Sample viewer

vx.netlux.org/Virus.DOS.Rager.1383

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:07:25.604667526Z	153	PC: 1c8bc \| UNKNOWN!
2018-12-17T22:07:25.60963677Z	74	PC: 1c8f6 \| Reallocate memory
2018-12-17T22:07:25.611328245Z	72	PC: 1c8ff \| Allocate memory
2018-12-17T22:07:25.628483499Z	74	PC: 12add \| Reallocate memory
2018-12-17T22:07:25.631370928Z	48	PC: 12af9 \| Get DOS version
2018-12-17T22:07:25.632913154Z	55	PC: 12b08 \| Get or set switch character
2018-12-17T22:07:25.634442574Z	48	PC: 12b21 \| Get DOS version
2018-12-17T22:07:25.639154186Z	56	PC: 1f6ab \| Get or set country info
2018-12-17T22:07:25.640672253Z	102	PC: 1f6b7 \| Get or set code page
2018-12-17T22:07:25.643062149Z	2	PC: 1f0d7 \| Character output (Char = '41')
2018-12-17T22:07:25.64628438Z	2	PC: 1f0d7 \| Character output (Char = '44')
2018-12-17T22:07:25.648765208Z	2	PC: 1f0d7 \| Character output (Char = '2d')
2018-12-17T22:07:25.651229763Z	2	PC: 1f0d7 \| Character output (Char = '41')
2018-12-17T22:07:25.6546224Z	2	PC: 1f0d7 \| Character output (Char = '63')
2018-12-17T22:07:25.657130767Z	2	PC: 1f0d7 \| Character output (Char = '65')
2018-12-17T22:07:25.659581517Z	2	PC: 1f0d7 \| Character output (Char = '6c')
2018-12-17T22:07:25.671548934Z	2	PC: 1f0d7 \| Character output (Char = '65')
2018-12-17T22:07:25.675030775Z	2	PC: 1f0d7 \| Character output (Char = '72')
2018-12-17T22:07:25.677588269Z	2	PC: 1f0d7 \| Character output (Char = '61')
2018-12-17T22:07:25.680470965Z	2	PC: 1f0d7 \| Character output (Char = '72')
2018-12-17T22:07:25.683795886Z	2	PC: 1f0d7 \| Character output (Char = '20')
2018-12-17T22:07:25.686132517Z	2	PC: 1f0d7 \| Character output (Char = '44')
2018-12-17T22:07:25.688344015Z	2	PC: 1f0d7 \| Character output (Char = '69')
2018-12-17T22:07:25.690946645Z	2	PC: 1f0d7 \| Character output (Char = '73')
2018-12-17T22:07:25.693141055Z	2	PC: 1f0d7 \| Character output (Char = '63')
2018-12-17T22:07:25.695328588Z	2	PC: 1f0d7 \| Character output (Char = '6f')
2018-12-17T22:07:25.69786913Z	2	PC: 1f0d7 \| Character output (Char = '2c')
2018-12-17T22:07:25.700041584Z	2	PC: 1f0d7 \| Character output (Char = '20')
2018-12-17T22:07:25.702229397Z	2	PC: 1f0d7 \| Character output (Char = '45')
2018-12-17T22:07:25.705809968Z	2	PC: 1f0d7 \| Character output (Char = '64')
2018-12-17T22:07:25.723448565Z	2	PC: 1f0d7 \| Character output (Char = '69')
2018-12-17T22:07:25.726032004Z	2	PC: 1f0d7 \| Character output (Char = '63')
2018-12-17T22:07:25.729070494Z	2	PC: 1f0d7 \| Character output (Char = '69')
2018-12-17T22:07:25.732804296Z	2	PC: 1f0d7 \| Character output (Char = 'a2')
2018-12-17T22:07:25.735312725Z	2	PC: 1f0d7 \| Character output (Char = '6e')
2018-12-17T22:07:25.750950476Z	2	PC: 1f0d7 \| Character output (Char = '20')
2018-12-17T22:07:25.753375511Z	2	PC: 1f0d7 \| Character output (Char = '41')
2018-12-17T22:07:25.755484148Z	2	PC: 1f0d7 \| Character output (Char = '76')
2018-12-17T22:07:25.758707773Z	2	PC: 1f0d7 \| Character output (Char = '61')
2018-12-17T22:07:25.760886256Z	2	PC: 1f0d7 \| Character output (Char = '6e')
2018-12-17T22:07:25.763041515Z	2	PC: 1f0d7 \| Character output (Char = '7a')
2018-12-17T22:07:25.765746653Z	2	PC: 1f0d7 \| Character output (Char = '61')
2018-12-17T22:07:25.768370419Z	2	PC: 1f0d7 \| Character output (Char = '64')
2018-12-17T22:07:25.770902582Z	2	PC: 1f0d7 \| Character output (Char = '61')
2018-12-17T22:07:25.774042831Z	2	PC: 1f0d7 \| Character output (Char = '20')
2018-12-17T22:07:25.776487825Z	2	PC: 1f0d7 \| Character output (Char = '34')
2018-12-17T22:07:25.778911711Z	2	PC: 1f0d7 \| Character output (Char = '2e')
2018-12-17T22:07:25.781852651Z	2	PC: 1f0d7 \| Character output (Char = '35')
2018-12-17T22:07:25.784061919Z	2	PC: 1f0d7 \| Character output (Char = '30')
2018-12-17T22:07:25.78616558Z	2	PC: 1f0d7 \| Character output (Char = '2c')
2018-12-17T22:07:25.788832975Z	2	PC: 1f0d7 \| Character output (Char = '20')
2018-12-17T22:07:25.790954325Z	2	PC: 1f0d7 \| Character output (Char = '28')
2018-12-17T22:07:25.793031398Z	2	PC: 1f0d7 \| Character output (Char = '43')
2018-12-17T22:07:25.797807873Z	2	PC: 1f0d7 \| Character output (Char = '29')
2018-12-17T22:07:25.800053459Z	2	PC: 1f0d7 \| Character output (Char = '20')
2018-12-17T22:07:25.803809101Z	2	PC: 1f0d7 \| Character output (Char = '43')
2018-12-17T22:07:25.806753636Z	2	PC: 1f0d7 \| Character output (Char = '6f')
2018-12-17T22:07:25.809088449Z	2	PC: 1f0d7 \| Character output (Char = '70')
2018-12-17T22:07:25.8114459Z	2	PC: 1f0d7 \| Character output (Char = '72')
2018-12-17T22:07:25.814119606Z	2	PC: 1f0d7 \| Character output (Char = '20')
2018-12-17T22:07:25.816349463Z	2	PC: 1f0d7 \| Character output (Char = '31')
2018-12-17T22:07:25.818596532Z	2	PC: 1f0d7 \| Character output (Char = '39')
2018-12-17T22:07:25.82181699Z	2	PC: 1f0d7 \| Character output (Char = '38')
2018-12-17T22:07:25.823851698Z	2	PC: 1f0d7 \| Character output (Char = '37')
2018-12-17T22:07:25.826102075Z	2	PC: 1f0d7 \| Character output (Char = '2d')
2018-12-17T22:07:25.829023759Z	2	PC: 1f0d7 \| Character output (Char = '38')
2018-12-17T22:07:25.83279582Z	2	PC: 1f0d7 \| Character output (Char = '38')
2018-12-17T22:07:25.835486887Z	2	PC: 1f0d7 \| Character output (Char = '2c')
2018-12-17T22:07:25.838772277Z	2	PC: 1f0d7 \| Character output (Char = '20')
2018-12-17T22:07:25.841359131Z	2	PC: 1f0d7 \| Character output (Char = '50')
2018-12-17T22:07:25.843875718Z	2	PC: 1f0d7 \| Character output (Char = '65')
2018-12-17T22:07:25.846655126Z	2	PC: 1f0d7 \| Character output (Char = '74')
2018-12-17T22:07:25.849509732Z	2	PC: 1f0d7 \| Character output (Char = '65')
2018-12-17T22:07:25.852434706Z	2	PC: 1f0d7 \| Character output (Char = '72')
2018-12-17T22:07:25.855436165Z	2	PC: 1f0d7 \| Character output (Char = '20')
2018-12-17T22:07:25.857907995Z	2	PC: 1f0d7 \| Character output (Char = '4e')
2018-12-17T22:07:25.8603626Z	2	PC: 1f0d7 \| Character output (Char = '6f')
2018-12-17T22:07:25.863337985Z	2	PC: 1f0d7 \| Character output (Char = '72')
2018-12-17T22:07:25.865785215Z	2	PC: 1f0d7 \| Character output (Char = '74')
2018-12-17T22:07:25.868220079Z	2	PC: 1f0d7 \| Character output (Char = '6f')
2018-12-17T22:07:25.871527784Z	2	PC: 1f0d7 \| Character output (Char = '6e')
2018-12-17T22:07:25.874157634Z	2	PC: 1f0d0 \| Character output (Char = '0d')
2018-12-17T22:07:25.876386145Z	2	PC: 1f0d7 \| Character output (Char = '0a')
2018-12-17T22:07:25.882126184Z	2	PC: 1f0d0 \| Character output (Char = '0d')
2018-12-17T22:07:25.88442239Z	2	PC: 1f0d7 \| Character output (Char = '0a')
2018-12-17T22:07:25.89766355Z	13	PC: 1b649 \| Disk reset
2018-12-17T22:07:25.899678725Z	25	PC: 1b61a \| Get default drive
2018-12-17T22:07:25.900708586Z	37	PC: 1b4e9 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:07:25.901828351Z	53	PC: 1b45f \| Get interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:07:25.9035087Z	53	PC: 1b46c \| Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:07:25.90452012Z	37	PC: 1b47e \| Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:07:25.905440393Z	37	PC: 1b488 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:07:25.911651099Z	25	PC: 1b61a \| Get default drive
2018-12-17T22:07:25.912763598Z	14	PC: 1b657 \| Set default drive (Drive = 'A')
2018-12-17T22:07:25.91399873Z	14	PC: 1b657 \| Set default drive (Drive = 'A')
2018-12-17T22:07:25.916431598Z	25	PC: 1b61a \| Get default drive
2018-12-17T22:07:25.917452404Z	41	PC: 1b63e \| Parse filename
2018-12-17T22:07:25.918740551Z	96	PC: 1e852 \| Qualify filename
2018-12-17T22:07:25.921731938Z	68	PC: 1b6a6 \| I/O control for devices (Set for = 'W�')
2018-12-17T22:07:25.92308451Z	14	PC: 1b657 \| Set default drive (Drive = 'C')
2018-12-17T22:07:25.924138203Z	25	PC: 1b61a \| Get default drive
2018-12-17T22:07:25.926260859Z	41	PC: 1b63e \| Parse filename
2018-12-17T22:07:25.927594995Z	96	PC: 1e852 \| Qualify filename
2018-12-17T22:07:25.929497521Z	68	PC: 1b6a6 \| I/O control for devices (Set for = 'W�')
2018-12-17T22:07:25.931338452Z	14	PC: 1b657 \| Set default drive (Drive = 'D')
2018-12-17T22:07:25.932361761Z	25	PC: 1b61a \| Get default drive
2018-12-17T22:07:25.93332501Z	41	PC: 1b63e \| Parse filename
2018-12-17T22:07:25.935894003Z	14	PC: 1b657 \| Set default drive (Drive = 'E')
2018-12-17T22:07:25.937081039Z	25	PC: 1b61a \| Get default drive
2018-12-17T22:07:25.938079145Z	41	PC: 1b63e \| Parse filename
2018-12-17T22:07:25.939991095Z	14	PC: 1b657 \| Set default drive (Drive = 'A')
2018-12-17T22:07:26.161254895Z	12	PC: 1e7a8 \| Flush input buffer and input
2018-12-17T22:07:26.165016966Z	7	PC: 1e789 \| Direct console input without echo