Sample viewer

vx.netlux.org/Virus.DOS.Attack.3584

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:07:34.808114705Z	74	PC: 12bbc \| Reallocate memory
2018-12-17T23:07:34.810894496Z	72	PC: 12bc3 \| Allocate memory
2018-12-17T23:07:34.812361639Z	73	PC: 12bd2 \| Release memory
2018-12-17T23:07:34.81351841Z	26	PC: 12be7 \| Set disk transfer address
2018-12-17T23:07:34.814996024Z	78	PC: 12c1b \| Find first file
2018-12-17T23:07:34.820928841Z	67	PC: 12c7b \| Get or set file attributes
2018-12-17T23:07:35.280782903Z	61	PC: 12d16 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T23:07:35.288641757Z	87	PC: 12d26 \| Get or set file date and time
2018-12-17T23:07:35.290910495Z	66	PC: 12e7a \| Move file pointer
2018-12-17T23:07:35.292857964Z	66	PC: 12eb9 \| Move file pointer
2018-12-17T23:07:35.294832434Z	63	PC: 12ee2 \| Read file or device (Read 16 bytes on handle 5)
2018-12-17T23:07:35.306037868Z	66	PC: 12eef \| Move file pointer
2018-12-17T23:07:35.307878015Z	66	PC: 12f1d \| Move file pointer
2018-12-17T23:07:35.310201102Z	64	PC: 12f30 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:07:35.313710335Z	66	PC: 12f3d \| Move file pointer
2018-12-17T23:07:35.315426226Z	64	PC: 12f4a \| Write file or device (Write 3584 bytes on handle 5)
2018-12-17T23:07:35.330010639Z	87	PC: 12f54 \| Get or set file date and time
2018-12-17T23:07:35.332313736Z	87	PC: 12f5c \| Get or set file date and time
2018-12-17T23:07:35.33409829Z	62	PC: 12f60 \| Close file
2018-12-17T23:07:35.342200282Z	78	PC: 12ffb \| Find first file
2018-12-17T23:07:35.352669882Z	60	PC: 13015 \| Create or truncate file
2018-12-17T23:07:35.704195267Z	64	PC: 13027 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:07:35.713208568Z	62	PC: 1302b \| Close file
2018-12-17T23:07:35.721034781Z	72	PC: 132db \| Allocate memory
2018-12-17T23:07:35.723063027Z	73	PC: 132e6 \| Release memory
2018-12-17T23:07:35.724715929Z	26	PC: 132f0 \| Set disk transfer address
2018-12-17T23:07:35.726448215Z	71	PC: 13307 \| Get current directory
2018-12-17T23:07:35.730574781Z	25	PC: 1330c \| Get default drive
2018-12-17T23:07:35.732063362Z	78	PC: 13382 \| Find first file
2018-12-17T23:07:35.737805173Z	78	PC: 133e4 \| Find first file
2018-12-17T23:07:35.74518456Z	14	PC: 13423 \| Set default drive (Drive = 'C')
2018-12-17T23:07:35.746825703Z	59	PC: 13443 \| Change current directory
2018-12-17T23:07:35.750594254Z	78	PC: 1344d \| Find first file
2018-12-17T23:07:35.756888621Z	78	PC: 134a0 \| Find first file
2018-12-17T23:07:35.762313805Z	79	PC: 134cf \| Find next file
2018-12-17T23:07:35.777801322Z	79	PC: 134cf \| Find next file
2018-12-17T23:07:35.782106238Z	59	PC: 13507 \| Change current directory
2018-12-17T23:07:35.788030725Z	78	PC: 13511 \| Find first file
2018-12-17T23:07:35.81002897Z	67	PC: 13560 \| Get or set file attributes
2018-12-17T23:07:35.820788863Z	61	PC: 13577 \| Open file (Filename = 'ATTRIB.EXE')
2018-12-17T23:07:35.841859637Z	63	PC: 13587 \| Read file or device (Read 31 bytes on handle 5)
2018-12-17T23:07:35.848227003Z	66	PC: 135e5 \| Move file pointer
2018-12-17T23:07:35.850784383Z	66	PC: 13604 \| Move file pointer
2018-12-17T23:07:35.852468036Z	66	PC: 13610 \| Move file pointer
2018-12-17T23:07:35.854044813Z	66	PC: 13643 \| Move file pointer
2018-12-17T23:07:35.856629664Z	66	PC: 1364f \| Move file pointer
2018-12-17T23:07:35.857962946Z	66	PC: 13672 \| Move file pointer
2018-12-17T23:07:35.859496389Z	64	PC: 1367c \| Write file or device (Write 31 bytes on handle 5)
2018-12-17T23:07:35.874170967Z	66	PC: 13695 \| Move file pointer
2018-12-17T23:07:35.876044064Z	64	PC: 136a4 \| Write file or device (Write 3589 bytes on handle 5)
2018-12-17T23:07:35.894180885Z	87	PC: 136ab \| Get or set file date and time
2018-12-17T23:07:35.895914782Z	87	PC: 136b5 \| Get or set file date and time
2018-12-17T23:07:35.898694337Z	62	PC: 136bb \| Close file
2018-12-17T23:07:35.909633716Z	14	PC: 136f2 \| Set default drive (Drive = 'A')
2018-12-17T23:07:35.911260094Z	59	PC: 136fd \| Change current directory
2018-12-17T23:07:35.916478807Z	9	PC: 12a82 \| Display string (String= 'N�6��A�D�C�6��A�D�Dt�>��u< \|,<u��W�Uô8��{��!s��:��.Ï{��q��-�I:q�u�0PAA�6{��QR��v��')
2018-12-17T23:07:35.920822479Z	76	PC: 12a86 \| Terminate with return code (Return code = '36')