Sample viewer

vx.netlux.org/Virus.DOS.Etop.700

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:07:51.831977325Z	26	PC: 12a91 \| Set disk transfer address
2018-12-17T23:07:51.833724621Z	71	PC: 12a9b \| Get current directory
2018-12-17T23:07:51.83815906Z	53	PC: 12aa5 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:07:51.839492039Z	37	PC: 12ab5 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:07:51.840802412Z	78	PC: 12b5d \| Find first file
2018-12-17T23:07:51.855020702Z	78	PC: 12b5d \| Find first file
2018-12-17T23:07:51.861737664Z	67	PC: 12cdc \| Get or set file attributes
2018-12-17T23:07:51.879545028Z	61	PC: 12b6c \| Open file (Filename = 'SLEEP.COM')
2018-12-17T23:07:51.893200391Z	63	PC: 12b7a \| Read file or device (Read 26 bytes on handle 5)
2018-12-17T23:07:51.900612301Z	66	PC: 12b84 \| Move file pointer
2018-12-17T23:07:51.902402794Z	79	PC: 12b5d \| Find next file
2018-12-17T23:07:51.906405374Z	67	PC: 12cdc \| Get or set file attributes
2018-12-17T23:07:51.918488599Z	61	PC: 12b6c \| Open file (Filename = 'PRINT.COM')
2018-12-17T23:07:51.925942949Z	63	PC: 12b7a \| Read file or device (Read 26 bytes on handle 6)
2018-12-17T23:07:51.933421815Z	66	PC: 12b84 \| Move file pointer
2018-12-17T23:07:51.935221729Z	79	PC: 12b5d \| Find next file
2018-12-17T23:07:51.938277422Z	67	PC: 12cdc \| Get or set file attributes
2018-12-17T23:07:51.949176703Z	61	PC: 12b6c \| Open file (Filename = 'HELLO.COM')
2018-12-17T23:07:51.956785948Z	63	PC: 12b7a \| Read file or device (Read 26 bytes on handle 7)
2018-12-17T23:07:51.964082924Z	66	PC: 12b84 \| Move file pointer
2018-12-17T23:07:51.966419648Z	79	PC: 12b5d \| Find next file
2018-12-17T23:07:51.970287971Z	67	PC: 12cdc \| Get or set file attributes
2018-12-17T23:07:51.981841886Z	61	PC: 12b6c \| Open file (Filename = 'PHANG.COM')
2018-12-17T23:07:51.989208577Z	63	PC: 12b7a \| Read file or device (Read 26 bytes on handle 8)
2018-12-17T23:07:51.996616969Z	66	PC: 12b84 \| Move file pointer
2018-12-17T23:07:51.99828603Z	79	PC: 12b5d \| Find next file
2018-12-17T23:07:52.001178133Z	67	PC: 12cdc \| Get or set file attributes
2018-12-17T23:07:52.01333842Z	61	PC: 12b6c \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T23:07:52.021545652Z	63	PC: 12b7a \| Read file or device (Read 26 bytes on handle 9)
2018-12-17T23:07:52.02877106Z	66	PC: 12b84 \| Move file pointer
2018-12-17T23:07:52.031276416Z	79	PC: 12b5d \| Find next file
2018-12-17T23:07:52.034411898Z	67	PC: 12cdc \| Get or set file attributes
2018-12-17T23:07:52.045798119Z	61	PC: 12b6c \| Open file (Filename = 'MANDEL.COM')
2018-12-17T23:07:52.054649918Z	63	PC: 12b7a \| Read file or device (Read 26 bytes on handle 10)
2018-12-17T23:07:52.059962052Z	66	PC: 12b84 \| Move file pointer
2018-12-17T23:07:52.061562327Z	79	PC: 12b5d \| Find next file
2018-12-17T23:07:52.064139405Z	67	PC: 12cdc \| Get or set file attributes
2018-12-17T23:07:52.073251601Z	61	PC: 12b6c \| Open file (Filename = 'PAH.COM')
2018-12-17T23:07:52.081694546Z	63	PC: 12b7a \| Read file or device (Read 26 bytes on handle 11)
2018-12-17T23:07:52.0869477Z	66	PC: 12b84 \| Move file pointer
2018-12-17T23:07:52.088398748Z	79	PC: 12b5d \| Find next file
2018-12-17T23:07:52.090978701Z	67	PC: 12cdc \| Get or set file attributes
2018-12-17T23:07:52.09933616Z	61	PC: 12b6c \| Open file (Filename = 'TEST.COM')
2018-12-17T23:07:52.104142977Z	63	PC: 12b7a \| Read file or device (Read 26 bytes on handle 12)
2018-12-17T23:07:52.105901346Z	66	PC: 12b84 \| Move file pointer
2018-12-17T23:07:52.107043116Z	79	PC: 12b5d \| Find next file
2018-12-17T23:07:52.109589955Z	59	PC: 12acf \| Change current directory
2018-12-17T23:07:52.112399737Z	37	PC: 12adc \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:07:52.11322586Z	59	PC: 12ae8 \| Change current directory
2018-12-17T23:07:52.116266764Z	26	PC: 12af6 \| Set disk transfer address