Sample viewer

vx.netlux.org/Virus.DOS.HLLC.Sputnic.16622

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:09:57.472395935Z	48	PC: 12a4c \| Get DOS version
2018-12-17T23:09:57.47464333Z	53	PC: 12ba8 \| Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T23:09:57.476210609Z	53	PC: 12bb5 \| Get interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-17T23:09:57.477763542Z	53	PC: 12bc2 \| Get interrupt vector (Interrupt = '5' AKA 'Printer output')
2018-12-17T23:09:57.48037528Z	53	PC: 12bcf \| Get interrupt vector (Interrupt = '6' AKA 'Direct console I/O')
2018-12-17T23:09:57.48203269Z	37	PC: 12be3 \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T23:09:57.483731883Z	74	PC: 12b19 \| Reallocate memory
2018-12-17T23:09:57.487494162Z	67	PC: 140c0 \| Get or set file attributes
2018-12-17T23:09:57.498061266Z	60	PC: 13562 \| Create or truncate file
2018-12-17T23:09:57.516593468Z	68	PC: 139e1 \| I/O control for devices (Set for = 's��u�.�U�')
2018-12-17T23:09:57.519749376Z	67	PC: 140c0 \| Get or set file attributes
2018-12-17T23:09:57.532038802Z	60	PC: 13562 \| Create or truncate file
2018-12-17T23:09:57.544375034Z	68	PC: 139e1 \| I/O control for devices (Set for = 's��u�.�U�')
2018-12-17T23:09:57.546716828Z	25	PC: 14a7e \| Get default drive
2018-12-17T23:09:57.548875149Z	71	PC: 14bca \| Get current directory
2018-12-17T23:09:57.55265604Z	26	PC: 14b88 \| Set disk transfer address
2018-12-17T23:09:57.554076054Z	78	PC: 14b92 \| Find first file
2018-12-17T23:09:57.560594234Z	67	PC: 140c0 \| Get or set file attributes
2018-12-17T23:09:57.564854334Z	26	PC: 14baa \| Set disk transfer address
2018-12-17T23:09:57.566108874Z	79	PC: 14bae \| Find next file
2018-12-17T23:09:57.568380899Z	67	PC: 140c0 \| Get or set file attributes
2018-12-17T23:09:57.577116425Z	64	PC: 13de3 \| Write file or device (Write 128 bytes on handle 6)
2018-12-17T23:09:57.580027157Z	64	PC: 13de3 \| Write file or device (Write 11 bytes on handle 6)
2018-12-17T23:09:57.582335454Z	62	PC: 13b74 \| Close file
2018-12-17T23:09:57.589820691Z	55	PC: 14cb5 \| Get or set switch character
2018-12-17T23:09:57.591749273Z	41	PC: 14d1f \| Parse filename
2018-12-17T23:09:57.593111718Z	41	PC: 14d2d \| Parse filename
2018-12-17T23:09:57.595344655Z	75	PC: 14d6d \| Execute program
2018-12-17T23:09:57.611242129Z	80	PC: 26599 \| Set current PSP
2018-12-17T23:09:57.612201725Z	48	PC: 2659e \| Get DOS version
2018-12-17T23:09:57.614247495Z	99	PC: 2cd80 \| Get DBCS lead byte table pointer
2018-12-17T23:09:57.616301874Z	101	PC: 26624 \| Get extended country info
2018-12-17T23:09:57.617442025Z	99	PC: 2662a \| Get DBCS lead byte table pointer
2018-12-17T23:09:57.618938068Z	74	PC: 2668c \| Reallocate memory
2018-12-17T23:09:57.620367089Z	25	PC: 266c3 \| Get default drive
2018-12-17T23:09:57.621715676Z	37	PC: 26183 \| Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T23:09:57.62287527Z	37	PC: 2618a \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T23:09:57.624983568Z	37	PC: 26191 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:09:57.627942626Z	74	PC: 2532c \| Reallocate memory
2018-12-17T23:09:57.629204241Z	72	PC: 2536d \| Allocate memory
2018-12-17T23:09:57.630966079Z	72	PC: 253a5 \| Allocate memory
2018-12-17T23:09:57.632329133Z	72	PC: 253ad \| Allocate memory