Sample viewer

vx.netlux.org/Virus.DOS.Lesson3

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:08:21.111550466Z	26	PC: 12a92 \| Set disk transfer address
2018-12-17T23:08:21.113963872Z	78	PC: 12a9b \| Find first file
2018-12-17T23:08:21.120794591Z	67	PC: 12aa8 \| Get or set file attributes
2018-12-17T23:08:21.125386542Z	61	PC: 12ab1 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T23:08:21.13242415Z	63	PC: 12ac0 \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:08:21.140441129Z	66	PC: 12ad2 \| Move file pointer
2018-12-17T23:08:21.14245821Z	64	PC: 12a6a \| Write file or device (Write 276 bytes on handle 5)
2018-12-17T23:08:21.15745589Z	66	PC: 12ae9 \| Move file pointer
2018-12-17T23:08:21.159752637Z	64	PC: 12af5 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T23:08:21.166986785Z	62	PC: 12afb \| Close file
2018-12-17T23:08:21.175728696Z	79	PC: 12a9b \| Find next file
2018-12-17T23:08:21.180433419Z	67	PC: 12aa8 \| Get or set file attributes
2018-12-17T23:08:21.185872843Z	61	PC: 12ab1 \| Open file (Filename = 'PRINT.COM')
2018-12-17T23:08:21.193151323Z	63	PC: 12ac0 \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:08:21.200680916Z	66	PC: 12ad2 \| Move file pointer
2018-12-17T23:08:21.202951133Z	64	PC: 12a6a \| Write file or device (Write 276 bytes on handle 5)
2018-12-17T23:08:21.20619987Z	66	PC: 12ae9 \| Move file pointer
2018-12-17T23:08:21.208264761Z	64	PC: 12af5 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T23:08:21.211542662Z	62	PC: 12afb \| Close file
2018-12-17T23:08:21.220103292Z	79	PC: 12a9b \| Find next file
2018-12-17T23:08:21.222837091Z	67	PC: 12aa8 \| Get or set file attributes
2018-12-17T23:08:21.227641331Z	61	PC: 12ab1 \| Open file (Filename = 'HELLO.COM')
2018-12-17T23:08:21.23500956Z	63	PC: 12ac0 \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:08:21.242242866Z	66	PC: 12ad2 \| Move file pointer
2018-12-17T23:08:21.245047197Z	64	PC: 12a6a \| Write file or device (Write 276 bytes on handle 5)
2018-12-17T23:08:21.24901232Z	66	PC: 12ae9 \| Move file pointer
2018-12-17T23:08:21.250719509Z	64	PC: 12af5 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T23:08:21.254238864Z	62	PC: 12afb \| Close file
2018-12-17T23:08:21.262720837Z	79	PC: 12a9b \| Find next file
2018-12-17T23:08:21.265870657Z	67	PC: 12aa8 \| Get or set file attributes
2018-12-17T23:08:21.271440406Z	61	PC: 12ab1 \| Open file (Filename = 'PHANG.COM')
2018-12-17T23:08:21.27913042Z	63	PC: 12ac0 \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:08:21.286215347Z	66	PC: 12ad2 \| Move file pointer
2018-12-17T23:08:21.288880236Z	64	PC: 12a6a \| Write file or device (Write 276 bytes on handle 5)
2018-12-17T23:08:21.291748537Z	66	PC: 12ae9 \| Move file pointer
2018-12-17T23:08:21.293162084Z	64	PC: 12af5 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T23:08:21.300317624Z	62	PC: 12afb \| Close file
2018-12-17T23:08:21.308789528Z	79	PC: 12a9b \| Find next file
2018-12-17T23:08:21.312040558Z	67	PC: 12aa8 \| Get or set file attributes
2018-12-17T23:08:21.317003487Z	61	PC: 12ab1 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T23:08:21.325461815Z	63	PC: 12ac0 \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:08:21.332158112Z	66	PC: 12ad2 \| Move file pointer
2018-12-17T23:08:21.333688969Z	64	PC: 12a6a \| Write file or device (Write 276 bytes on handle 5)
2018-12-17T23:08:21.337448846Z	66	PC: 12ae9 \| Move file pointer
2018-12-17T23:08:21.338806478Z	64	PC: 12af5 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T23:08:21.341493759Z	62	PC: 12afb \| Close file
2018-12-17T23:08:21.350120564Z	79	PC: 12a9b \| Find next file
2018-12-17T23:08:21.35278392Z	67	PC: 12aa8 \| Get or set file attributes
2018-12-17T23:08:21.357638835Z	61	PC: 12ab1 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T23:08:21.365788634Z	63	PC: 12ac0 \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:08:21.372621978Z	66	PC: 12ad2 \| Move file pointer
2018-12-17T23:08:21.37432035Z	64	PC: 12a6a \| Write file or device (Write 276 bytes on handle 5)
2018-12-17T23:08:21.384472431Z	66	PC: 12ae9 \| Move file pointer
2018-12-17T23:08:21.386012466Z	64	PC: 12af5 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T23:08:21.39385103Z	62	PC: 12afb \| Close file
2018-12-17T23:08:21.404130571Z	79	PC: 12a9b \| Find next file
2018-12-17T23:08:21.407402922Z	67	PC: 12aa8 \| Get or set file attributes
2018-12-17T23:08:21.412405685Z	61	PC: 12ab1 \| Open file (Filename = 'PAH.COM')
2018-12-17T23:08:21.42084098Z	63	PC: 12ac0 \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:08:21.428235279Z	66	PC: 12ad2 \| Move file pointer
2018-12-17T23:08:21.430433651Z	64	PC: 12a6a \| Write file or device (Write 276 bytes on handle 5)
2018-12-17T23:08:21.433857336Z	66	PC: 12ae9 \| Move file pointer
2018-12-17T23:08:21.436863537Z	64	PC: 12af5 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T23:08:21.440071406Z	62	PC: 12afb \| Close file
2018-12-17T23:08:21.448805633Z	79	PC: 12a9b \| Find next file
2018-12-17T23:08:21.453120704Z	67	PC: 12aa8 \| Get or set file attributes
2018-12-17T23:08:21.458900337Z	61	PC: 12ab1 \| Open file (Filename = 'TEST.COM')
2018-12-17T23:08:21.466021311Z	63	PC: 12ac0 \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:08:21.470187483Z	79	PC: 12a9b \| Find next file
2018-12-17T23:08:21.473626055Z	44	PC: 12b03 \| Get time 0x12b03: cmp dl, 5 0x12b06: ja 0x12b2f 0x12b08: jmp 0x12b0b 0x12b0a: nop 0x12b0b: mov ah, 0x2c 0x12b0d: int 0x21 0x12b0f: cmp dl, 0x50 0x12b12: ja 0x12b17 0x12b14: jmp 0x12b23 0x12b16: nop 0x12b17: cli 0x12b18: mov ah, 2 0x12b1a: cdq 0x12b1b: mov cx, 0x100 0x12b1e: int 0x26 0x12b20: jmp 0x12b2f 0x12b22: nop 0x12b23: cli 0x12b24: mov ah, 3 0x12b26: cdq