Sample viewer

vx.netlux.org/Trojan.DOS.FormatC.o

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T23:09:25.710466499Z 2 PC: 12a68 | Character output (Char = '09')
2018-12-17T23:09:26.124353008Z 2 PC: 12a68 | Character output (Char = '81')
2018-12-17T23:09:26.560785568Z 2 PC: 12a68 | Character output (Char = 'ae')
2018-12-17T23:09:26.994261869Z 2 PC: 12a68 | Character output (Char = 'ab')
2018-12-17T23:09:27.275987542Z 2 PC: 12a68 | Character output (Char = 'ec')
2018-12-17T23:09:27.667473592Z 2 PC: 12a68 | Character output (Char = 'e8')
2018-12-17T23:09:28.100495907Z 2 PC: 12a68 | Character output (Char = 'ae')
2018-12-17T23:09:28.527302467Z 2 PC: 12a68 | Character output (Char = 'ac')
2018-12-17T23:09:28.879295754Z 2 PC: 12a68 | Character output (Char = 'e3')
2018-12-17T23:09:29.280419223Z 2 PC: 12a68 | Character output (Char = '20')
2018-12-17T23:09:29.497300484Z 2 PC: 12a68 | Character output (Char = 'aa')
2018-12-17T23:09:29.88931697Z 2 PC: 12a68 | Character output (Char = 'ae')
2018-12-17T23:09:30.208421485Z 2 PC: 12a68 | Character output (Char = 'e0')
2018-12-17T23:09:30.550112302Z 2 PC: 12a68 | Character output (Char = 'a0')
2018-12-17T23:09:30.908189515Z 2 PC: 12a68 | Character output (Char = 'a1')
2018-12-17T23:09:31.288874437Z 2 PC: 12a68 | Character output (Char = 'ab')
2018-12-17T23:09:31.646254709Z 2 PC: 12a68 | Character output (Char = 'ee')
2018-12-17T23:09:31.992851882Z 2 PC: 12a68 | Character output (Char = '20')
2018-12-17T23:09:32.192466335Z 2 PC: 12a68 | Character output (Char = 'a1')
2018-12-17T23:09:32.546829548Z 2 PC: 12a68 | Character output (Char = 'ae')
2018-12-17T23:09:32.955112504Z 2 PC: 12a68 | Character output (Char = 'ab')
2018-12-17T23:09:33.383976578Z 2 PC: 12a68 | Character output (Char = 'ec')
2018-12-17T23:09:33.622997132Z 2 PC: 12a68 | Character output (Char = 'e8')
2018-12-17T23:09:33.966275611Z 2 PC: 12a68 | Character output (Char = 'a0')
2018-12-17T23:09:34.261902467Z 2 PC: 12a68 | Character output (Char = 'ef')
2018-12-17T23:09:34.541195932Z 2 PC: 12a68 | Character output (Char = '20')
2018-12-17T23:09:34.968269175Z 2 PC: 12a68 | Character output (Char = 'e2')
2018-12-17T23:09:35.375710601Z 2 PC: 12a68 | Character output (Char = 'ae')
2018-12-17T23:09:35.814629509Z 2 PC: 12a68 | Character output (Char = 'e0')
2018-12-17T23:09:36.238065384Z 2 PC: 12a68 | Character output (Char = 'af')
2018-12-17T23:09:36.650220036Z 2 PC: 12a68 | Character output (Char = 'a5')
2018-12-17T23:09:36.928651745Z 2 PC: 12a68 | Character output (Char = 'a4')
2018-12-17T23:09:37.282461068Z 2 PC: 12a68 | Character output (Char = 'a0')
2018-12-17T23:09:37.653872436Z 2 PC: 12a68 | Character output (Char = '20')
2018-12-17T23:09:38.007575188Z 2 PC: 12a68 | Character output (Char = '2e')
2018-12-17T23:09:38.385958872Z 2 PC: 12a68 | Character output (Char = '2e')
2018-12-17T23:09:38.701916145Z 2 PC: 12a68 | Character output (Char = '2e')
2018-12-17T23:09:39.099895919Z 74 PC: 12a8b | Reallocate memory
2018-12-17T23:09:39.101937703Z 75 PC: 12aa9 | Execute program
2018-12-17T23:09:39.155198956Z 80 PC: 141e9 | Set current PSP
2018-12-17T23:09:39.156519883Z 48 PC: 141ee | Get DOS version
2018-12-17T23:09:39.158504398Z 99 PC: 1a9d0 | Get DBCS lead byte table pointer
2018-12-17T23:09:39.161557648Z 101 PC: 14274 | Get extended country info
2018-12-17T23:09:39.164257768Z 99 PC: 1427a | Get DBCS lead byte table pointer
2018-12-17T23:09:39.165892529Z 74 PC: 142dc | Reallocate memory
2018-12-17T23:09:39.167587116Z 25 PC: 14313 | Get default drive
2018-12-17T23:09:39.17009017Z 37 PC: 13dd3 | Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T23:09:39.1719797Z 37 PC: 13dda | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T23:09:39.17353182Z 37 PC: 13de1 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:09:39.179792098Z 74 PC: 12f7c | Reallocate memory
2018-12-17T23:09:39.18211958Z 72 PC: 12fbd | Allocate memory
2018-12-17T23:09:39.184283534Z 72 PC: 12ff5 | Allocate memory
2018-12-17T23:09:39.18667384Z 72 PC: 12ffd | Allocate memory