Sample viewer

vx.netlux.org/Virus.DOS.SillyC.219.b

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:05:31.958869095Z	78	PC: 12a79 \| Find first file
2018-12-17T23:05:31.965355232Z	61	PC: 12a93 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T23:05:31.974295543Z	63	PC: 12aa0 \| Read file or device (Read 219 bytes on handle 5)
2018-12-17T23:05:31.981451509Z	66	PC: 12ac1 \| Move file pointer
2018-12-17T23:05:31.983378032Z	64	PC: 12ace \| Write file or device (Write 219 bytes on handle 5)
2018-12-17T23:05:31.998744597Z	66	PC: 12ad7 \| Move file pointer
2018-12-17T23:05:32.001004856Z	64	PC: 12ae1 \| Write file or device (Write 219 bytes on handle 5)
2018-12-17T23:05:32.008332556Z	62	PC: 12ae5 \| Close file
2018-12-17T23:05:32.01887038Z	79	PC: 12a79 \| Find next file
2018-12-17T23:05:32.022438901Z	79	PC: 12a79 \| Find next file
2018-12-17T23:05:32.025857499Z	79	PC: 12a79 \| Find next file
2018-12-17T23:05:32.030583716Z	79	PC: 12a79 \| Find next file
2018-12-17T23:05:32.034005069Z	79	PC: 12a79 \| Find next file
2018-12-17T23:05:32.037267604Z	61	PC: 12a93 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T23:05:32.044633164Z	63	PC: 12aa0 \| Read file or device (Read 219 bytes on handle 5)
2018-12-17T23:05:32.052360224Z	66	PC: 12ac1 \| Move file pointer
2018-12-17T23:05:32.055238917Z	64	PC: 12ace \| Write file or device (Write 219 bytes on handle 5)
2018-12-17T23:05:32.065040939Z	66	PC: 12ad7 \| Move file pointer
2018-12-17T23:05:32.067494723Z	64	PC: 12ae1 \| Write file or device (Write 219 bytes on handle 5)
2018-12-17T23:05:32.074985578Z	62	PC: 12ae5 \| Close file
2018-12-17T23:05:32.084857592Z	79	PC: 12a79 \| Find next file
2018-12-17T23:05:32.089810935Z	79	PC: 12a79 \| Find next file
2018-12-17T23:05:32.093805667Z	61	PC: 12a93 \| Open file (Filename = 'TEST.COM')
2018-12-17T23:05:32.10244958Z	63	PC: 12aa0 \| Read file or device (Read 219 bytes on handle 5)
2018-12-17T23:05:32.10724053Z	62	PC: 12ae5 \| Close file
2018-12-17T23:05:32.109431179Z	79	PC: 12a79 \| Find next file
2018-12-17T23:05:32.114806747Z	9	PC: 12a85 \| Display string (String= 'Sophos Ltd, Oxford sacrificial COM goat 1400H bytes long ')
2018-12-17T23:05:32.122394174Z	0	PC: 12a89 \| Program terminate