Sample viewer

vx.netlux.org/Virus.DOS.TMC.a

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:08:33.777960635Z	74	PC: 13af9 \| Reallocate memory
2018-12-17T23:08:33.780524709Z	72	PC: 13b14 \| Allocate memory
2018-12-17T23:08:33.78911419Z	74	PC: 14fc5 \| Reallocate memory
2018-12-17T23:08:33.791205523Z	72	PC: 14fd0 \| Allocate memory
2018-12-17T23:08:33.794407936Z	53	PC: 9f607 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T23:08:33.798749284Z	37	PC: 9f617 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T23:08:33.809205359Z	73	PC: 9f4c2 \| Release memory
2018-12-17T23:08:33.811069218Z	74	PC: 9f4cc \| Reallocate memory
2018-12-17T23:08:33.815904225Z	77	PC: 11fe0 \| Get program return code
2018-12-17T23:08:33.817699267Z	72	PC: 12174 \| Allocate memory
2018-12-17T23:08:33.820152003Z	72	PC: 1218d \| Allocate memory
2018-12-17T23:08:33.824230099Z	37	PC: 123c4 \| Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T23:08:33.826075539Z	37	PC: 123cb \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T23:08:33.82786541Z	37	PC: 123d2 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:08:33.830793324Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:33.832259569Z	62	PC: 122ab \| Close file
2018-12-17T23:08:33.834529312Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:33.83638505Z	62	PC: 122ab \| Close file
2018-12-17T23:08:33.839631956Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:33.841056061Z	62	PC: 122ab \| Close file
2018-12-17T23:08:33.843273607Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:33.845781962Z	62	PC: 122ab \| Close file
2018-12-17T23:08:33.847817558Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:33.849020107Z	62	PC: 122ab \| Close file
2018-12-17T23:08:33.8518324Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:33.853398938Z	62	PC: 122ab \| Close file
2018-12-17T23:08:33.855626164Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:33.858162983Z	62	PC: 122ab \| Close file
2018-12-17T23:08:33.860400342Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:33.861816798Z	62	PC: 122ab \| Close file
2018-12-17T23:08:33.864299175Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:33.866199549Z	62	PC: 122ab \| Close file
2018-12-17T23:08:33.868073651Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:33.869130166Z	62	PC: 122ab \| Close file
2018-12-17T23:08:33.871734324Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:33.873163794Z	62	PC: 122ab \| Close file
2018-12-17T23:08:33.877038851Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:33.879050192Z	62	PC: 122ab \| Close file
2018-12-17T23:08:33.881135332Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:33.882538087Z	62	PC: 122ab \| Close file
2018-12-17T23:08:33.885343722Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:33.886457942Z	62	PC: 122ab \| Close file
2018-12-17T23:08:33.888560347Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:33.891004993Z	62	PC: 122ab \| Close file
2018-12-17T23:08:33.89419037Z	61	PC: 12354 \| Open file (Filename = 'C:\COMMAND.COM')
2018-12-17T23:08:33.901167605Z	66	PC: 12372 \| Move file pointer
2018-12-17T23:08:33.903748977Z	63	PC: 12383 \| Read file or device (Read 44693 bytes on handle 5)
2018-12-17T23:08:33.919110347Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:33.92015603Z	62	PC: 1238a \| Close file
2018-12-17T23:08:33.924013763Z	99	PC: 98a57 \| Get DBCS lead byte table pointer
2018-12-17T23:08:33.926270699Z	56	PC: 93279 \| Get or set country info
2018-12-17T23:08:33.928460617Z	64	PC: 98cc8 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:08:33.933710982Z	25	PC: 932e2 \| Get default drive
2018-12-17T23:08:33.943416757Z	71	PC: 9555d \| Get current directory
2018-12-17T23:08:33.948116709Z	64	PC: 98cc8 \| Write file or device (Write 3 bytes on handle 1)
2018-12-17T23:08:33.952050938Z	2	PC: 95532 \| Character output (Char = '3e')
2018-12-17T23:08:33.956566832Z	93	PC: 933a0 \| File sharing functions
2018-12-17T23:08:33.95926795Z	93	PC: 933a7 \| File sharing functions
2018-12-17T23:08:33.961780876Z	10	PC: 933b9 \| Buffered keyboard input
2018-12-17T23:08:48.746094233Z	0	PC: 0 \| Program terminate
2018-12-17T23:08:50.10180327Z	0	PC: 0 \| Program terminate
2018-12-17T23:08:50.204716558Z	64	PC: 98cc8 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:08:50.208815862Z	41	PC: 9342e \| Parse filename
2018-12-17T23:08:50.210501612Z	41	PC: 934af \| Parse filename
2018-12-17T23:08:50.212514668Z	41	PC: 934cc \| Parse filename
2018-12-17T23:08:50.214947678Z	26	PC: 96977 \| Set disk transfer address
2018-12-17T23:08:50.216852367Z	71	PC: 96b73 \| Get current directory
2018-12-17T23:08:50.228913896Z	78	PC: 96b7e \| Find first file
2018-12-17T23:08:50.23935948Z	71	PC: 969ec \| Get current directory
2018-12-17T23:08:50.242763926Z	73	PC: 96089 \| Release memory
2018-12-17T23:08:50.245038534Z	53	PC: 9fbcf \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:08:50.246836524Z	37	PC: 9fbdf \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:08:50.248398044Z	61	PC: 9f686 \| Open file (Filename = 'A:\PRINT.COM')
2018-12-17T23:08:50.256045317Z	87	PC: 9f69e \| Get or set file date and time
2018-12-17T23:08:50.257931935Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:50.259483542Z	62	PC: 9f930 \| Close file
2018-12-17T23:08:50.261959954Z	37	PC: 9f85f \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:08:50.264329372Z	75	PC: 11821 \| Execute program
2018-12-17T23:08:50.279815702Z	9	PC: 12a47 \| Display string (String= 'Hello, World! ')
2018-12-17T23:08:50.285382013Z	76	PC: 12a4b \| Terminate with return code (Return code = '36')
2018-12-17T23:08:50.289657402Z	77	PC: 11fe0 \| Get program return code
2018-12-17T23:08:50.291580864Z	72	PC: 12174 \| Allocate memory
2018-12-17T23:08:50.294223747Z	72	PC: 1218d \| Allocate memory
2018-12-17T23:08:50.297190493Z	37	PC: 123c4 \| Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T23:08:50.298720762Z	37	PC: 123cb \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T23:08:50.300151853Z	37	PC: 123d2 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:08:50.302517553Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:50.303645182Z	62	PC: 122ab \| Close file
2018-12-17T23:08:50.305481611Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:50.307835137Z	62	PC: 122ab \| Close file
2018-12-17T23:08:50.310078107Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:50.311620403Z	62	PC: 122ab \| Close file
2018-12-17T23:08:50.313924147Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:50.3156009Z	62	PC: 122ab \| Close file
2018-12-17T23:08:50.317701252Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:50.319277777Z	62	PC: 122ab \| Close file
2018-12-17T23:08:50.321523515Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:50.322686915Z	62	PC: 122ab \| Close file
2018-12-17T23:08:50.324858948Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:50.326442009Z	62	PC: 122ab \| Close file
2018-12-17T23:08:50.32834637Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:50.329439145Z	62	PC: 122ab \| Close file
2018-12-17T23:08:50.332651944Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:50.333837356Z	62	PC: 122ab \| Close file
2018-12-17T23:08:50.335714367Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:50.337553231Z	62	PC: 122ab \| Close file
2018-12-17T23:08:50.340019786Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:50.341108874Z	62	PC: 122ab \| Close file
2018-12-17T23:08:50.343594687Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:50.345848274Z	62	PC: 122ab \| Close file
2018-12-17T23:08:50.348158103Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:50.350484079Z	62	PC: 122ab \| Close file
2018-12-17T23:08:50.352549626Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:50.357241503Z	62	PC: 122ab \| Close file
2018-12-17T23:08:50.360872269Z	98	PC: 9f93a \| Get current PSP
2018-12-17T23:08:50.36287357Z	62	PC: 122ab \| Close file
2018-12-17T23:08:50.366886481Z	99	PC: 98a57 \| Get DBCS lead byte table pointer
2018-12-17T23:08:50.369264371Z	56	PC: 93279 \| Get or set country info
2018-12-17T23:08:50.372029485Z	64	PC: 98cc8 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:08:50.377742817Z	25	PC: 932e2 \| Get default drive
2018-12-17T23:08:50.380292852Z	71	PC: 9555d \| Get current directory
2018-12-17T23:08:50.386058743Z	64	PC: 98cc8 \| Write file or device (Write 3 bytes on handle 1)
2018-12-17T23:08:50.390170818Z	2	PC: 95532 \| Character output (Char = '3e')
2018-12-17T23:08:50.393069768Z	93	PC: 933a0 \| File sharing functions
2018-12-17T23:08:50.396249703Z	93	PC: 933a7 \| File sharing functions
2018-12-17T23:08:50.398670646Z	10	PC: 933b9 \| Buffered keyboard input