Sample viewer

vx.netlux.org/Virus.DOS.Kerplunk.3059

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T23:11:15.138305877Z 24 PC: 12a72 | Reserved
2018-12-17T23:11:15.140271815Z 82 PC: 12a87 | Get DOS internal pointers (SYSVARS)
2018-12-17T23:11:15.142170686Z 88 PC: 12a90 | case 0xGet or set allocation strateg:
2018-12-17T23:11:15.143901431Z 88 PC: 12a9a | case 0xGet or set allocation strateg:
2018-12-17T23:11:15.14642085Z 88 PC: 12aa8 | case 0xGet or set allocation strateg:
2018-12-17T23:11:15.150768187Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.152331086Z 77 PC: 11fe0 | Get program return code
2018-12-17T23:11:15.154238534Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.156240539Z 82 PC: 9eb8a | Get DOS internal pointers (SYSVARS)
2018-12-17T23:11:15.157921641Z 88 PC: 9eb8a | case 0xGet or set allocation strateg:
2018-12-17T23:11:15.159583396Z 88 PC: 9eb8a | case 0xGet or set allocation strateg:
2018-12-17T23:11:15.162043554Z 88 PC: 9eb8a | case 0xGet or set allocation strateg:
2018-12-17T23:11:15.163991407Z 72 PC: 12174 | Allocate memory
2018-12-17T23:11:15.166312172Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.168375743Z 82 PC: 9eb8a | Get DOS internal pointers (SYSVARS)
2018-12-17T23:11:15.169651943Z 88 PC: 9eb8a | case 0xGet or set allocation strateg:
2018-12-17T23:11:15.170921281Z 88 PC: 9eb8a | case 0xGet or set allocation strateg:
2018-12-17T23:11:15.173280739Z 88 PC: 9eb8a | case 0xGet or set allocation strateg:
2018-12-17T23:11:15.175122243Z 72 PC: 1218d | Allocate memory
2018-12-17T23:11:15.177739696Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.179790863Z 37 PC: 123c4 | Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T23:11:15.181257011Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.18315464Z 37 PC: 123cb | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T23:11:15.185872913Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.192998605Z 37 PC: 123d2 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:11:15.194717067Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.196166293Z 62 PC: 122ab | Close file
2018-12-17T23:11:15.19862106Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.199758479Z 62 PC: 122ab | Close file
2018-12-17T23:11:15.201435784Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.203590958Z 62 PC: 122ab | Close file
2018-12-17T23:11:15.207003737Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.208686321Z 62 PC: 122ab | Close file
2018-12-17T23:11:15.211813172Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.21381114Z 62 PC: 122ab | Close file
2018-12-17T23:11:15.215831881Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.218821995Z 62 PC: 122ab | Close file
2018-12-17T23:11:15.22099939Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.222507506Z 62 PC: 122ab | Close file
2018-12-17T23:11:15.225638375Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.227247282Z 62 PC: 122ab | Close file
2018-12-17T23:11:15.22926139Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.230746543Z 62 PC: 122ab | Close file
2018-12-17T23:11:15.233423227Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.235012376Z 62 PC: 122ab | Close file
2018-12-17T23:11:15.237215169Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.239489297Z 62 PC: 122ab | Close file
2018-12-17T23:11:15.241810332Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.243066555Z 62 PC: 122ab | Close file
2018-12-17T23:11:15.249659465Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.251222926Z 62 PC: 122ab | Close file
2018-12-17T23:11:15.25406972Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.25633467Z 62 PC: 122ab | Close file
2018-12-17T23:11:15.262872226Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.264569589Z 62 PC: 122ab | Close file
2018-12-17T23:11:15.269781622Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.27183269Z 82 PC: 9eb8a | Get DOS internal pointers (SYSVARS)
2018-12-17T23:11:15.273427709Z 88 PC: 9eb8a | case 0xGet or set allocation strateg:
2018-12-17T23:11:15.275504305Z 88 PC: 9eb8a | case 0xGet or set allocation strateg:
2018-12-17T23:11:15.278000971Z 88 PC: 9eb8a | case 0xGet or set allocation strateg:
2018-12-17T23:11:15.279695498Z 67 PC: 9eb8a | Get or set file attributes
2018-12-17T23:11:15.286122777Z 67 PC: 9eb8a | Get or set file attributes
2018-12-17T23:11:15.682954735Z 61 PC: 9eb8a | Open file (Filename = 'C:\COMMAND.COM')
2018-12-17T23:11:15.69005503Z 87 PC: 9eb8a | Get or set file date and time
2018-12-17T23:11:15.691780966Z 68 PC: 9eb8a | I/O control for devices (Set for = '=n.Xu�.�� ')
2018-12-17T23:11:15.69460139Z 66 PC: 9eb8a | Move file pointer
2018-12-17T23:11:15.696279587Z 66 PC: 9eb8a | Move file pointer
2018-12-17T23:11:15.698360631Z 66 PC: 9eb8a | Move file pointer
2018-12-17T23:11:15.701649377Z 63 PC: 9eb8a | Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:11:15.706330631Z 66 PC: 9eb8a | Move file pointer
2018-12-17T23:11:15.709681043Z 63 PC: 9eb8a | Read file or device (Read 28 bytes on handle 5)
2018-12-17T23:11:15.714011448Z 66 PC: 9eb8a | Move file pointer
2018-12-17T23:11:15.715859564Z 42 PC: 9eb8a | Get date 0x9eb8a: ret
0x9eb8b: pop bp
0x9eb8c: call 0xae5e6
0x9eb8f: jmp 0x9e442
0x9eb92: pop bp
0x9eb93: mov byte ptr cs:[0xb9a], 0
0x9eb99: jmp 0x9e442
0x9eb9c: pop bp
0x9eb9d: mov byte ptr cs:[0xb9a], 1
0x9eba3: mov byte ptr cs:[0xb9f], 1
0x9eba9: jmp 0x9e442
0x9ebac: pushaw
0x9ebad: call 0x9ec46
0x9ebb0: mov byte ptr [0x25], al
0x9ebb3: call 0x9ec46
0x9ebb6: and ax, 5
0x9ebb9: shl ax, 1
0x9ebbb: cmp ax, 6
0x9ebbe: jb 0x9ebc5
0x9ebc0: mov byte ptr [0x25], 0x90
2018-12-17T23:11:15.718748598Z 87 PC: 9eb8a | Get or set file date and time
2018-12-17T23:11:15.722049897Z 44 PC: 9eb8a | Get time 0x9eb8a: ret
0x9eb8b: pop bp
0x9eb8c: call 0xae5e6
0x9eb8f: jmp 0x9e442
0x9eb92: pop bp
0x9eb93: mov byte ptr cs:[0xb9a], 0
0x9eb99: jmp 0x9e442
0x9eb9c: pop bp
0x9eb9d: mov byte ptr cs:[0xb9a], 1
0x9eba3: mov byte ptr cs:[0xb9f], 1
0x9eba9: jmp 0x9e442
0x9ebac: pushaw
0x9ebad: call 0x9ec46
0x9ebb0: mov byte ptr [0x25], al
0x9ebb3: call 0x9ec46
0x9ebb6: and ax, 5
0x9ebb9: shl ax, 1
0x9ebbb: cmp ax, 6
0x9ebbe: jb 0x9ebc5
0x9ebc0: mov byte ptr [0x25], 0x90
2018-12-17T23:11:15.725089764Z 44 PC: 9eb8a | Get time 0x9eb8a: ret
0x9eb8b: pop bp
0x9eb8c: call 0xae5e6
0x9eb8f: jmp 0x9e442
0x9eb92: pop bp
0x9eb93: mov byte ptr cs:[0xb9a], 0
0x9eb99: jmp 0x9e442
0x9eb9c: pop bp
0x9eb9d: mov byte ptr cs:[0xb9a], 1
0x9eba3: mov byte ptr cs:[0xb9f], 1
0x9eba9: jmp 0x9e442
0x9ebac: pushaw
0x9ebad: call 0x9ec46
0x9ebb0: mov byte ptr [0x25], al
0x9ebb3: call 0x9ec46
0x9ebb6: and ax, 5
0x9ebb9: shl ax, 1
0x9ebbb: cmp ax, 6
0x9ebbe: jb 0x9ebc5
0x9ebc0: mov byte ptr [0x25], 0x90
2018-12-17T23:11:15.728221876Z 44 PC: 9eb8a | Get time 0x9eb8a: ret
0x9eb8b: pop bp
0x9eb8c: call 0xae5e6
0x9eb8f: jmp 0x9e442
0x9eb92: pop bp
0x9eb93: mov byte ptr cs:[0xb9a], 0
0x9eb99: jmp 0x9e442
0x9eb9c: pop bp
0x9eb9d: mov byte ptr cs:[0xb9a], 1
0x9eba3: mov byte ptr cs:[0xb9f], 1
0x9eba9: jmp 0x9e442
0x9ebac: pushaw
0x9ebad: call 0x9ec46
0x9ebb0: mov byte ptr [0x25], al
0x9ebb3: call 0x9ec46
0x9ebb6: and ax, 5
0x9ebb9: shl ax, 1
0x9ebbb: cmp ax, 6
0x9ebbe: jb 0x9ebc5
0x9ebc0: mov byte ptr [0x25], 0x90
2018-12-17T23:11:15.732263076Z 44 PC: 9eb8a | Get time 0x9eb8a: ret
0x9eb8b: pop bp
0x9eb8c: call 0xae5e6
0x9eb8f: jmp 0x9e442
0x9eb92: pop bp
0x9eb93: mov byte ptr cs:[0xb9a], 0
0x9eb99: jmp 0x9e442
0x9eb9c: pop bp
0x9eb9d: mov byte ptr cs:[0xb9a], 1
0x9eba3: mov byte ptr cs:[0xb9f], 1
0x9eba9: jmp 0x9e442
0x9ebac: pushaw
0x9ebad: call 0x9ec46
0x9ebb0: mov byte ptr [0x25], al
0x9ebb3: call 0x9ec46
0x9ebb6: and ax, 5
0x9ebb9: shl ax, 1
0x9ebbb: cmp ax, 6
0x9ebbe: jb 0x9ebc5
0x9ebc0: mov byte ptr [0x25], 0x90
2018-12-17T23:11:15.735806731Z 64 PC: 9eb8a | Write file or device (Write 3059 bytes on handle 5)
2018-12-17T23:11:15.74874699Z 66 PC: 9eb8a | Move file pointer
2018-12-17T23:11:15.751948882Z 64 PC: 9eb8a | Write file or device (Write 28 bytes on handle 5)
2018-12-17T23:11:15.755759509Z 87 PC: 9eb8a | Get or set file date and time
2018-12-17T23:11:15.757994432Z 62 PC: 9eb8a | Close file
2018-12-17T23:11:15.766642589Z 67 PC: 9eb8a | Get or set file attributes
2018-12-17T23:11:15.777793602Z 61 PC: 12354 | Open file (Filename = 'C:\COMMAND.COM')
2018-12-17T23:11:15.785110524Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.786928794Z 68 PC: 9eb8a | I/O control for devices (Set for = '')
2018-12-17T23:11:15.79033497Z 66 PC: 9eb8a | Move file pointer
2018-12-17T23:11:15.792347255Z 66 PC: 9eb8a | Move file pointer
2018-12-17T23:11:15.794660777Z 66 PC: 9eb8a | Move file pointer
2018-12-17T23:11:15.797004244Z 63 PC: 9eb8a | Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:11:15.800693403Z 66 PC: 9eb8a | Move file pointer
2018-12-17T23:11:15.802601642Z 66 PC: 9eb8a | Move file pointer
2018-12-17T23:11:15.805472863Z 66 PC: 9eb8a | Move file pointer
2018-12-17T23:11:15.80727387Z 66 PC: 9eb8a | Move file pointer
2018-12-17T23:11:15.809051563Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.810526848Z 68 PC: 9eb8a | I/O control for devices (Set for = '�mfyW� Wv W�Wj W� WcW� W�W W5W')
2018-12-17T23:11:15.813311105Z 66 PC: 9eb8a | Move file pointer
2018-12-17T23:11:15.815159271Z 66 PC: 9eb8a | Move file pointer
2018-12-17T23:11:15.816992569Z 66 PC: 9eb8a | Move file pointer
2018-12-17T23:11:15.820084414Z 63 PC: 9eb8a | Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:11:15.82334135Z 66 PC: 9eb8a | Move file pointer
2018-12-17T23:11:15.825451048Z 63 PC: 9eb8a | Read file or device (Read 44693 bytes on handle 5)
2018-12-17T23:11:15.842597408Z 66 PC: 9eb8a | Move file pointer
2018-12-17T23:11:15.845208599Z 66 PC: 9eb8a | Move file pointer
2018-12-17T23:11:15.84743692Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.849610558Z 62 PC: 1238a | Close file
2018-12-17T23:11:15.85365244Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.855100855Z 99 PC: 98cf7 | Get DBCS lead byte table pointer
2018-12-17T23:11:15.858087202Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.859650983Z 56 PC: 93519 | Get or set country info
2018-12-17T23:11:15.86204755Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.86347223Z 68 PC: 9eb8a | I/O control for devices (Set for = ' %1 mm-dd-yy')
2018-12-17T23:11:15.866449089Z 64 PC: 98f68 | Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:11:15.872189666Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.87388263Z 25 PC: 93582 | Get default drive
2018-12-17T23:11:15.876969847Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.878776545Z 71 PC: 957fd | Get current directory
2018-12-17T23:11:15.885173196Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.887920773Z 68 PC: 9eb8a | I/O control for devices (Set for = 'A:\$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$MS DOS Version 6 (C)Copyright 1981-1994 Microsoft Corp Licensed Material - Property of Microsoft All rights reserved ')
2018-12-17T23:11:15.889899816Z 64 PC: 98f68 | Write file or device (Write 3 bytes on handle 1)
2018-12-17T23:11:15.893816894Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.895902246Z 2 PC: 957d2 | Character output (Char = '3e')
2018-12-17T23:11:15.898643372Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.899787513Z 93 PC: 93640 | File sharing functions
2018-12-17T23:11:15.901762267Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.903977133Z 93 PC: 93647 | File sharing functions
2018-12-17T23:11:15.906140462Z 98 PC: 9eb8a | Get current PSP
2018-12-17T23:11:15.907448683Z 10 PC: 93659 | Buffered keyboard input