Sample viewer

vx.netlux.org/Virus.DOS.CivilWar.126

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:12:02.661793563Z	26	PC: 12a5d \| Set disk transfer address
2018-12-17T23:12:02.663023537Z	78	PC: 12a65 \| Find first file
2018-12-17T23:12:02.671256346Z	61	PC: 12a75 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T23:12:02.678893769Z	63	PC: 12a81 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:12:02.685959658Z	66	PC: 12a89 \| Move file pointer
2018-12-17T23:12:02.689224287Z	64	PC: 12a9b \| Write file or device (Write 126 bytes on handle 5)
2018-12-17T23:12:02.705791121Z	66	PC: 12aa3 \| Move file pointer
2018-12-17T23:12:02.707239191Z	64	PC: 12aae \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:12:02.715522403Z	62	PC: 12ab2 \| Close file
2018-12-17T23:12:02.724794917Z	79	PC: 12a65 \| Find next file
2018-12-17T23:12:02.72797667Z	61	PC: 12a75 \| Open file (Filename = 'PRINT.COM')
2018-12-17T23:12:02.735267798Z	63	PC: 12a81 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:12:02.742858678Z	66	PC: 12a89 \| Move file pointer
2018-12-17T23:12:02.744711806Z	64	PC: 12a9b \| Write file or device (Write 126 bytes on handle 5)
2018-12-17T23:12:02.74795565Z	66	PC: 12aa3 \| Move file pointer
2018-12-17T23:12:02.750836202Z	64	PC: 12aae \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:12:02.754134906Z	62	PC: 12ab2 \| Close file
2018-12-17T23:12:02.763625896Z	79	PC: 12a65 \| Find next file
2018-12-17T23:12:02.769091465Z	61	PC: 12a75 \| Open file (Filename = 'HELLO.COM')
2018-12-17T23:12:02.776527719Z	63	PC: 12a81 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:12:02.784437083Z	66	PC: 12a89 \| Move file pointer
2018-12-17T23:12:02.787768338Z	64	PC: 12a9b \| Write file or device (Write 126 bytes on handle 5)
2018-12-17T23:12:02.79096848Z	66	PC: 12aa3 \| Move file pointer
2018-12-17T23:12:02.792797124Z	64	PC: 12aae \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:12:02.796402584Z	62	PC: 12ab2 \| Close file
2018-12-17T23:12:02.806228302Z	79	PC: 12a65 \| Find next file
2018-12-17T23:12:02.809693352Z	61	PC: 12a75 \| Open file (Filename = 'PHANG.COM')
2018-12-17T23:12:02.817502442Z	63	PC: 12a81 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:12:02.825372776Z	66	PC: 12a89 \| Move file pointer
2018-12-17T23:12:02.826912959Z	64	PC: 12a9b \| Write file or device (Write 126 bytes on handle 5)
2018-12-17T23:12:02.829982306Z	66	PC: 12aa3 \| Move file pointer
2018-12-17T23:12:02.832670994Z	64	PC: 12aae \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:12:02.835536789Z	62	PC: 12ab2 \| Close file
2018-12-17T23:12:02.844314365Z	79	PC: 12a65 \| Find next file
2018-12-17T23:12:02.847823327Z	61	PC: 12a75 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T23:12:02.855950387Z	63	PC: 12a81 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:12:02.863060592Z	66	PC: 12a89 \| Move file pointer
2018-12-17T23:12:02.866078427Z	64	PC: 12a9b \| Write file or device (Write 126 bytes on handle 5)
2018-12-17T23:12:02.869174062Z	66	PC: 12aa3 \| Move file pointer
2018-12-17T23:12:02.870673703Z	64	PC: 12aae \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:12:02.87404416Z	62	PC: 12ab2 \| Close file
2018-12-17T23:12:02.882776579Z	79	PC: 12a65 \| Find next file
2018-12-17T23:12:02.885791837Z	61	PC: 12a75 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T23:12:02.90012511Z	63	PC: 12a81 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:12:02.907251573Z	66	PC: 12a89 \| Move file pointer
2018-12-17T23:12:02.909044005Z	64	PC: 12a9b \| Write file or device (Write 126 bytes on handle 5)
2018-12-17T23:12:02.918536849Z	66	PC: 12aa3 \| Move file pointer
2018-12-17T23:12:02.920777687Z	64	PC: 12aae \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:12:02.928929367Z	62	PC: 12ab2 \| Close file
2018-12-17T23:12:02.938766569Z	79	PC: 12a65 \| Find next file
2018-12-17T23:12:02.951202638Z	61	PC: 12a75 \| Open file (Filename = 'PAH.COM')
2018-12-17T23:12:02.959025612Z	63	PC: 12a81 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:12:02.966674473Z	66	PC: 12a89 \| Move file pointer
2018-12-17T23:12:02.969386211Z	64	PC: 12a9b \| Write file or device (Write 126 bytes on handle 5)
2018-12-17T23:12:02.973116459Z	66	PC: 12aa3 \| Move file pointer
2018-12-17T23:12:02.974621879Z	64	PC: 12aae \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:12:02.978790199Z	62	PC: 12ab2 \| Close file
2018-12-17T23:12:02.987450557Z	79	PC: 12a65 \| Find next file
2018-12-17T23:12:02.99019978Z	61	PC: 12a75 \| Open file (Filename = 'TEST.COM')
2018-12-17T23:12:02.998820485Z	63	PC: 12a81 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:12:03.001756243Z	66	PC: 12a89 \| Move file pointer
2018-12-17T23:12:03.003404471Z	64	PC: 12a9b \| Write file or device (Write 126 bytes on handle 5)
2018-12-17T23:12:03.007853438Z	66	PC: 12aa3 \| Move file pointer
2018-12-17T23:12:03.009448659Z	64	PC: 12aae \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:12:03.012404709Z	62	PC: 12ab2 \| Close file
2018-12-17T23:12:03.02115397Z	79	PC: 12a65 \| Find next file