Sample viewer

vx.netlux.org/Virus.DOS.CivilWar.IronButterfly.271

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:09:39.142760005Z	26	PC: 12a6a \| Set disk transfer address
2018-12-17T23:09:39.143959143Z	78	PC: 12aac \| Find first file
2018-12-17T23:09:39.149979756Z	61	PC: 12acc \| Open file (Filename = 'SLEEP.COM')
2018-12-17T23:09:39.156258428Z	63	PC: 12adb \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:09:39.162429226Z	66	PC: 12afc \| Move file pointer
2018-12-17T23:09:39.169950796Z	64	PC: 12b10 \| Write file or device (Write 271 bytes on handle 5)
2018-12-17T23:09:39.184187603Z	66	PC: 12b18 \| Move file pointer
2018-12-17T23:09:39.185700114Z	64	PC: 12b38 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T23:09:39.192539604Z	87	PC: 12a9b \| Get or set file date and time
2018-12-17T23:09:39.193923255Z	62	PC: 12a9f \| Close file
2018-12-17T23:09:39.201396755Z	79	PC: 12aac \| Find next file
2018-12-17T23:09:39.204571564Z	61	PC: 12acc \| Open file (Filename = 'PRINT.COM')
2018-12-17T23:09:39.211387742Z	63	PC: 12adb \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:09:39.218346704Z	87	PC: 12a9b \| Get or set file date and time
2018-12-17T23:09:39.221229707Z	62	PC: 12a9f \| Close file
2018-12-17T23:09:39.22839553Z	79	PC: 12aac \| Find next file
2018-12-17T23:09:39.230955756Z	61	PC: 12acc \| Open file (Filename = 'HELLO.COM')
2018-12-17T23:09:39.237824478Z	63	PC: 12adb \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:09:39.244105912Z	87	PC: 12a9b \| Get or set file date and time
2018-12-17T23:09:39.245574542Z	62	PC: 12a9f \| Close file
2018-12-17T23:09:39.253235401Z	79	PC: 12aac \| Find next file
2018-12-17T23:09:39.25603022Z	61	PC: 12acc \| Open file (Filename = 'PHANG.COM')
2018-12-17T23:09:39.262481908Z	63	PC: 12adb \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:09:39.269216845Z	87	PC: 12a9b \| Get or set file date and time
2018-12-17T23:09:39.271251181Z	62	PC: 12a9f \| Close file
2018-12-17T23:09:39.281065032Z	79	PC: 12aac \| Find next file
2018-12-17T23:09:39.28418861Z	61	PC: 12acc \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T23:09:39.291537161Z	63	PC: 12adb \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:09:39.297691774Z	87	PC: 12a9b \| Get or set file date and time
2018-12-17T23:09:39.299043647Z	62	PC: 12a9f \| Close file
2018-12-17T23:09:39.313909129Z	79	PC: 12aac \| Find next file
2018-12-17T23:09:39.316785837Z	61	PC: 12acc \| Open file (Filename = 'MANDEL.COM')
2018-12-17T23:09:39.323423047Z	63	PC: 12adb \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:09:39.345255754Z	66	PC: 12afc \| Move file pointer
2018-12-17T23:09:39.346975296Z	64	PC: 12b10 \| Write file or device (Write 271 bytes on handle 5)
2018-12-17T23:09:39.359920493Z	66	PC: 12b18 \| Move file pointer
2018-12-17T23:09:39.363124182Z	64	PC: 12b38 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T23:09:39.370682897Z	87	PC: 12a9b \| Get or set file date and time
2018-12-17T23:09:39.372251517Z	62	PC: 12a9f \| Close file
2018-12-17T23:09:39.381341618Z	79	PC: 12aac \| Find next file
2018-12-17T23:09:39.38404741Z	61	PC: 12acc \| Open file (Filename = 'PAH.COM')
2018-12-17T23:09:39.39064968Z	63	PC: 12adb \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:09:39.39838658Z	87	PC: 12a9b \| Get or set file date and time
2018-12-17T23:09:39.400064275Z	62	PC: 12a9f \| Close file
2018-12-17T23:09:39.40736292Z	79	PC: 12aac \| Find next file
2018-12-17T23:09:39.410953114Z	61	PC: 12acc \| Open file (Filename = 'TEST.COM')
2018-12-17T23:09:39.418980543Z	63	PC: 12adb \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T23:09:39.425699934Z	87	PC: 12a9b \| Get or set file date and time
2018-12-17T23:09:39.437546271Z	62	PC: 12a9f \| Close file
2018-12-17T23:09:39.444601867Z	79	PC: 12aac \| Find next file
2018-12-17T23:09:39.447347823Z	26	PC: 12a83 \| Set disk transfer address