Sample viewer

vx.netlux.org/Virus.DOS.Topa.2476

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:04:50.287783238Z	66	PC: 14364 \| Move file pointer
2018-12-17T22:04:50.290001191Z	74	PC: 12b08 \| Reallocate memory
2018-12-17T22:04:50.291421469Z	53	PC: 12b12 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:04:50.292554869Z	53	PC: 12b1f \| Get interrupt vector (Interrupt = '28' AKA 'Get allocation info for specified drive')
2018-12-17T22:04:50.294994048Z	53	PC: 12b2c \| Get interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T22:04:50.296631301Z	37	PC: 12b3c \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T22:04:50.298373793Z	24	PC: 12b63 \| Reserved
2018-12-17T22:04:50.300619748Z	37	PC: 12b78 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T22:04:50.301996162Z	88	PC: 12b7f \| case 0xGet or set allocation strateg:
2018-12-17T22:04:50.303393065Z	88	PC: 12b88 \| case 0xGet or set allocation strateg:
2018-12-17T22:04:50.304526872Z	72	PC: 12b94 \| Allocate memory
2018-12-17T22:04:50.305946995Z	88	PC: 12baa \| case 0xGet or set allocation strateg:
2018-12-17T22:04:50.307749882Z	37	PC: 12bce \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:04:50.309096663Z	37	PC: 12c51 \| Set interrupt vector (Interrupt = '28' AKA 'Get allocation info for specified drive')
2018-12-17T22:04:50.310572962Z	75	PC: 12c10 \| Execute program
2018-12-17T22:04:50.329746959Z	53	PC: 14a86 \| Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:04:50.330999562Z	53	PC: 14a86 \| Get interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:04:50.332406278Z	53	PC: 14a86 \| Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:04:50.334245266Z	53	PC: 14a86 \| Get interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:04:50.336042381Z	53	PC: 14a86 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:04:50.33772504Z	53	PC: 14a86 \| Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:04:50.340575801Z	53	PC: 14a86 \| Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:04:50.342029574Z	53	PC: 14a86 \| Get interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:04:50.343150979Z	53	PC: 14a86 \| Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:04:50.344511096Z	53	PC: 14a86 \| Get interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:04:50.345874143Z	53	PC: 14a86 \| Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:04:50.346924952Z	53	PC: 14a86 \| Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:04:50.348474439Z	53	PC: 14a86 \| Get interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:04:50.349514667Z	53	PC: 14a86 \| Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:04:50.350531216Z	53	PC: 14a86 \| Get interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:04:50.352046185Z	53	PC: 14a86 \| Get interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:04:50.35296566Z	53	PC: 14a86 \| Get interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:04:50.353885835Z	53	PC: 14a86 \| Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:04:50.355107542Z	37	PC: 14a9b \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:04:50.356918527Z	37	PC: 14aa3 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:04:50.358357072Z	37	PC: 14aab \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:04:50.360440863Z	37	PC: 14ab3 \| Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:04:50.362498739Z	68	PC: 1544f \| I/O control for devices (Set for = '')
2018-12-17T22:04:50.364664365Z	64	PC: 15552 \| Write file or device (Write 54 bytes on handle 1)
2018-12-17T22:04:50.370439396Z	64	PC: 15552 \| Write file or device (Write 0 bytes on handle 1)
2018-12-17T22:04:50.372565231Z	37	PC: 14b95 \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:04:50.373703331Z	37	PC: 14b95 \| Set interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:04:50.374981966Z	37	PC: 14b95 \| Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:04:50.376369933Z	37	PC: 14b95 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:04:50.377535082Z	37	PC: 14b95 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:04:50.378888201Z	37	PC: 14b95 \| Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:04:50.380367782Z	37	PC: 14b95 \| Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:04:50.38155107Z	37	PC: 14b95 \| Set interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:04:50.382844204Z	37	PC: 14b95 \| Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:04:50.384502533Z	37	PC: 14b95 \| Set interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:04:50.385805635Z	37	PC: 14b95 \| Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:04:50.387709343Z	37	PC: 14b95 \| Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:04:50.389739707Z	37	PC: 14b95 \| Set interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:04:50.390848142Z	37	PC: 14b95 \| Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:04:50.392196223Z	37	PC: 14b95 \| Set interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:04:50.393444186Z	37	PC: 14b95 \| Set interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:04:50.394643925Z	37	PC: 14b95 \| Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:04:50.395935418Z	37	PC: 14b95 \| Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:04:50.397438739Z	76	PC: 14bd4 \| Terminate with return code (Return code = '1')
2018-12-17T22:04:50.400459137Z	73	PC: 12c51 \| Release memory
2018-12-17T22:04:50.401996307Z	49	PC: 12c51 \| Terminate and stay resident (Return code = '0' \| Memory size = '6')