Sample viewer

vx.netlux.org/Virus.DOS.BlackJec.236

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:12:11.406538332Z	78	PC: 12a7f \| Find first file
2018-12-17T23:12:11.412730124Z	47	PC: 12a8a \| Get disk transfer address
2018-12-17T23:12:11.413811717Z	61	PC: 12aa0 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T23:12:11.420231857Z	63	PC: 12aae \| Read file or device (Read 407 bytes on handle 5)
2018-12-17T23:12:11.426790702Z	60	PC: 12acd \| Create or truncate file
2018-12-17T23:12:11.446335322Z	64	PC: 12adf \| Write file or device (Write 643 bytes on handle 6)
2018-12-17T23:12:11.454209866Z	62	PC: 12ae3 \| Close file
2018-12-17T23:12:11.462058661Z	79	PC: 12ae8 \| Find next file
2018-12-17T23:12:11.465242793Z	47	PC: 12a8a \| Get disk transfer address
2018-12-17T23:12:11.466334133Z	61	PC: 12aa0 \| Open file (Filename = 'PRINT.COM')
2018-12-17T23:12:11.473553427Z	63	PC: 12aae \| Read file or device (Read 27 bytes on handle 6)
2018-12-17T23:12:11.480643018Z	60	PC: 12acd \| Create or truncate file
2018-12-17T23:12:11.492378465Z	64	PC: 12adf \| Write file or device (Write 263 bytes on handle 7)
2018-12-17T23:12:11.496107101Z	62	PC: 12ae3 \| Close file
2018-12-17T23:12:11.505382247Z	79	PC: 12ae8 \| Find next file
2018-12-17T23:12:11.507887773Z	47	PC: 12a8a \| Get disk transfer address
2018-12-17T23:12:11.509355639Z	61	PC: 12aa0 \| Open file (Filename = 'HELLO.COM')
2018-12-17T23:12:11.516672132Z	63	PC: 12aae \| Read file or device (Read 92 bytes on handle 7)
2018-12-17T23:12:11.521594693Z	60	PC: 12acd \| Create or truncate file
2018-12-17T23:12:11.530369505Z	64	PC: 12adf \| Write file or device (Write 328 bytes on handle 8)
2018-12-17T23:12:11.53334334Z	62	PC: 12ae3 \| Close file
2018-12-17T23:12:11.539630425Z	79	PC: 12ae8 \| Find next file
2018-12-17T23:12:11.541567792Z	47	PC: 12a8a \| Get disk transfer address
2018-12-17T23:12:11.542934168Z	61	PC: 12aa0 \| Open file (Filename = 'PHANG.COM')
2018-12-17T23:12:11.550063312Z	63	PC: 12aae \| Read file or device (Read 29 bytes on handle 8)
2018-12-17T23:12:11.556465889Z	60	PC: 12acd \| Create or truncate file
2018-12-17T23:12:11.568551233Z	64	PC: 12adf \| Write file or device (Write 265 bytes on handle 9)
2018-12-17T23:12:11.57305361Z	62	PC: 12ae3 \| Close file
2018-12-17T23:12:11.580970142Z	79	PC: 12ae8 \| Find next file
2018-12-17T23:12:11.583499297Z	47	PC: 12a8a \| Get disk transfer address
2018-12-17T23:12:11.585136857Z	61	PC: 12aa0 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T23:12:11.591525819Z	63	PC: 12aae \| Read file or device (Read 29 bytes on handle 9)
2018-12-17T23:12:11.597646282Z	60	PC: 12acd \| Create or truncate file
2018-12-17T23:12:11.610836966Z	64	PC: 12adf \| Write file or device (Write 265 bytes on handle 10)
2018-12-17T23:12:11.614394263Z	62	PC: 12ae3 \| Close file
2018-12-17T23:12:11.622298068Z	79	PC: 12ae8 \| Find next file
2018-12-17T23:12:11.625899724Z	47	PC: 12a8a \| Get disk transfer address
2018-12-17T23:12:11.627095768Z	61	PC: 12aa0 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T23:12:11.633682663Z	63	PC: 12aae \| Read file or device (Read 501 bytes on handle 10)
2018-12-17T23:12:11.640472537Z	60	PC: 12acd \| Create or truncate file
2018-12-17T23:12:11.652234141Z	64	PC: 12adf \| Write file or device (Write 737 bytes on handle 11)
2018-12-17T23:12:11.660453Z	62	PC: 12ae3 \| Close file
2018-12-17T23:12:11.670172387Z	79	PC: 12ae8 \| Find next file
2018-12-17T23:12:11.672804181Z	47	PC: 12a8a \| Get disk transfer address
2018-12-17T23:12:11.674076132Z	61	PC: 12aa0 \| Open file (Filename = 'PAH.COM')
2018-12-17T23:12:11.680564772Z	63	PC: 12aae \| Read file or device (Read 29 bytes on handle 11)
2018-12-17T23:12:11.686493392Z	60	PC: 12acd \| Create or truncate file
2018-12-17T23:12:11.698502115Z	64	PC: 12adf \| Write file or device (Write 265 bytes on handle 12)
2018-12-17T23:12:11.703303618Z	62	PC: 12ae3 \| Close file
2018-12-17T23:12:11.714506964Z	79	PC: 12ae8 \| Find next file
2018-12-17T23:12:11.716959428Z	47	PC: 12a8a \| Get disk transfer address
2018-12-17T23:12:11.718321339Z	61	PC: 12aa0 \| Open file (Filename = 'TEST.COM')
2018-12-17T23:12:11.724498495Z	63	PC: 12aae \| Read file or device (Read 336 bytes on handle 12)
2018-12-17T23:12:11.726804707Z	79	PC: 12ae8 \| Find next file
2018-12-17T23:12:11.72938859Z	9	PC: 12aa2 \| Display string (String= 'Hello - Copyright S & S International, 1990 ')