Sample viewer

vx.netlux.org/Virus.DOS.CRLC.484

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:06:50.015051943Z	26	PC: 1c646 \| Set disk transfer address
2018-12-17T23:06:50.016405491Z	53	PC: 1c65c \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:06:50.017585502Z	37	PC: 1c66c \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:06:50.018669614Z	78	PC: 1c676 \| Find first file
2018-12-17T23:06:50.024896372Z	67	PC: 1c68a \| Get or set file attributes
2018-12-17T23:06:50.040447714Z	61	PC: 1c68f \| Open file (Filename = 's�')
2018-12-17T23:06:50.051882025Z	63	PC: 1c69f \| Read file or device (Read 24 bytes on handle 5)
2018-12-17T23:06:50.058114765Z	62	PC: 1c765 \| Close file
2018-12-17T23:06:50.059733015Z	67	PC: 1c773 \| Get or set file attributes
2018-12-17T23:06:50.067869793Z	79	PC: 1c777 \| Find next file
2018-12-17T23:06:50.069762711Z	37	PC: 1c789 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:06:50.070546496Z	26	PC: 1c791 \| Set disk transfer address
2018-12-17T23:06:50.079438358Z	74	PC: 12add \| Reallocate memory
2018-12-17T23:06:50.080681207Z	48	PC: 12af9 \| Get DOS version
2018-12-17T23:06:50.081476086Z	55	PC: 12b08 \| Get or set switch character
2018-12-17T23:06:50.082260767Z	48	PC: 12b21 \| Get DOS version
2018-12-17T23:06:50.083681843Z	56	PC: 1f6ab \| Get or set country info
2018-12-17T23:06:50.08468068Z	102	PC: 1f6b7 \| Get or set code page
2018-12-17T23:06:50.086054882Z	2	PC: 1f0d7 \| Character output (Char = '41')
2018-12-17T23:06:50.087916422Z	2	PC: 1f0d7 \| Character output (Char = '44')
2018-12-17T23:06:50.089375382Z	2	PC: 1f0d7 \| Character output (Char = '2d')
2018-12-17T23:06:50.090814783Z	2	PC: 1f0d7 \| Character output (Char = '41')
2018-12-17T23:06:50.093171485Z	2	PC: 1f0d7 \| Character output (Char = '63')
2018-12-17T23:06:50.095097398Z	2	PC: 1f0d7 \| Character output (Char = '65')
2018-12-17T23:06:50.096962321Z	2	PC: 1f0d7 \| Character output (Char = '6c')
2018-12-17T23:06:50.099354467Z	2	PC: 1f0d7 \| Character output (Char = '65')
2018-12-17T23:06:50.101236714Z	2	PC: 1f0d7 \| Character output (Char = '72')
2018-12-17T23:06:50.103211516Z	2	PC: 1f0d7 \| Character output (Char = '61')
2018-12-17T23:06:50.105815877Z	2	PC: 1f0d7 \| Character output (Char = '72')
2018-12-17T23:06:50.107638778Z	2	PC: 1f0d7 \| Character output (Char = '20')
2018-12-17T23:06:50.109506706Z	2	PC: 1f0d7 \| Character output (Char = '44')
2018-12-17T23:06:50.111667704Z	2	PC: 1f0d7 \| Character output (Char = '69')
2018-12-17T23:06:50.113700351Z	2	PC: 1f0d7 \| Character output (Char = '73')
2018-12-17T23:06:50.115679126Z	2	PC: 1f0d7 \| Character output (Char = '63')
2018-12-17T23:06:50.118911588Z	2	PC: 1f0d7 \| Character output (Char = '6f')
2018-12-17T23:06:50.120929529Z	2	PC: 1f0d7 \| Character output (Char = '2c')
2018-12-17T23:06:50.123016358Z	2	PC: 1f0d7 \| Character output (Char = '20')
2018-12-17T23:06:50.125405101Z	2	PC: 1f0d7 \| Character output (Char = '45')
2018-12-17T23:06:50.127317854Z	2	PC: 1f0d7 \| Character output (Char = '64')
2018-12-17T23:06:50.129230375Z	2	PC: 1f0d7 \| Character output (Char = '69')
2018-12-17T23:06:50.131416414Z	2	PC: 1f0d7 \| Character output (Char = '63')
2018-12-17T23:06:50.133342027Z	2	PC: 1f0d7 \| Character output (Char = '69')
2018-12-17T23:06:50.135246265Z	2	PC: 1f0d7 \| Character output (Char = 'a2')
2018-12-17T23:06:50.137534597Z	2	PC: 1f0d7 \| Character output (Char = '6e')
2018-12-17T23:06:50.139416115Z	2	PC: 1f0d7 \| Character output (Char = '20')
2018-12-17T23:06:50.141313685Z	2	PC: 1f0d7 \| Character output (Char = '41')
2018-12-17T23:06:50.144019293Z	2	PC: 1f0d7 \| Character output (Char = '76')
2018-12-17T23:06:50.146008472Z	2	PC: 1f0d7 \| Character output (Char = '61')
2018-12-17T23:06:50.147976037Z	2	PC: 1f0d7 \| Character output (Char = '6e')
2018-12-17T23:06:50.150738749Z	2	PC: 1f0d7 \| Character output (Char = '7a')
2018-12-17T23:06:50.152956712Z	2	PC: 1f0d7 \| Character output (Char = '61')
2018-12-17T23:06:50.155166154Z	2	PC: 1f0d7 \| Character output (Char = '64')
2018-12-17T23:06:50.165683298Z	2	PC: 1f0d7 \| Character output (Char = '61')
2018-12-17T23:06:50.167619923Z	2	PC: 1f0d7 \| Character output (Char = '20')
2018-12-17T23:06:50.169519336Z	2	PC: 1f0d7 \| Character output (Char = '34')
2018-12-17T23:06:50.171573844Z	2	PC: 1f0d7 \| Character output (Char = '2e')
2018-12-17T23:06:50.173826167Z	2	PC: 1f0d7 \| Character output (Char = '35')
2018-12-17T23:06:50.175718477Z	2	PC: 1f0d7 \| Character output (Char = '30')
2018-12-17T23:06:50.177778053Z	2	PC: 1f0d7 \| Character output (Char = '2c')
2018-12-17T23:06:50.180349803Z	2	PC: 1f0d7 \| Character output (Char = '20')
2018-12-17T23:06:50.182468201Z	2	PC: 1f0d7 \| Character output (Char = '28')
2018-12-17T23:06:50.190955603Z	2	PC: 1f0d7 \| Character output (Char = '43')
2018-12-17T23:06:50.193036197Z	2	PC: 1f0d7 \| Character output (Char = '29')
2018-12-17T23:06:50.19513653Z	2	PC: 1f0d7 \| Character output (Char = '20')
2018-12-17T23:06:50.198057672Z	2	PC: 1f0d7 \| Character output (Char = '43')
2018-12-17T23:06:50.199994264Z	2	PC: 1f0d7 \| Character output (Char = '6f')
2018-12-17T23:06:50.201905694Z	2	PC: 1f0d7 \| Character output (Char = '70')
2018-12-17T23:06:50.204884108Z	2	PC: 1f0d7 \| Character output (Char = '72')
2018-12-17T23:06:50.206779753Z	2	PC: 1f0d7 \| Character output (Char = '20')
2018-12-17T23:06:50.208568266Z	2	PC: 1f0d7 \| Character output (Char = '31')
2018-12-17T23:06:50.210914351Z	2	PC: 1f0d7 \| Character output (Char = '39')
2018-12-17T23:06:50.213102689Z	2	PC: 1f0d7 \| Character output (Char = '38')
2018-12-17T23:06:50.215413381Z	2	PC: 1f0d7 \| Character output (Char = '37')
2018-12-17T23:06:50.218410596Z	2	PC: 1f0d7 \| Character output (Char = '2d')
2018-12-17T23:06:50.220505786Z	2	PC: 1f0d7 \| Character output (Char = '38')
2018-12-17T23:06:50.223808266Z	2	PC: 1f0d7 \| Character output (Char = '38')
2018-12-17T23:06:50.22651959Z	2	PC: 1f0d7 \| Character output (Char = '2c')
2018-12-17T23:06:50.228517222Z	2	PC: 1f0d7 \| Character output (Char = '20')
2018-12-17T23:06:50.230572945Z	2	PC: 1f0d7 \| Character output (Char = '50')
2018-12-17T23:06:50.236057474Z	2	PC: 1f0d7 \| Character output (Char = '65')
2018-12-17T23:06:50.238015398Z	2	PC: 1f0d7 \| Character output (Char = '74')
2018-12-17T23:06:50.240365684Z	2	PC: 1f0d7 \| Character output (Char = '65')
2018-12-17T23:06:50.24341359Z	2	PC: 1f0d7 \| Character output (Char = '72')
2018-12-17T23:06:50.245455744Z	2	PC: 1f0d7 \| Character output (Char = '20')
2018-12-17T23:06:50.247364689Z	2	PC: 1f0d7 \| Character output (Char = '4e')
2018-12-17T23:06:50.249754597Z	2	PC: 1f0d7 \| Character output (Char = '6f')
2018-12-17T23:06:50.251691849Z	2	PC: 1f0d7 \| Character output (Char = '72')
2018-12-17T23:06:50.253591505Z	2	PC: 1f0d7 \| Character output (Char = '74')
2018-12-17T23:06:50.25606729Z	2	PC: 1f0d7 \| Character output (Char = '6f')
2018-12-17T23:06:50.258262947Z	2	PC: 1f0d7 \| Character output (Char = '6e')
2018-12-17T23:06:50.259992658Z	2	PC: 1f0d0 \| Character output (Char = '0d')
2018-12-17T23:06:50.262545428Z	2	PC: 1f0d7 \| Character output (Char = '0a')
2018-12-17T23:06:50.266246083Z	2	PC: 1f0d0 \| Character output (Char = '0d')
2018-12-17T23:06:50.268377698Z	2	PC: 1f0d7 \| Character output (Char = '0a')
2018-12-17T23:06:50.275484847Z	13	PC: 1b649 \| Disk reset
2018-12-17T23:06:50.276990862Z	25	PC: 1b61a \| Get default drive
2018-12-17T23:06:50.278185266Z	37	PC: 1b4e9 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:06:50.280248465Z	53	PC: 1b45f \| Get interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T23:06:50.281430899Z	53	PC: 1b46c \| Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T23:06:50.282576238Z	37	PC: 1b47e \| Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T23:06:50.28418992Z	37	PC: 1b488 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T23:06:50.294906232Z	25	PC: 1b61a \| Get default drive
2018-12-17T23:06:50.296231304Z	14	PC: 1b657 \| Set default drive (Drive = 'A')
2018-12-17T23:06:50.29862437Z	14	PC: 1b657 \| Set default drive (Drive = 'A')
2018-12-17T23:06:50.299784777Z	25	PC: 1b61a \| Get default drive
2018-12-17T23:06:50.300922143Z	41	PC: 1b63e \| Parse filename
2018-12-17T23:06:50.303428541Z	96	PC: 1e852 \| Qualify filename
2018-12-17T23:06:50.305922314Z	68	PC: 1b6a6 \| I/O control for devices (Set for = 'W�')
2018-12-17T23:06:50.307478477Z	14	PC: 1b657 \| Set default drive (Drive = 'C')
2018-12-17T23:06:50.309121444Z	25	PC: 1b61a \| Get default drive
2018-12-17T23:06:50.310195455Z	41	PC: 1b63e \| Parse filename
2018-12-17T23:06:50.311713441Z	96	PC: 1e852 \| Qualify filename
2018-12-17T23:06:50.314594407Z	68	PC: 1b6a6 \| I/O control for devices (Set for = 'W�')
2018-12-17T23:06:50.316048723Z	14	PC: 1b657 \| Set default drive (Drive = 'D')
2018-12-17T23:06:50.317385811Z	25	PC: 1b61a \| Get default drive
2018-12-17T23:06:50.321420145Z	41	PC: 1b63e \| Parse filename
2018-12-17T23:06:50.323036041Z	14	PC: 1b657 \| Set default drive (Drive = 'E')
2018-12-17T23:06:50.32419929Z	25	PC: 1b61a \| Get default drive
2018-12-17T23:06:50.325403925Z	41	PC: 1b63e \| Parse filename
2018-12-17T23:06:50.326802117Z	14	PC: 1b657 \| Set default drive (Drive = 'A')
2018-12-17T23:06:50.565430458Z	12	PC: 1e7a8 \| Flush input buffer and input
2018-12-17T23:06:50.569273863Z	7	PC: 1e789 \| Direct console input without echo