Sample viewer

vx.netlux.org/Virus.DOS.HLLO.Mission

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:03:30.980769969Z 48 PC: 12a4c | Get DOS version
2018-12-17T22:03:30.982525655Z 53 PC: 12bab | Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:03:30.983602986Z 53 PC: 12bb8 | Get interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-17T22:03:30.984644685Z 53 PC: 12bc5 | Get interrupt vector (Interrupt = '5' AKA 'Printer output')
2018-12-17T22:03:30.986389256Z 53 PC: 12bd2 | Get interrupt vector (Interrupt = '6' AKA 'Direct console I/O')
2018-12-17T22:03:30.98755421Z 37 PC: 12be6 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:03:30.988833765Z 74 PC: 12af4 | Reallocate memory
2018-12-17T22:03:30.991354353Z 68 PC: 13ecb | I/O control for devices (Set for = '�X ')
2018-12-17T22:03:30.993478112Z 68 PC: 13ecb | I/O control for devices (Set for = '�X ')
2018-12-17T22:03:30.995835869Z 47 PC: 13c66 | Get disk transfer address
2018-12-17T22:03:30.997649278Z 26 PC: 13c6f | Set disk transfer address
2018-12-17T22:03:31.000037681Z 78 PC: 13c79 | Find first file
2018-12-17T22:03:31.006391616Z 26 PC: 13c81 | Set disk transfer address
2018-12-17T22:03:31.008345044Z 61 PC: 1417e | Open file (Filename = '!ù')
2018-12-17T22:03:31.015201962Z 68 PC: 13e6f | I/O control for devices (Set for = '� ��')
2018-12-17T22:03:31.016653354Z 68 PC: 13ecb | I/O control for devices
2018-12-17T22:03:31.018582949Z 66 PC: 13eef | Move file pointer
2018-12-17T22:03:31.021029999Z 63 PC: 14267 | Read file or device (Read 512 bytes on handle 5)
2018-12-17T22:03:31.028120604Z 62 PC: 13be2 | Close file
2018-12-17T22:03:31.030405422Z 61 PC: 1417e | Open file (Filename = 'A:\TEST.EXE')
2018-12-17T22:03:31.038171504Z 68 PC: 13e6f | I/O control for devices (Set for = '+ - Copyright 1990 Borland Intl.')
2018-12-17T22:03:31.039662416Z 68 PC: 13ecb | I/O control for devices
2018-12-17T22:03:31.041782681Z 61 PC: 1417e | Open file (Filename = 'TEST.EXE')
2018-12-17T22:03:31.049394287Z 68 PC: 13e6f | I/O control for devices (Set for = '+ - Copyright 1990 Borland Intl.')
2018-12-17T22:03:31.050765545Z 68 PC: 13ecb | I/O control for devices
2018-12-17T22:03:31.052570161Z 66 PC: 13cce | Move file pointer
2018-12-17T22:03:31.054613994Z 66 PC: 13cdb | Move file pointer
2018-12-17T22:03:31.055910082Z 66 PC: 13cea | Move file pointer
2018-12-17T22:03:31.057133854Z 66 PC: 13cce | Move file pointer
2018-12-17T22:03:31.058891918Z 66 PC: 13cdb | Move file pointer
2018-12-17T22:03:31.060169204Z 66 PC: 13cea | Move file pointer
2018-12-17T22:03:31.061296477Z 67 PC: 13b0a | Get or set file attributes
2018-12-17T22:03:31.065701855Z 87 PC: 13e47 | Get or set file date and time
2018-12-17T22:03:31.067080274Z 62 PC: 13be2 | Close file
2018-12-17T22:03:31.06845699Z 67 PC: 13b0a | Get or set file attributes
2018-12-17T22:03:31.595923355Z 65 PC: 1430c | Delete file (Filename = 'TEST.EXE')
2018-12-17T22:03:31.610086707Z 67 PC: 13b0a | Get or set file attributes
2018-12-17T22:03:31.616711389Z 60 PC: 1400b | Create or truncate file
2018-12-17T22:03:31.631755561Z 68 PC: 13ecb | I/O control for devices (Set for = '��')
2018-12-17T22:03:31.634073913Z 63 PC: 14267 | Read file or device (Read 8192 bytes on handle 5)
2018-12-17T22:03:31.641325659Z 81 PC: 122cc | Get current PSP
2018-12-17T22:03:31.643420604Z 2 PC: 1268d | Character output (Char = '0d')
2018-12-17T22:03:31.646155655Z 2 PC: 1268d | Character output (Char = '0a')
2018-12-17T22:03:31.650120383Z 89 PC: 12459 | Get extended error info
2018-12-17T22:03:31.652462501Z 2 PC: 1268d | Character output (Char = '53')
2018-12-17T22:03:31.655225605Z 2 PC: 1268d | Character output (Char = '65')
2018-12-17T22:03:31.658252766Z 2 PC: 1268d | Character output (Char = '63')
2018-12-17T22:03:31.660810662Z 2 PC: 1268d | Character output (Char = '74')
2018-12-17T22:03:31.664178853Z 2 PC: 1268d | Character output (Char = '6f')
2018-12-17T22:03:31.666572298Z 2 PC: 1268d | Character output (Char = '72')
2018-12-17T22:03:31.669018429Z 2 PC: 1268d | Character output (Char = '20')
2018-12-17T22:03:31.672465975Z 2 PC: 1268d | Character output (Char = '6e')
2018-12-17T22:03:31.67491355Z 2 PC: 1268d | Character output (Char = '6f')
2018-12-17T22:03:31.677363499Z 2 PC: 1268d | Character output (Char = '74')
2018-12-17T22:03:31.681208588Z 2 PC: 1268d | Character output (Char = '20')
2018-12-17T22:03:31.687430669Z 2 PC: 1268d | Character output (Char = '66')
2018-12-17T22:03:31.689775917Z 2 PC: 1268d | Character output (Char = '6f')
2018-12-17T22:03:31.692735504Z 2 PC: 1268d | Character output (Char = '75')
2018-12-17T22:03:31.69508187Z 2 PC: 1268d | Character output (Char = '6e')
2018-12-17T22:03:31.697453177Z 2 PC: 1268d | Character output (Char = '64')
2018-12-17T22:03:31.700586511Z 2 PC: 1268d | Character output (Char = '20')
2018-12-17T22:03:31.703967543Z 2 PC: 126da | Character output (Char = '72')
2018-12-17T22:03:31.706204572Z 2 PC: 126da | Character output (Char = '65')
2018-12-17T22:03:31.708747835Z 2 PC: 126da | Character output (Char = '61')
2018-12-17T22:03:31.711536237Z 2 PC: 126da | Character output (Char = '64')
2018-12-17T22:03:31.713950405Z 2 PC: 126da | Character output (Char = '69')
2018-12-17T22:03:31.71665257Z 2 PC: 126da | Character output (Char = '6e')
2018-12-17T22:03:31.718680567Z 2 PC: 126da | Character output (Char = '67')
2018-12-17T22:03:31.720733688Z 2 PC: 1268d | Character output (Char = '20')
2018-12-17T22:03:31.723551112Z 2 PC: 1268d | Character output (Char = '64')
2018-12-17T22:03:31.725883731Z 2 PC: 1268d | Character output (Char = '72')
2018-12-17T22:03:31.728192138Z 2 PC: 1268d | Character output (Char = '69')
2018-12-17T22:03:31.73125813Z 2 PC: 1268d | Character output (Char = '76')
2018-12-17T22:03:31.734527577Z 2 PC: 1268d | Character output (Char = '65')
2018-12-17T22:03:31.739142464Z 2 PC: 1268d | Character output (Char = '20')
2018-12-17T22:03:31.74227451Z 2 PC: 126ce | Character output (Char = '41')
2018-12-17T22:03:31.744709741Z 2 PC: 1268d | Character output (Char = '0d')
2018-12-17T22:03:31.746938718Z 2 PC: 1268d | Character output (Char = '0a')
2018-12-17T22:03:31.750993584Z 2 PC: 1268d | Character output (Char = '41')
2018-12-17T22:03:31.753603602Z 2 PC: 1268d | Character output (Char = '62')
2018-12-17T22:03:31.755908686Z 2 PC: 1268d | Character output (Char = '6f')
2018-12-17T22:03:31.758424666Z 2 PC: 1268d | Character output (Char = '72')
2018-12-17T22:03:31.761023906Z 2 PC: 1268d | Character output (Char = '74')
2018-12-17T22:03:31.763834686Z 2 PC: 1268d | Character output (Char = '2c')
2018-12-17T22:03:31.766418794Z 2 PC: 1268d | Character output (Char = '20')
2018-12-17T22:03:31.768849148Z 2 PC: 1268d | Character output (Char = '52')
2018-12-17T22:03:31.770903343Z 2 PC: 1268d | Character output (Char = '65')
2018-12-17T22:03:31.773129007Z 2 PC: 1268d | Character output (Char = '74')
2018-12-17T22:03:31.77582042Z 2 PC: 1268d | Character output (Char = '72')
2018-12-17T22:03:31.778160421Z 2 PC: 1268d | Character output (Char = '79')
2018-12-17T22:03:31.781323859Z 2 PC: 1268d | Character output (Char = '2c')
2018-12-17T22:03:31.784463345Z 2 PC: 1268d | Character output (Char = '20')
2018-12-17T22:03:31.786792138Z 2 PC: 1268d | Character output (Char = '49')
2018-12-17T22:03:31.789093733Z 2 PC: 1268d | Character output (Char = '67')
2018-12-17T22:03:31.792373663Z 2 PC: 1268d | Character output (Char = '6e')
2018-12-17T22:03:31.794703065Z 2 PC: 1268d | Character output (Char = '6f')
2018-12-17T22:03:31.797012642Z 2 PC: 1268d | Character output (Char = '72')
2018-12-17T22:03:31.800244257Z 2 PC: 1268d | Character output (Char = '65')
2018-12-17T22:03:31.802654543Z 2 PC: 1268d | Character output (Char = '2c')
2018-12-17T22:03:31.809871733Z 2 PC: 1268d | Character output (Char = '20')
2018-12-17T22:03:31.812930885Z 2 PC: 1268d | Character output (Char = '46')
2018-12-17T22:03:31.815622724Z 2 PC: 1268d | Character output (Char = '61')
2018-12-17T22:03:31.81818348Z 2 PC: 1268d | Character output (Char = '69')
2018-12-17T22:03:31.821676607Z 2 PC: 1268d | Character output (Char = '6c')
2018-12-17T22:03:31.82434945Z 2 PC: 1268d | Character output (Char = '3f')
2018-12-17T22:03:31.826754947Z 12 PC: 12581 | Flush input buffer and input