019Z	62	PC: 9f439 \| Close file
2018-12-17T23:05:08.002672048Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:05:08.004271586Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:05:08.005840206Z	62	PC: 9f439 \| Close file
2018-12-17T23:05:08.008284813Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:05:08.010470734Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:05:08.012592604Z	62	PC: 9f439 \| Close file
2018-12-17T23:05:08.015293794Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:05:08.017108527Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:05:08.018876361Z	62	PC: 9f439 \| Close file
2018-12-17T23:05:08.021355854Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:05:08.02331599Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:05:08.025157933Z	62	PC: 9f439 \| Close file
2018-12-17T23:05:08.028058238Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:05:08.030432332Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:05:08.032297079Z	62	PC: 9f439 \| Close file
2018-12-17T23:05:08.035274959Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:05:08.037478272Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:05:08.039531774Z	62	PC: 9f439 \| Close file
2018-12-17T23:05:08.041671568Z	66	PC: 9f410 \| Move file pointer
2018-12-17T23:05:08.043804479Z	87	PC: 9f416 \| Get or set file date and time
2018-12-17T23:05:08.049316936Z	62	PC: 9f439 \| Close file
2018-12-17T23:05:08.053906035Z	99	PC: 999d7 \| Get DBCS lead byte table pointer
2018-12-17T23:05:08.055733091Z	56	PC: 941f9 \| Get or set country info
2018-12-17T23:05:08.058007087Z	64	PC: 99c48 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:05:08.063192759Z	25	PC: 94262 \| Get default drive
2018-12-17T23:05:08.06521378Z	71	PC: 964dd \| Get current directory
2018-12-17T23:05:08.069575231Z	64	PC: 99c48 \| Write file or device (Write 3 bytes on handle 1)
2018-12-17T23:05:08.0739666Z	2	PC: 964b2 \| Character output (Char = '3e')
2018-12-17T23:05:08.076963455Z	93	PC: 94320 \| File sharing functions
2018-12-17T23:05:08.07924734Z	93	PC: 94327 \| File sharing functions
2018-12-17T23:05:08.081633949Z	10	PC: 94339 \| Buffered keyboard input