Sample viewer

vx.netlux.org/Virus.DOS.Inquisitor.1284

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:07:14.55393036Z 71 PC: 12a9a | Get current directory
2018-12-17T22:07:14.557264903Z 78 PC: 12aa3 | Find first file
2018-12-17T22:07:14.563066103Z 67 PC: 12abd | Get or set file attributes
2018-12-17T22:07:14.568486227Z 61 PC: 12acf | Open file (Filename = 'W’')
2018-12-17T22:07:14.574798366Z 67 PC: 12bd1 | Get or set file attributes
2018-12-17T22:07:14.585197383Z 79 PC: 12aa3 | Find next file
2018-12-17T22:07:14.587546994Z 67 PC: 12abd | Get or set file attributes
2018-12-17T22:07:14.597970642Z 61 PC: 12acf | Open file (Filename = 'W’')
2018-12-17T22:07:14.60977029Z 67 PC: 12bd1 | Get or set file attributes
2018-12-17T22:07:14.616348518Z 79 PC: 12aa3 | Find next file
2018-12-17T22:07:14.618778989Z 67 PC: 12abd | Get or set file attributes
2018-12-17T22:07:14.625118556Z 61 PC: 12acf | Open file (Filename = 'W’')
2018-12-17T22:07:14.63138036Z 67 PC: 12bd1 | Get or set file attributes
2018-12-17T22:07:14.636742358Z 79 PC: 12aa3 | Find next file
2018-12-17T22:07:14.639466457Z 67 PC: 12abd | Get or set file attributes
2018-12-17T22:07:14.642994468Z 61 PC: 12acf | Open file (Filename = 'W’')
2018-12-17T22:07:14.648866074Z 67 PC: 12bd1 | Get or set file attributes
2018-12-17T22:07:14.654552192Z 79 PC: 12aa3 | Find next file
2018-12-17T22:07:14.656253319Z 67 PC: 12abd | Get or set file attributes
2018-12-17T22:07:14.659770169Z 61 PC: 12acf | Open file (Filename = 'W’')
2018-12-17T22:07:14.664933806Z 67 PC: 12bd1 | Get or set file attributes
2018-12-17T22:07:14.670206648Z 79 PC: 12aa3 | Find next file
2018-12-17T22:07:14.672582742Z 67 PC: 12abd | Get or set file attributes
2018-12-17T22:07:14.679601713Z 61 PC: 12acf | Open file (Filename = 'W’')
2018-12-17T22:07:14.683462989Z 67 PC: 12bd1 | Get or set file attributes
2018-12-17T22:07:14.686834572Z 79 PC: 12aa3 | Find next file
2018-12-17T22:07:14.689153752Z 67 PC: 12abd | Get or set file attributes
2018-12-17T22:07:14.692606841Z 61 PC: 12acf | Open file (Filename = 'W’')
2018-12-17T22:07:14.69628166Z 67 PC: 12bd1 | Get or set file attributes
2018-12-17T22:07:14.700047908Z 79 PC: 12aa3 | Find next file
2018-12-17T22:07:14.701943068Z 67 PC: 12abd | Get or set file attributes
2018-12-17T22:07:14.70530997Z 61 PC: 12acf | Open file (Filename = 'W’')
2018-12-17T22:07:14.709603325Z 67 PC: 12bd1 | Get or set file attributes
2018-12-17T22:07:14.713143842Z 79 PC: 12aa3 | Find next file
2018-12-17T22:07:14.714684091Z 78 PC: 12bf8 | Find first file
2018-12-17T22:07:14.718577508Z 78 PC: 12bf8 | Find first file
2018-12-17T22:07:14.72245456Z 78 PC: 12bf8 | Find first file
2018-12-17T22:07:14.72602764Z 78 PC: 12bf8 | Find first file
2018-12-17T22:07:14.730241172Z 78 PC: 12bf8 | Find first file
2018-12-17T22:07:14.733982243Z 78 PC: 12bf8 | Find first file
2018-12-17T22:07:14.737679124Z 78 PC: 12bf8 | Find first file
2018-12-17T22:07:14.74190283Z 78 PC: 12bf8 | Find first file
2018-12-17T22:07:14.745430781Z 78 PC: 12bf8 | Find first file
2018-12-17T22:07:14.750899875Z 59 PC: 12c2d | Change current directory
2018-12-17T22:07:14.75566272Z 42 PC: 12c84 | Get date 0x12c84: cmp dh, 4
0x12c87: jne 0x12cbb
0x12c89: cmp dl, 0x19
0x12c8c: jne 0x12cbb
0x12c8e: mov al, 2
0x12c90: out 0x21, al
0x12c92: mov ah, 9
0x12c94: mov dx, 0x4f0
0x12c97: int 0x21
0x12c99: mov dx, 0x37c
0x12c9c: mov cx, 7
0x12c9f: mov ah, 0x4e
0x12ca1: int 0x21
0x12ca3: jb 0x12cb9
0x12ca5: call 0x12cc0
0x12ca8: jb 0x12cb5
0x12caa: xchg ax, bx
0x12cab: xor cx, cx
0x12cad: mov ah, 0x40
0x12caf: int 0x21
2018-12-17T22:07:14.758504348Z 26 PC: 12c4b | Set disk transfer address
2018-12-17T22:07:14.759824941Z 59 PC: 12c56 | Change current directory

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":1923,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T11:44:31.552703654Z 71 PC: 12a9a | Get current directory
2018-12-25T11:44:31.556481576Z 78 PC: 12aa3 | Find first file
2018-12-25T11:44:31.562886832Z 67 PC: 12abd | Get or set file attributes
2018-12-25T11:44:31.573397163Z 61 PC: 12acf | Open file (Filename = 'W’')
2018-12-25T11:44:31.585061901Z 67 PC: 12bd1 | Get or set file attributes
2018-12-25T11:44:31.590912393Z 79 PC: 12aa3 | Find next file (See above)
2018-12-25T11:44:31.593552525Z 67 PC: 12abd | Get or set file attributes (See above)
2018-12-25T11:44:31.59934412Z 61 PC: 12acf | Open file (See above)
2018-12-25T11:44:31.618960168Z 67 PC: 12bd1 | Get or set file attributes (See above)
2018-12-25T11:44:31.624809993Z 79 PC: 12aa3 | Find next file (See above)
2018-12-25T11:44:31.62758297Z 67 PC: 12abd | Get or set file attributes (See above)
2018-12-25T11:44:31.643077007Z 61 PC: 12acf | Open file (See above)
2018-12-25T11:44:31.650757819Z 67 PC: 12bd1 | Get or set file attributes (See above)
2018-12-25T11:44:31.656490738Z 79 PC: 12aa3 | Find next file (See above)
2018-12-25T11:44:31.659825825Z 67 PC: 12abd | Get or set file attributes (See above)
2018-12-25T11:44:31.665510758Z 61 PC: 12acf | Open file (See above)
2018-12-25T11:44:31.671727027Z 67 PC: 12bd1 | Get or set file attributes (See above)
2018-12-25T11:44:31.678111676Z 79 PC: 12aa3 | Find next file (See above)
2018-12-25T11:44:31.68081898Z 67 PC: 12abd | Get or set file attributes (See above)
2018-12-25T11:44:31.686528331Z 61 PC: 12acf | Open file (See above)
2018-12-25T11:44:31.693499733Z 67 PC: 12bd1 | Get or set file attributes (See above)
2018-12-25T11:44:31.699216231Z 79 PC: 12aa3 | Find next file (See above)
2018-12-25T11:44:31.701785287Z 67 PC: 12abd | Get or set file attributes (See above)
2018-12-25T11:44:31.708908006Z 61 PC: 12acf | Open file (See above)
2018-12-25T11:44:31.715864703Z 67 PC: 12bd1 | Get or set file attributes (See above)
2018-12-25T11:44:31.721751924Z 79 PC: 12aa3 | Find next file (See above)
2018-12-25T11:44:31.728198093Z 67 PC: 12abd | Get or set file attributes (See above)
2018-12-25T11:44:31.734135243Z 61 PC: 12acf | Open file (See above)
2018-12-25T11:44:31.740373921Z 67 PC: 12bd1 | Get or set file attributes (See above)
2018-12-25T11:44:31.746721765Z 79 PC: 12aa3 | Find next file (See above)
2018-12-25T11:44:31.749381025Z 67 PC: 12abd | Get or set file attributes (See above)
2018-12-25T11:44:31.755923105Z 61 PC: 12acf | Open file (See above)
2018-12-25T11:44:31.76249347Z 67 PC: 12bd1 | Get or set file attributes (See above)
2018-12-25T11:44:31.768367694Z 79 PC: 12aa3 | Find next file (See above)
2018-12-25T11:44:31.770974205Z 78 PC: 12bf8 | Find first file
2018-12-25T11:44:31.77866384Z 78 PC: 12bf8 | Find first file (See above)
2018-12-25T11:44:31.78502666Z 78 PC: 12bf8 | Find first file (See above)
2018-12-25T11:44:31.790987567Z 78 PC: 12bf8 | Find first file (See above)
2018-12-25T11:44:31.797736111Z 78 PC: 12bf8 | Find first file (See above)
2018-12-25T11:44:31.803807823Z 78 PC: 12bf8 | Find first file (See above)
2018-12-25T11:44:31.810195591Z 78 PC: 12bf8 | Find first file (See above)
2018-12-25T11:44:31.816171993Z 78 PC: 12bf8 | Find first file (See above)
2018-12-25T11:44:31.822490014Z 78 PC: 12bf8 | Find first file (See above)
2018-12-25T11:44:31.828662524Z 59 PC: 12c2d | Change current directory
2018-12-25T11:44:31.833113019Z 42 PC: 12c84 | Get date 0x12c84: cmp dh, 4
0x12c87: jne 0x12cbb
0x12c89: cmp dl, 0x19
0x12c8c: jne 0x12cbb
0x12c8e: mov al, 2
0x12c90: out 0x21, al
0x12c92: mov ah, 9
0x12c94: mov dx, 0x4f0
0x12c97: int 0x21
0x12c99: mov dx, 0x37c
0x12c9c: mov cx, 7
0x12c9f: mov ah, 0x4e
0x12ca1: int 0x21
0x12ca3: jb 0x12cb9
0x12ca5: call 0x12cc0
0x12ca8: jb 0x12cb5
0x12caa: xchg ax, bx
0x12cab: xor cx, cx
0x12cad: mov ah, 0x40
0x12caf: int 0x21
2018-12-25T11:44:31.837664467Z 26 PC: 12c4b | Set disk transfer address
2018-12-25T11:44:31.83886637Z 59 PC: 12c56 | Change current directory

{"DateBased":true,"Day":1,"Month":4,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":1923,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T11:44:32.997986059Z 71 PC: 12a9a | Get current directory
2018-12-25T11:44:33.001583919Z 78 PC: 12aa3 | Find first file
2018-12-25T11:44:33.009026282Z 67 PC: 12abd | Get or set file attributes
2018-12-25T11:44:33.015498158Z 61 PC: 12acf | Open file (Filename = 'W’')
2018-12-25T11:44:33.024744463Z 67 PC: 12bd1 | Get or set file attributes
2018-12-25T11:44:33.038837583Z 79 PC: 12aa3 | Find next file (See above)
2018-12-25T11:44:33.04196932Z 67 PC: 12abd | Get or set file attributes (See above)
2018-12-25T11:44:33.048478364Z 61 PC: 12acf | Open file (See above)
2018-12-25T11:44:33.060621237Z 67 PC: 12bd1 | Get or set file attributes (See above)
2018-12-25T11:44:33.067276553Z 79 PC: 12aa3 | Find next file (See above)
2018-12-25T11:44:33.070564105Z 67 PC: 12abd | Get or set file attributes (See above)
2018-12-25T11:44:33.078592071Z 61 PC: 12acf | Open file (See above)
2018-12-25T11:44:33.091089016Z 67 PC: 12bd1 | Get or set file attributes (See above)
2018-12-25T11:44:33.102993963Z 79 PC: 12aa3 | Find next file (See above)
2018-12-25T11:44:33.106982386Z 67 PC: 12abd | Get or set file attributes (See above)
2018-12-25T11:44:33.114118382Z 61 PC: 12acf | Open file (See above)
2018-12-25T11:44:33.12155939Z 67 PC: 12bd1 | Get or set file attributes (See above)
2018-12-25T11:44:33.12867975Z 79 PC: 12aa3 | Find next file (See above)
2018-12-25T11:44:33.133037585Z 67 PC: 12abd | Get or set file attributes (See above)
2018-12-25T11:44:33.13993529Z 61 PC: 12acf | Open file (See above)
2018-12-25T11:44:33.147881103Z 67 PC: 12bd1 | Get or set file attributes (See above)
2018-12-25T11:44:33.15639598Z 79 PC: 12aa3 | Find next file (See above)
2018-12-25T11:44:33.1597501Z 67 PC: 12abd | Get or set file attributes (See above)
2018-12-25T11:44:33.166716334Z 61 PC: 12acf | Open file (See above)
2018-12-25T11:44:33.175073468Z 67 PC: 12bd1 | Get or set file attributes (See above)
2018-12-25T11:44:33.181892622Z 79 PC: 12aa3 | Find next file (See above)
2018-12-25T11:44:33.184864234Z 67 PC: 12abd | Get or set file attributes (See above)
2018-12-25T11:44:33.192845114Z 61 PC: 12acf | Open file (See above)
2018-12-25T11:44:33.199821681Z 67 PC: 12bd1 | Get or set file attributes (See above)
2018-12-25T11:44:33.206601151Z 79 PC: 12aa3 | Find next file (See above)
2018-12-25T11:44:33.209726942Z 67 PC: 12abd | Get or set file attributes (See above)
2018-12-25T11:44:33.216719306Z 61 PC: 12acf | Open file (See above)
2018-12-25T11:44:33.223493427Z 67 PC: 12bd1 | Get or set file attributes (See above)
2018-12-25T11:44:33.229830903Z 79 PC: 12aa3 | Find next file (See above)
2018-12-25T11:44:33.233061873Z 78 PC: 12bf8 | Find first file
2018-12-25T11:44:33.240707675Z 78 PC: 12bf8 | Find first file (See above)
2018-12-25T11:44:33.247504097Z 78 PC: 12bf8 | Find first file (See above)
2018-12-25T11:44:33.255545797Z 78 PC: 12bf8 | Find first file (See above)
2018-12-25T11:44:33.262071779Z 78 PC: 12bf8 | Find first file (See above)
2018-12-25T11:44:33.268789439Z 78 PC: 12bf8 | Find first file (See above)
2018-12-25T11:44:33.276271065Z 78 PC: 12bf8 | Find first file (See above)
2018-12-25T11:44:33.283150764Z 78 PC: 12bf8 | Find first file (See above)
2018-12-25T11:44:33.289991316Z 78 PC: 12bf8 | Find first file (See above)
2018-12-25T11:44:33.297419845Z 59 PC: 12c2d | Change current directory
2018-12-25T11:44:33.302915669Z 42 PC: 12c84 | Get date 0x12c84: cmp dh, 4
0x12c87: jne 0x12cbb
0x12c89: cmp dl, 0x19
0x12c8c: jne 0x12cbb
0x12c8e: mov al, 2
0x12c90: out 0x21, al
0x12c92: mov ah, 9
0x12c94: mov dx, 0x4f0
0x12c97: int 0x21
0x12c99: mov dx, 0x37c
0x12c9c: mov cx, 7
0x12c9f: mov ah, 0x4e
0x12ca1: int 0x21
0x12ca3: jb 0x12cb9
0x12ca5: call 0x12cc0
0x12ca8: jb 0x12cb5
0x12caa: xchg ax, bx
0x12cab: xor cx, cx
0x12cad: mov ah, 0x40
0x12caf: int 0x21
2018-12-25T11:44:33.305458775Z 26 PC: 12c4b | Set disk transfer address
2018-12-25T11:44:33.307464134Z 59 PC: 12c56 | Change current directory

{"DateBased":true,"Day":25,"Month":4,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":1923,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T11:44:33.187406211Z 71 PC: 12a9a | Get current directory
2018-12-25T11:44:33.191217769Z 78 PC: 12aa3 | Find first file
2018-12-25T11:44:33.196879323Z 67 PC: 12abd | Get or set file attributes
2018-12-25T11:44:33.207011494Z 61 PC: 12acf | Open file (Filename = 'W’')
2018-12-25T11:44:33.218928249Z 67 PC: 12bd1 | Get or set file attributes
2018-12-25T11:44:33.224550084Z 79 PC: 12aa3 | Find next file (See above)
2018-12-25T11:44:33.227179122Z 67 PC: 12abd | Get or set file attributes (See above)
2018-12-25T11:44:33.234094998Z 61 PC: 12acf | Open file (See above)
2018-12-25T11:44:33.240212152Z 67 PC: 12bd1 | Get or set file attributes (See above)
2018-12-25T11:44:33.245781906Z 79 PC: 12aa3 | Find next file (See above)
2018-12-25T11:44:33.24812745Z 67 PC: 12abd | Get or set file attributes (See above)
2018-12-25T11:44:33.258651495Z 61 PC: 12acf | Open file (See above)
2018-12-25T11:44:33.269428731Z 67 PC: 12bd1 | Get or set file attributes (See above)
2018-12-25T11:44:33.280141725Z 79 PC: 12aa3 | Find next file (See above)
2018-12-25T11:44:33.2830769Z 67 PC: 12abd | Get or set file attributes (See above)
2018-12-25T11:44:33.288807271Z 61 PC: 12acf | Open file (See above)
2018-12-25T11:44:33.299037493Z 67 PC: 12bd1 | Get or set file attributes (See above)
2018-12-25T11:44:33.306145933Z 79 PC: 12aa3 | Find next file (See above)
2018-12-25T11:44:33.308783641Z 67 PC: 12abd | Get or set file attributes (See above)
2018-12-25T11:44:33.314377351Z 61 PC: 12acf | Open file (See above)
2018-12-25T11:44:33.325521798Z 67 PC: 12bd1 | Get or set file attributes (See above)
2018-12-25T11:44:33.335457098Z 79 PC: 12aa3 | Find next file (See above)
2018-12-25T11:44:33.338481833Z 67 PC: 12abd | Get or set file attributes (See above)
2018-12-25T11:44:33.344636492Z 61 PC: 12acf | Open file (See above)
2018-12-25T11:44:33.350409766Z 67 PC: 12bd1 | Get or set file attributes (See above)
2018-12-25T11:44:33.355731393Z 79 PC: 12aa3 | Find next file (See above)
2018-12-25T11:44:33.358974164Z 67 PC: 12abd | Get or set file attributes (See above)
2018-12-25T11:44:33.364353482Z 61 PC: 12acf | Open file (See above)
2018-12-25T11:44:33.370164113Z 67 PC: 12bd1 | Get or set file attributes (See above)
2018-12-25T11:44:33.376457582Z 79 PC: 12aa3 | Find next file (See above)
2018-12-25T11:44:33.379192734Z 67 PC: 12abd | Get or set file attributes (See above)
2018-12-25T11:44:33.384947813Z 61 PC: 12acf | Open file (See above)
2018-12-25T11:44:33.391690838Z 67 PC: 12bd1 | Get or set file attributes (See above)
2018-12-25T11:44:33.39720921Z 79 PC: 12aa3 | Find next file (See above)
2018-12-25T11:44:33.399373224Z 78 PC: 12bf8 | Find first file
2018-12-25T11:44:33.406494965Z 78 PC: 12bf8 | Find first file (See above)
2018-12-25T11:44:33.414816526Z 78 PC: 12bf8 | Find first file (See above)
2018-12-25T11:44:33.421489375Z 78 PC: 12bf8 | Find first file (See above)
2018-12-25T11:44:33.427374985Z 78 PC: 12bf8 | Find first file (See above)
2018-12-25T11:44:33.434207294Z 78 PC: 12bf8 | Find first file (See above)
2018-12-25T11:44:33.440018557Z 78 PC: 12bf8 | Find first file (See above)
2018-12-25T11:44:33.445874836Z 78 PC: 12bf8 | Find first file (See above)
2018-12-25T11:44:33.452207981Z 78 PC: 12bf8 | Find first file (See above)
2018-12-25T11:44:33.457861684Z 59 PC: 12c2d | Change current directory
2018-12-25T11:44:33.461838854Z 42 PC: 12c84 | Get date 0x12c84: cmp dh, 4
0x12c87: jne 0x12cbb
0x12c89: cmp dl, 0x19
0x12c8c: jne 0x12cbb
0x12c8e: mov al, 2
0x12c90: out 0x21, al
0x12c92: mov ah, 9
0x12c94: mov dx, 0x4f0
0x12c97: int 0x21
0x12c99: mov dx, 0x37c
0x12c9c: mov cx, 7
0x12c9f: mov ah, 0x4e
0x12ca1: int 0x21
0x12ca3: jb 0x12cb9
0x12ca5: call 0x12cc0
0x12ca8: jb 0x12cb5
0x12caa: xchg ax, bx
0x12cab: xor cx, cx
0x12cad: mov ah, 0x40
0x12caf: int 0x21
2018-12-25T11:44:33.46504377Z 9 PC: 12c99 | Display string (Could not find end pointer)
2018-12-25T11:44:33.488010198Z 78 PC: 12ca3 | Find first file
2018-12-25T11:44:33.494493346Z 67 PC: 12ccc | Get or set file attributes
2018-12-25T11:44:33.500721011Z 61 PC: 12cd2 | Open file (Filename = 'W’')
2018-12-25T11:44:33.507408229Z 79 PC: 12ca3 | Find next file (See above)
2018-12-25T11:44:33.510182689Z 67 PC: 12ccc | Get or set file attributes (See above)
2018-12-25T11:44:33.517223593Z 61 PC: 12cd2 | Open file (See above)
2018-12-25T11:44:33.523184162Z 79 PC: 12ca3 | Find next file (See above)
2018-12-25T11:44:33.525754894Z 67 PC: 12ccc | Get or set file attributes (See above)
2018-12-25T11:44:33.532502235Z 61 PC: 12cd2 | Open file (See above)
2018-12-25T11:44:33.538895311Z 79 PC: 12ca3 | Find next file (See above)
2018-12-25T11:44:33.541408144Z 67 PC: 12ccc | Get or set file attributes (See above)
2018-12-25T11:44:33.547682204Z 61 PC: 12cd2 | Open file (See above)
2018-12-25T11:44:33.55376036Z 79 PC: 12ca3 | Find next file (See above)
2018-12-25T11:44:33.55649762Z 67 PC: 12ccc | Get or set file attributes (See above)
2018-12-25T11:44:33.562762501Z 61 PC: 12cd2 | Open file (See above)
2018-12-25T11:44:33.569294992Z 79 PC: 12ca3 | Find next file (See above)
2018-12-25T11:44:33.571839619Z 67 PC: 12ccc | Get or set file attributes (See above)
2018-12-25T11:44:33.577595251Z 61 PC: 12cd2 | Open file (See above)
2018-12-25T11:44:33.583558935Z 79 PC: 12ca3 | Find next file (See above)
2018-12-25T11:44:33.586084524Z 67 PC: 12ccc | Get or set file attributes (See above)
2018-12-25T11:44:33.592663954Z 61 PC: 12cd2 | Open file (See above)
2018-12-25T11:44:33.598587914Z 79 PC: 12ca3 | Find next file (See above)
2018-12-25T11:44:33.600908979Z 67 PC: 12ccc | Get or set file attributes (See above)
2018-12-25T11:44:33.606865031Z 61 PC: 12cd2 | Open file (See above)
2018-12-25T11:44:33.611116893Z 79 PC: 12ca3 | Find next file (See above)
2018-12-25T11:44:33.613537696Z 67 PC: 12ccc | Get or set file attributes (See above)
2018-12-25T11:44:33.619585646Z 61 PC: 12cd2 | Open file (See above)
2018-12-25T11:44:33.625745114Z 79 PC: 12ca3 | Find next file (See above)