Sample viewer

vx.netlux.org/Virus.DOS.Mainman.301

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:12:42.0698904Z	26	PC: 13faa \| Set disk transfer address
2018-12-17T23:12:42.071526755Z	71	PC: 14066 \| Get current directory
2018-12-17T23:12:42.074363787Z	78	PC: 13fb9 \| Find first file
2018-12-17T23:12:42.080312343Z	61	PC: 13fcc \| Open file (Filename = 'SLEEP.COM')
2018-12-17T23:12:42.087565862Z	63	PC: 13fd8 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:12:42.093890766Z	66	PC: 13ff8 \| Move file pointer
2018-12-17T23:12:42.095592321Z	64	PC: 14005 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:12:42.099152926Z	66	PC: 14018 \| Move file pointer
2018-12-17T23:12:42.100449848Z	64	PC: 1402f \| Write file or device (Write 301 bytes on handle 5)
2018-12-17T23:12:42.115659635Z	87	PC: 1403c \| Get or set file date and time
2018-12-17T23:12:42.118306672Z	62	PC: 14040 \| Close file
2018-12-17T23:12:42.126565041Z	59	PC: 14048 \| Change current directory
2018-12-17T23:12:42.131695979Z	59	PC: 14052 \| Change current directory
2018-12-17T23:12:42.134067005Z	26	PC: 1405b \| Set disk transfer address
2018-12-17T23:12:42.1506992Z	71	PC: 13e84 \| Get current directory
2018-12-17T23:12:42.153842088Z	78	PC: 13e90 \| Find first file
2018-12-17T23:12:42.160217905Z	67	PC: 13e9b \| Get or set file attributes
2018-12-17T23:12:42.170595705Z	61	PC: 13ea0 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T23:12:42.177269427Z	63	PC: 13eb0 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:12:42.183621351Z	66	PC: 13eda \| Move file pointer
2018-12-17T23:12:42.185963802Z	66	PC: 13eed \| Move file pointer
2018-12-17T23:12:42.187667204Z	63	PC: 13ef9 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:12:42.190877864Z	87	PC: 13f0e \| Get or set file date and time
2018-12-17T23:12:42.193069039Z	64	PC: 13f1d \| Write file or device (Write 314 bytes on handle 5)
2018-12-17T23:12:42.195907498Z	66	PC: 13ebb \| Move file pointer
2018-12-17T23:12:42.197524299Z	64	PC: 13ec7 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:12:42.200938062Z	87	PC: 13ece \| Get or set file date and time
2018-12-17T23:12:42.20261696Z	62	PC: 13f23 \| Close file
2018-12-17T23:12:42.210115565Z	79	PC: 13f2e \| Find next file
2018-12-17T23:12:42.213941803Z	67	PC: 13e9b \| Get or set file attributes
2018-12-17T23:12:42.22425014Z	61	PC: 13ea0 \| Open file (Filename = 'PRINT.COM')
2018-12-17T23:12:42.230735177Z	63	PC: 13eb0 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:12:42.236633034Z	66	PC: 13eda \| Move file pointer
2018-12-17T23:12:42.238240801Z	66	PC: 13eed \| Move file pointer
2018-12-17T23:12:42.239729011Z	63	PC: 13ef9 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:12:42.243355802Z	87	PC: 13f0e \| Get or set file date and time
2018-12-17T23:12:42.249936065Z	64	PC: 13f1d \| Write file or device (Write 314 bytes on handle 5)
2018-12-17T23:12:42.252728836Z	66	PC: 13ebb \| Move file pointer
2018-12-17T23:12:42.255131092Z	64	PC: 13ec7 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:12:42.257735059Z	87	PC: 13ece \| Get or set file date and time
2018-12-17T23:12:42.259351988Z	62	PC: 13f23 \| Close file
2018-12-17T23:12:42.268160522Z	79	PC: 13f2e \| Find next file
2018-12-17T23:12:42.271634868Z	67	PC: 13e9b \| Get or set file attributes
2018-12-17T23:12:42.282074266Z	61	PC: 13ea0 \| Open file (Filename = 'HELLO.COM')
2018-12-17T23:12:42.288563973Z	63	PC: 13eb0 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:12:42.296173397Z	66	PC: 13eda \| Move file pointer
2018-12-17T23:12:42.29753981Z	66	PC: 13eed \| Move file pointer
2018-12-17T23:12:42.298835137Z	63	PC: 13ef9 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:12:42.3019511Z	87	PC: 13f0e \| Get or set file date and time
2018-12-17T23:12:42.303431408Z	64	PC: 13f1d \| Write file or device (Write 314 bytes on handle 5)
2018-12-17T23:12:42.306109818Z	66	PC: 13ebb \| Move file pointer
2018-12-17T23:12:42.308488233Z	64	PC: 13ec7 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:12:42.310280603Z	87	PC: 13ece \| Get or set file date and time
2018-12-17T23:12:42.311354967Z	62	PC: 13f23 \| Close file
2018-12-17T23:12:42.316200193Z	79	PC: 13f2e \| Find next file
2018-12-17T23:12:42.318031995Z	67	PC: 13e9b \| Get or set file attributes
2018-12-17T23:12:42.324110686Z	61	PC: 13ea0 \| Open file (Filename = 'PHANG.COM')
2018-12-17T23:12:42.329190389Z	63	PC: 13eb0 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:12:42.333330323Z	66	PC: 13eda \| Move file pointer
2018-12-17T23:12:42.334634209Z	66	PC: 13eed \| Move file pointer
2018-12-17T23:12:42.336378007Z	63	PC: 13ef9 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:12:42.338166126Z	87	PC: 13f0e \| Get or set file date and time
2018-12-17T23:12:42.339316641Z	64	PC: 13f1d \| Write file or device (Write 314 bytes on handle 5)
2018-12-17T23:12:42.341812008Z	66	PC: 13ebb \| Move file pointer
2018-12-17T23:12:42.342845927Z	64	PC: 13ec7 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:12:42.344585734Z	87	PC: 13ece \| Get or set file date and time
2018-12-17T23:12:42.34663784Z	62	PC: 13f23 \| Close file
2018-12-17T23:12:42.351352469Z	79	PC: 13f2e \| Find next file
2018-12-17T23:12:42.353120264Z	67	PC: 13e9b \| Get or set file attributes
2018-12-17T23:12:42.361658405Z	61	PC: 13ea0 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T23:12:42.369057209Z	63	PC: 13eb0 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:12:42.372920151Z	66	PC: 13eda \| Move file pointer
2018-12-17T23:12:42.37495031Z	66	PC: 13eed \| Move file pointer
2018-12-17T23:12:42.375906863Z	63	PC: 13ef9 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:12:42.377544831Z	87	PC: 13f0e \| Get or set file date and time
2018-12-17T23:12:42.379082852Z	64	PC: 13f1d \| Write file or device (Write 314 bytes on handle 5)
2018-12-17T23:12:42.38083499Z	66	PC: 13ebb \| Move file pointer
2018-12-17T23:12:42.381809467Z	64	PC: 13ec7 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:12:42.384099773Z	87	PC: 13ece \| Get or set file date and time
2018-12-17T23:12:42.3851698Z	62	PC: 13f23 \| Close file
2018-12-17T23:12:42.390014586Z	79	PC: 13f2e \| Find next file
2018-12-17T23:12:42.393007395Z	67	PC: 13e9b \| Get or set file attributes
2018-12-17T23:12:42.402480303Z	61	PC: 13ea0 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T23:12:42.408855303Z	63	PC: 13eb0 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:12:42.415516868Z	66	PC: 13eda \| Move file pointer
2018-12-17T23:12:42.416848067Z	66	PC: 13eed \| Move file pointer
2018-12-17T23:12:42.418046232Z	63	PC: 13ef9 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:12:42.420795428Z	87	PC: 13f0e \| Get or set file date and time
2018-12-17T23:12:42.422062486Z	64	PC: 13f1d \| Write file or device (Write 314 bytes on handle 5)
2018-12-17T23:12:42.429912753Z	66	PC: 13ebb \| Move file pointer
2018-12-17T23:12:42.431964488Z	64	PC: 13ec7 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:12:42.438840665Z	87	PC: 13ece \| Get or set file date and time
2018-12-17T23:12:42.440237122Z	62	PC: 13f23 \| Close file
2018-12-17T23:12:42.449913826Z	79	PC: 13f2e \| Find next file
2018-12-17T23:12:42.451804624Z	67	PC: 13e9b \| Get or set file attributes
2018-12-17T23:12:42.461414681Z	61	PC: 13ea0 \| Open file (Filename = 'PAH.COM')
2018-12-17T23:12:42.465857706Z	63	PC: 13eb0 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:12:42.469781733Z	66	PC: 13eda \| Move file pointer
2018-12-17T23:12:42.470678665Z	66	PC: 13eed \| Move file pointer
2018-12-17T23:12:42.472075086Z	63	PC: 13ef9 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:12:42.473744923Z	87	PC: 13f0e \| Get or set file date and time
2018-12-17T23:12:42.474724477Z	64	PC: 13f1d \| Write file or device (Write 314 bytes on handle 5)
2018-12-17T23:12:42.476776053Z	66	PC: 13ebb \| Move file pointer
2018-12-17T23:12:42.486296944Z	64	PC: 13ec7 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:12:42.487975062Z	87	PC: 13ece \| Get or set file date and time
2018-12-17T23:12:42.496250267Z	62	PC: 13f23 \| Close file
2018-12-17T23:12:42.501341159Z	79	PC: 13f2e \| Find next file
2018-12-17T23:12:42.502879265Z	59	PC: 13f3a \| Change current directory
2018-12-17T23:12:42.508280583Z	78	PC: 13e90 \| Find first file
2018-12-17T23:12:42.519207426Z	67	PC: 13e9b \| Get or set file attributes
2018-12-17T23:12:42.528984972Z	61	PC: 13ea0 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T23:12:42.535752881Z	63	PC: 13eb0 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:12:42.542882716Z	66	PC: 13eda \| Move file pointer
2018-12-17T23:12:42.544227273Z	66	PC: 13eed \| Move file pointer
2018-12-17T23:12:42.545579236Z	63	PC: 13ef9 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:12:42.55284527Z	62	PC: 13f23 \| Close file
2018-12-17T23:12:42.554817041Z	79	PC: 13f2e \| Find next file
2018-12-17T23:12:42.557406703Z	67	PC: 13e9b \| Get or set file attributes
2018-12-17T23:12:42.569780733Z	61	PC: 13ea0 \| Open file (Filename = 'PRINT.COM')
2018-12-17T23:12:42.576260495Z	63	PC: 13eb0 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:12:42.582546916Z	66	PC: 13eda \| Move file pointer
2018-12-17T23:12:42.585726979Z	66	PC: 13eed \| Move file pointer
2018-12-17T23:12:42.587212212Z	63	PC: 13ef9 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:12:42.589821875Z	62	PC: 13f23 \| Close file
2018-12-17T23:12:42.592200506Z	79	PC: 13f2e \| Find next file
2018-12-17T23:12:42.594973169Z	67	PC: 13e9b \| Get or set file attributes
2018-12-17T23:12:42.604977927Z	61	PC: 13ea0 \| Open file (Filename = 'HELLO.COM')
2018-12-17T23:12:42.612263737Z	63	PC: 13eb0 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:12:42.618487685Z	66	PC: 13eda \| Move file pointer
2018-12-17T23:12:42.619795098Z	66	PC: 13eed \| Move file pointer
2018-12-17T23:12:42.621762958Z	63	PC: 13ef9 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:12:42.6242931Z	62	PC: 13f23 \| Close file
2018-12-17T23:12:42.6259731Z	79	PC: 13f2e \| Find next file
2018-12-17T23:12:42.630154064Z	67	PC: 13e9b \| Get or set file attributes
2018-12-17T23:12:42.640295899Z	61	PC: 13ea0 \| Open file (Filename = 'PHANG.COM')
2018-12-17T23:12:42.647110091Z	63	PC: 13eb0 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:12:42.654549037Z	66	PC: 13eda \| Move file pointer
2018-12-17T23:12:42.656095033Z	66	PC: 13eed \| Move file pointer
2018-12-17T23:12:42.657694709Z	63	PC: 13ef9 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:12:42.660534999Z	62	PC: 13f23 \| Close file
2018-12-17T23:12:42.662560901Z	79	PC: 13f2e \| Find next file
2018-12-17T23:12:42.664995422Z	67	PC: 13e9b \| Get or set file attributes
2018-12-17T23:12:42.675244186Z	61	PC: 13ea0 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T23:12:42.682397906Z	63	PC: 13eb0 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:12:42.689239382Z	66	PC: 13eda \| Move file pointer
2018-12-17T23:12:42.692174811Z	66	PC: 13eed \| Move file pointer
2018-12-17T23:12:42.693609461Z	63	PC: 13ef9 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:12:42.695912703Z	62	PC: 13f23 \| Close file
2018-12-17T23:12:42.698343673Z	79	PC: 13f2e \| Find next file
2018-12-17T23:12:42.7010589Z	67	PC: 13e9b \| Get or set file attributes
2018-12-17T23:12:42.711405753Z	61	PC: 13ea0 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T23:12:42.719285363Z	63	PC: 13eb0 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:12:42.726077965Z	66	PC: 13eda \| Move file pointer
2018-12-17T23:12:42.72791729Z	66	PC: 13eed \| Move file pointer
2018-12-17T23:12:42.730435675Z	63	PC: 13ef9 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:12:42.737183337Z	62	PC: 13f23 \| Close file
2018-12-17T23:12:42.739188902Z	79	PC: 13f2e \| Find next file
2018-12-17T23:12:42.742304393Z	67	PC: 13e9b \| Get or set file attributes
2018-12-17T23:12:42.752257873Z	61	PC: 13ea0 \| Open file (Filename = 'PAH.COM')
2018-12-17T23:12:42.758819645Z	63	PC: 13eb0 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:12:42.765731139Z	66	PC: 13eda \| Move file pointer
2018-12-17T23:12:42.767256654Z	66	PC: 13eed \| Move file pointer
2018-12-17T23:12:42.768760409Z	63	PC: 13ef9 \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:12:42.771839931Z	62	PC: 13f23 \| Close file
2018-12-17T23:12:42.773715706Z	79	PC: 13f2e \| Find next file
2018-12-17T23:12:42.776203776Z	59	PC: 13f3a \| Change current directory
2018-12-17T23:12:42.78120906Z	59	PC: 13f50 \| Change current directory
2018-12-17T23:12:42.783212519Z	9	PC: 12a85 \| Display string (String= 'Sophos Ltd, Oxford sacrificial COM goat 1400H bytes long ')
2018-12-17T23:12:42.788889316Z	0	PC: 12a89 \| Program terminate