Sample viewer

vx.netlux.org/Virus.DOS.Sylvia.1321

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:10:25.768085126Z	53	PC: 12c7e \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:10:25.77018801Z	37	PC: 12c90 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:10:25.771818698Z	74	PC: 12c97 \| Reallocate memory
2018-12-17T23:10:25.774035956Z	72	PC: 12ca7 \| Allocate memory
2018-12-17T23:10:25.77579118Z	25	PC: 12cc7 \| Get default drive
2018-12-17T23:10:25.777472437Z	14	PC: 12cd0 \| Set default drive (Drive = 'C')
2018-12-17T23:10:25.779331031Z	26	PC: 12cd7 \| Set disk transfer address
2018-12-17T23:10:25.781182901Z	78	PC: 12cf5 \| Find first file
2018-12-17T23:10:25.788135722Z	61	PC: 12d5d \| Open file (Filename = 'COMMAND.COM')
2018-12-17T23:10:25.795955727Z	66	PC: 12d74 \| Move file pointer
2018-12-17T23:10:25.79819848Z	63	PC: 12d87 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:10:25.806359515Z	62	PC: 12dd3 \| Close file
2018-12-17T23:10:25.810540488Z	79	PC: 12ef3 \| Find next file
2018-12-17T23:10:25.815628699Z	14	PC: 12f0e \| Set default drive (Drive = 'A')
2018-12-17T23:10:25.821617604Z	78	PC: 12cf5 \| Find first file
2018-12-17T23:10:25.828374341Z	61	PC: 12d5d \| Open file (Filename = 'SLEEP.COM')
2018-12-17T23:10:25.83559838Z	66	PC: 12d74 \| Move file pointer
2018-12-17T23:10:25.84169712Z	63	PC: 12d87 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:10:25.848816927Z	67	PC: 12def \| Get or set file attributes
2018-12-17T23:10:25.864273409Z	67	PC: 12df8 \| Get or set file attributes
2018-12-17T23:10:25.868590199Z	60	PC: 12e03 \| Create or truncate file
2018-12-17T23:10:25.876112441Z	64	PC: 12e1a \| Write file or device (Write 1290 bytes on handle 6)
2018-12-17T23:10:25.881540234Z	66	PC: 12e48 \| Move file pointer
2018-12-17T23:10:25.882806021Z	63	PC: 12e63 \| Read file or device (Read 407 bytes on handle 5)
2018-12-17T23:10:25.886260683Z	64	PC: 12e7a \| Write file or device (Write 407 bytes on handle 6)
2018-12-17T23:10:25.895633744Z	64	PC: 12e90 \| Write file or device (Write 31 bytes on handle 6)
2018-12-17T23:10:25.898723386Z	87	PC: 12eb2 \| Get or set file date and time
2018-12-17T23:10:25.90306617Z	62	PC: 12eba \| Close file
2018-12-17T23:10:25.90534749Z	62	PC: 12ec2 \| Close file
2018-12-17T23:10:25.91435054Z	65	PC: 12ec9 \| Delete file (Filename = 'SLEEP.COM')
2018-12-17T23:10:25.930090237Z	86	PC: 12eda \| Rename file
2018-12-17T23:10:25.937701871Z	67	PC: 12eef \| Get or set file attributes
2018-12-17T23:10:25.9449271Z	79	PC: 12ef3 \| Find next file
2018-12-17T23:10:25.94778057Z	61	PC: 12d5d \| Open file (Filename = 'PRINT.COM')
2018-12-17T23:10:25.952524412Z	66	PC: 12d74 \| Move file pointer
2018-12-17T23:10:25.954058585Z	63	PC: 12d87 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:10:25.961798998Z	67	PC: 12def \| Get or set file attributes
2018-12-17T23:10:25.97571597Z	67	PC: 12df8 \| Get or set file attributes
2018-12-17T23:10:25.987735754Z	60	PC: 12e03 \| Create or truncate file
2018-12-17T23:10:26.000349678Z	64	PC: 12e1a \| Write file or device (Write 1290 bytes on handle 6)
2018-12-17T23:10:26.009664681Z	66	PC: 12e48 \| Move file pointer
2018-12-17T23:10:26.011140717Z	63	PC: 12e63 \| Read file or device (Read 27 bytes on handle 5)
2018-12-17T23:10:26.018097756Z	64	PC: 12e7a \| Write file or device (Write 27 bytes on handle 6)
2018-12-17T23:10:26.020971939Z	64	PC: 12e90 \| Write file or device (Write 31 bytes on handle 6)
2018-12-17T23:10:26.024039307Z	87	PC: 12eb2 \| Get or set file date and time
2018-12-17T23:10:26.026304577Z	62	PC: 12eba \| Close file
2018-12-17T23:10:26.02836697Z	62	PC: 12ec2 \| Close file
2018-12-17T23:10:26.033805073Z	65	PC: 12ec9 \| Delete file (Filename = 'PRINT.COM')
2018-12-17T23:10:26.041936719Z	86	PC: 12eda \| Rename file
2018-12-17T23:10:26.04985183Z	67	PC: 12eef \| Get or set file attributes
2018-12-17T23:10:26.058383742Z	79	PC: 12ef3 \| Find next file
2018-12-17T23:10:26.06034874Z	61	PC: 12d5d \| Open file (Filename = 'HELLO.COM')
2018-12-17T23:10:26.066640385Z	66	PC: 12d74 \| Move file pointer
2018-12-17T23:10:26.068137717Z	63	PC: 12d87 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:10:26.076085575Z	67	PC: 12def \| Get or set file attributes
2018-12-17T23:10:26.087696595Z	67	PC: 12df8 \| Get or set file attributes
2018-12-17T23:10:26.097635718Z	60	PC: 12e03 \| Create or truncate file
2018-12-17T23:10:26.109579269Z	64	PC: 12e1a \| Write file or device (Write 1290 bytes on handle 6)
2018-12-17T23:10:26.119994507Z	66	PC: 12e48 \| Move file pointer
2018-12-17T23:10:26.121987892Z	63	PC: 12e63 \| Read file or device (Read 92 bytes on handle 5)
2018-12-17T23:10:26.125200034Z	64	PC: 12e7a \| Write file or device (Write 92 bytes on handle 6)
2018-12-17T23:10:26.128973716Z	64	PC: 12e90 \| Write file or device (Write 31 bytes on handle 6)
2018-12-17T23:10:26.131985095Z	87	PC: 12eb2 \| Get or set file date and time
2018-12-17T23:10:26.133951647Z	62	PC: 12eba \| Close file
2018-12-17T23:10:26.136415286Z	62	PC: 12ec2 \| Close file
2018-12-17T23:10:26.145119095Z	65	PC: 12ec9 \| Delete file (Filename = 'HELLO.COM')
2018-12-17T23:10:26.157324774Z	86	PC: 12eda \| Rename file
2018-12-17T23:10:26.170083875Z	67	PC: 12eef \| Get or set file attributes
2018-12-17T23:10:26.184052094Z	79	PC: 12ef3 \| Find next file
2018-12-17T23:10:26.187024981Z	61	PC: 12d5d \| Open file (Filename = 'PHANG.COM')
2018-12-17T23:10:26.194444659Z	66	PC: 12d74 \| Move file pointer
2018-12-17T23:10:26.196308899Z	63	PC: 12d87 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:10:26.203310016Z	62	PC: 12db0 \| Close file
2018-12-17T23:10:26.205207247Z	73	PC: 12f1a \| Release memory
2018-12-17T23:10:26.207288841Z	74	PC: 12f25 \| Reallocate memory
2018-12-17T23:10:26.209454463Z	74	PC: 12f2b \| Reallocate memory
2018-12-17T23:10:26.211312858Z	37	PC: 12f3c \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:10:26.213754734Z	76	PC: 12a49 \| Terminate with return code (Return code = '0')