Sample viewer

vx.netlux.org/Virus.DOS.Tune13.586

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:07:46.650136753Z 26 PC: 12a47 | Set disk transfer address
2018-12-17T22:07:46.652345298Z 53 PC: 12a4f | Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:07:46.653794625Z 37 PC: 12a5b | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:07:46.655001488Z 42 PC: 12a67 | Get date 0x12a67: cmp dl, 0xd
0x12a6a: jne 0x12a6f
0x12a6c: call 0x12b50
0x12a6f: mov dx, 0x344
0x12a72: mov ah, 0x4e
0x12a74: xor cx, cx
0x12a76: int 0x21
0x12a78: jae 0x12a7d
0x12a7a: jmp 0x12b29
0x12a7d: mov ax, 0x4301
0x12a80: mov dx, 0xfa1e
0x12a83: xor cx, cx
0x12a85: int 0x21
0x12a87: jae 0x12a8c
0x12a89: jmp 0x12b29
0x12a8c: mov ax, 0x3d02
0x12a8f: mov dx, 0xfa1e
0x12a92: int 0x21
0x12a94: jb 0x12b0c
0x12a96: mov bx, ax
2018-12-17T22:07:46.658618247Z 78 PC: 12a78 | Find first file
2018-12-17T22:07:46.664483975Z 67 PC: 12a87 | Get or set file attributes
2018-12-17T22:07:46.679907897Z 61 PC: 12a94 | Open file (Filename = 'SLEEP.COM')
2018-12-17T22:07:46.687036162Z 63 PC: 12aa2 | Read file or device (Read 586 bytes on handle 5)
2018-12-17T22:07:46.693517221Z 66 PC: 12abe | Move file pointer
2018-12-17T22:07:46.6949049Z 87 PC: 12b08 | Get or set file date and time
2018-12-17T22:07:46.696383143Z 62 PC: 12b0c | Close file
2018-12-17T22:07:46.704240643Z 67 PC: 12b1b | Get or set file attributes
2018-12-17T22:07:46.713979328Z 79 PC: 12b24 | Find next file
2018-12-17T22:07:46.716919004Z 67 PC: 12a87 | Get or set file attributes
2018-12-17T22:07:46.727790205Z 61 PC: 12a94 | Open file (Filename = 'PRINT.COM')
2018-12-17T22:07:46.734598953Z 63 PC: 12aa2 | Read file or device (Read 586 bytes on handle 5)
2018-12-17T22:07:46.740938996Z 66 PC: 12abe | Move file pointer
2018-12-17T22:07:46.743011652Z 87 PC: 12b08 | Get or set file date and time
2018-12-17T22:07:46.744419345Z 62 PC: 12b0c | Close file
2018-12-17T22:07:46.75393939Z 67 PC: 12b1b | Get or set file attributes
2018-12-17T22:07:46.764060675Z 79 PC: 12b24 | Find next file
2018-12-17T22:07:46.766580836Z 67 PC: 12a87 | Get or set file attributes
2018-12-17T22:07:46.776034003Z 61 PC: 12a94 | Open file (Filename = 'HELLO.COM')
2018-12-17T22:07:46.782931609Z 63 PC: 12aa2 | Read file or device (Read 586 bytes on handle 5)
2018-12-17T22:07:46.788990413Z 66 PC: 12abe | Move file pointer
2018-12-17T22:07:46.79024Z 87 PC: 12b08 | Get or set file date and time
2018-12-17T22:07:46.792042891Z 62 PC: 12b0c | Close file
2018-12-17T22:07:46.798968637Z 67 PC: 12b1b | Get or set file attributes
2018-12-17T22:07:46.811323634Z 79 PC: 12b24 | Find next file
2018-12-17T22:07:46.814703532Z 67 PC: 12a87 | Get or set file attributes
2018-12-17T22:07:46.824109762Z 61 PC: 12a94 | Open file (Filename = 'PHANG.COM')
2018-12-17T22:07:46.830411902Z 63 PC: 12aa2 | Read file or device (Read 586 bytes on handle 5)
2018-12-17T22:07:46.836640021Z 66 PC: 12abe | Move file pointer
2018-12-17T22:07:46.838227837Z 87 PC: 12b08 | Get or set file date and time
2018-12-17T22:07:46.839536028Z 62 PC: 12b0c | Close file
2018-12-17T22:07:46.84673569Z 67 PC: 12b1b | Get or set file attributes
2018-12-17T22:07:46.856166052Z 79 PC: 12b24 | Find next file
2018-12-17T22:07:46.858573293Z 67 PC: 12a87 | Get or set file attributes
2018-12-17T22:07:46.870512013Z 61 PC: 12a94 | Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:07:46.877571895Z 63 PC: 12aa2 | Read file or device (Read 586 bytes on handle 5)
2018-12-17T22:07:46.883579481Z 66 PC: 12abe | Move file pointer
2018-12-17T22:07:46.893194949Z 87 PC: 12b08 | Get or set file date and time
2018-12-17T22:07:46.894672249Z 62 PC: 12b0c | Close file
2018-12-17T22:07:46.901399514Z 67 PC: 12b1b | Get or set file attributes
2018-12-17T22:07:46.910918916Z 79 PC: 12b24 | Find next file
2018-12-17T22:07:46.914095603Z 67 PC: 12a87 | Get or set file attributes
2018-12-17T22:07:46.923536759Z 61 PC: 12a94 | Open file (Filename = 'MANDEL.COM')
2018-12-17T22:07:46.929895122Z 63 PC: 12aa2 | Read file or device (Read 586 bytes on handle 5)
2018-12-17T22:07:46.93632359Z 66 PC: 12abe | Move file pointer
2018-12-17T22:07:46.937978534Z 87 PC: 12b08 | Get or set file date and time
2018-12-17T22:07:46.939634382Z 62 PC: 12b0c | Close file
2018-12-17T22:07:46.949582921Z 67 PC: 12b1b | Get or set file attributes
2018-12-17T22:07:46.959074842Z 79 PC: 12b24 | Find next file
2018-12-17T22:07:46.96206791Z 67 PC: 12a87 | Get or set file attributes
2018-12-17T22:07:46.971734711Z 61 PC: 12a94 | Open file (Filename = 'PAH.COM')
2018-12-17T22:07:46.978328155Z 63 PC: 12aa2 | Read file or device (Read 586 bytes on handle 5)
2018-12-17T22:07:46.984495212Z 66 PC: 12abe | Move file pointer
2018-12-17T22:07:46.986274159Z 87 PC: 12b08 | Get or set file date and time
2018-12-17T22:07:46.987970439Z 62 PC: 12b0c | Close file
2018-12-17T22:07:46.995227814Z 67 PC: 12b1b | Get or set file attributes
2018-12-17T22:07:47.007853756Z 79 PC: 12b24 | Find next file
2018-12-17T22:07:47.009607414Z 37 PC: 12b30 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:07:47.010483672Z 26 PC: 12b39 | Set disk transfer address

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":1986,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T11:44:40.18624729Z 26 PC: 12a47 | Set disk transfer address
2018-12-25T11:44:40.188580183Z 53 PC: 12a4f | Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-25T11:44:40.189773272Z 37 PC: 12a5b | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-25T11:44:40.191100475Z 42 PC: 12a67 | Get date 0x12a67: cmp dl, 0xd
0x12a6a: jne 0x12a6f
0x12a6c: call 0x12b50
0x12a6f: mov dx, 0x344
0x12a72: mov ah, 0x4e
0x12a74: xor cx, cx
0x12a76: int 0x21
0x12a78: jae 0x12a7d
0x12a7a: jmp 0x12b29
0x12a7d: mov ax, 0x4301
0x12a80: mov dx, 0xfa1e
0x12a83: xor cx, cx
0x12a85: int 0x21
0x12a87: jae 0x12a8c
0x12a89: jmp 0x12b29
0x12a8c: mov ax, 0x3d02
0x12a8f: mov dx, 0xfa1e
0x12a92: int 0x21
0x12a94: jb 0x12b0c
0x12a96: mov bx, ax
2018-12-25T11:44:40.193591556Z 78 PC: 12a78 | Find first file
2018-12-25T11:44:40.200418413Z 67 PC: 12a87 | Get or set file attributes
2018-12-25T11:44:40.21574402Z 61 PC: 12a94 | Open file (Filename = 'SLEEP.COM')
2018-12-25T11:44:40.225811064Z 63 PC: 12aa2 | Read file or device (Read 586 bytes on handle 5)
2018-12-25T11:44:40.235179081Z 66 PC: 12abe | Move file pointer
2018-12-25T11:44:40.238578842Z 87 PC: 12b08 | Get or set file date and time
2018-12-25T11:44:40.242184407Z 62 PC: 12b0c | Close file
2018-12-25T11:44:40.262840488Z 67 PC: 12b1b | Get or set file attributes
2018-12-25T11:44:40.272783979Z 79 PC: 12b24 | Find next file
2018-12-25T11:44:40.275468007Z 67 PC: 12a87 | Get or set file attributes (See above)
2018-12-25T11:44:40.285741792Z 61 PC: 12a94 | Open file (See above)
2018-12-25T11:44:40.292759024Z 63 PC: 12aa2 | Read file or device (See above)
2018-12-25T11:44:40.298839883Z 66 PC: 12abe | Move file pointer (See above)
2018-12-25T11:44:40.317105069Z 87 PC: 12b08 | Get or set file date and time (See above)
2018-12-25T11:44:40.318718821Z 62 PC: 12b0c | Close file (See above)
2018-12-25T11:44:40.325599267Z 67 PC: 12b1b | Get or set file attributes (See above)
2018-12-25T11:44:40.349313457Z 79 PC: 12b24 | Find next file (See above)
2018-12-25T11:44:40.352734423Z 67 PC: 12a87 | Get or set file attributes (See above)
2018-12-25T11:44:40.377050221Z 61 PC: 12a94 | Open file (See above)
2018-12-25T11:44:40.385089544Z 63 PC: 12aa2 | Read file or device (See above)
2018-12-25T11:44:40.402869376Z 66 PC: 12abe | Move file pointer (See above)
2018-12-25T11:44:40.404331905Z 87 PC: 12b08 | Get or set file date and time (See above)
2018-12-25T11:44:40.406086743Z 62 PC: 12b0c | Close file (See above)
2018-12-25T11:44:40.413813581Z 67 PC: 12b1b | Get or set file attributes (See above)
2018-12-25T11:44:40.435420616Z 79 PC: 12b24 | Find next file (See above)
2018-12-25T11:44:40.438028836Z 67 PC: 12a87 | Get or set file attributes (See above)
2018-12-25T11:44:40.454948255Z 61 PC: 12a94 | Open file (See above)
2018-12-25T11:44:40.4621289Z 63 PC: 12aa2 | Read file or device (See above)
2018-12-25T11:44:40.469806591Z 66 PC: 12abe | Move file pointer (See above)
2018-12-25T11:44:40.472361092Z 87 PC: 12b08 | Get or set file date and time (See above)
2018-12-25T11:44:40.474153296Z 62 PC: 12b0c | Close file (See above)
2018-12-25T11:44:40.482000552Z 67 PC: 12b1b | Get or set file attributes (See above)
2018-12-25T11:44:40.513858423Z 79 PC: 12b24 | Find next file (See above)
2018-12-25T11:44:40.51656391Z 67 PC: 12a87 | Get or set file attributes (See above)
2018-12-25T11:44:40.527325165Z 61 PC: 12a94 | Open file (See above)
2018-12-25T11:44:40.5351925Z 63 PC: 12aa2 | Read file or device (See above)
2018-12-25T11:44:40.541535666Z 66 PC: 12abe | Move file pointer (See above)
2018-12-25T11:44:40.543159977Z 87 PC: 12b08 | Get or set file date and time (See above)
2018-12-25T11:44:40.545428441Z 62 PC: 12b0c | Close file (See above)
2018-12-25T11:44:40.554100618Z 67 PC: 12b1b | Get or set file attributes (See above)
2018-12-25T11:44:40.565890264Z 79 PC: 12b24 | Find next file (See above)
2018-12-25T11:44:40.569749451Z 67 PC: 12a87 | Get or set file attributes (See above)
2018-12-25T11:44:40.579575878Z 61 PC: 12a94 | Open file (See above)
2018-12-25T11:44:40.586146774Z 63 PC: 12aa2 | Read file or device (See above)
2018-12-25T11:44:40.592875193Z 66 PC: 12abe | Move file pointer (See above)
2018-12-25T11:44:40.596652085Z 87 PC: 12b08 | Get or set file date and time (See above)
2018-12-25T11:44:40.599067925Z 62 PC: 12b0c | Close file (See above)
2018-12-25T11:44:40.615542841Z 67 PC: 12b1b | Get or set file attributes (See above)
2018-12-25T11:44:40.627906521Z 79 PC: 12b24 | Find next file (See above)
2018-12-25T11:44:40.630401634Z 67 PC: 12a87 | Get or set file attributes (See above)
2018-12-25T11:44:40.640651474Z 61 PC: 12a94 | Open file (See above)
2018-12-25T11:44:40.647357614Z 63 PC: 12aa2 | Read file or device (See above)
2018-12-25T11:44:40.653898561Z 66 PC: 12abe | Move file pointer (See above)
2018-12-25T11:44:40.655734769Z 87 PC: 12b08 | Get or set file date and time (See above)
2018-12-25T11:44:40.65769948Z 62 PC: 12b0c | Close file (See above)
2018-12-25T11:44:40.664890828Z 67 PC: 12b1b | Get or set file attributes (See above)
2018-12-25T11:44:40.674963707Z 79 PC: 12b24 | Find next file (See above)
2018-12-25T11:44:40.678483834Z 37 PC: 12b30 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-25T11:44:40.679839036Z 26 PC: 12b39 | Set disk transfer address

{"DateBased":true,"Day":13,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":1986,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T11:44:42.966371637Z 26 PC: 12a47 | Set disk transfer address
2018-12-25T11:44:42.968616676Z 53 PC: 12a4f | Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-25T11:44:42.970413773Z 37 PC: 12a5b | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-25T11:44:42.971425771Z 42 PC: 12a67 | Get date 0x12a67: cmp dl, 0xd
0x12a6a: jne 0x12a6f
0x12a6c: call 0x12b50
0x12a6f: mov dx, 0x344
0x12a72: mov ah, 0x4e
0x12a74: xor cx, cx
0x12a76: int 0x21
0x12a78: jae 0x12a7d
0x12a7a: jmp 0x12b29
0x12a7d: mov ax, 0x4301
0x12a80: mov dx, 0xfa1e
0x12a83: xor cx, cx
0x12a85: int 0x21
0x12a87: jae 0x12a8c
0x12a89: jmp 0x12b29
0x12a8c: mov ax, 0x3d02
0x12a8f: mov dx, 0xfa1e
0x12a92: int 0x21
0x12a94: jb 0x12b0c
0x12a96: mov bx, ax
2018-12-25T11:44:44.37973578Z 78 PC: 12a78 | Find first file
2018-12-25T11:44:44.38677897Z 67 PC: 12a87 | Get or set file attributes
2018-12-25T11:44:45.309790722Z 61 PC: 12a94 | Open file (Filename = 'SLEEP.COM')
2018-12-25T11:44:45.317576779Z 63 PC: 12aa2 | Read file or device (Read 586 bytes on handle 5)
2018-12-25T11:44:45.327207774Z 66 PC: 12abe | Move file pointer
2018-12-25T11:44:45.329392068Z 87 PC: 12b08 | Get or set file date and time
2018-12-25T11:44:45.331736843Z 62 PC: 12b0c | Close file
2018-12-25T11:44:45.386206523Z 67 PC: 12b1b | Get or set file attributes
2018-12-25T11:44:45.479188413Z 79 PC: 12b24 | Find next file
2018-12-25T11:44:45.482670373Z 67 PC: 12a87 | Get or set file attributes (See above)
2018-12-25T11:44:45.567886625Z 61 PC: 12a94 | Open file (See above)
2018-12-25T11:44:45.575435636Z 63 PC: 12aa2 | Read file or device (See above)
2018-12-25T11:44:45.582636549Z 66 PC: 12abe | Move file pointer (See above)
2018-12-25T11:44:45.592147482Z 87 PC: 12b08 | Get or set file date and time (See above)
2018-12-25T11:44:45.593512972Z 62 PC: 12b0c | Close file (See above)
2018-12-25T11:44:45.641495445Z 67 PC: 12b1b | Get or set file attributes (See above)
2018-12-25T11:44:45.708772472Z 79 PC: 12b24 | Find next file (See above)
2018-12-25T11:44:45.711811171Z 67 PC: 12a87 | Get or set file attributes (See above)
2018-12-25T11:44:45.760203482Z 61 PC: 12a94 | Open file (See above)
2018-12-25T11:44:45.767844725Z 63 PC: 12aa2 | Read file or device (See above)
2018-12-25T11:44:45.775217875Z 66 PC: 12abe | Move file pointer (See above)
2018-12-25T11:44:45.776754426Z 87 PC: 12b08 | Get or set file date and time (See above)
2018-12-25T11:44:45.778265536Z 62 PC: 12b0c | Close file (See above)
2018-12-25T11:44:45.86317501Z 67 PC: 12b1b | Get or set file attributes (See above)
2018-12-25T11:44:45.949903997Z 79 PC: 12b24 | Find next file (See above)
2018-12-25T11:44:45.952918236Z 67 PC: 12a87 | Get or set file attributes (See above)
2018-12-25T11:44:46.042944346Z 61 PC: 12a94 | Open file (See above)
2018-12-25T11:44:46.050289288Z 63 PC: 12aa2 | Read file or device (See above)
2018-12-25T11:44:46.057257247Z 66 PC: 12abe | Move file pointer (See above)
2018-12-25T11:44:46.059918596Z 87 PC: 12b08 | Get or set file date and time (See above)
2018-12-25T11:44:46.061718333Z 62 PC: 12b0c | Close file (See above)
2018-12-25T11:44:46.162605695Z 67 PC: 12b1b | Get or set file attributes (See above)
2018-12-25T11:44:46.278139151Z 79 PC: 12b24 | Find next file (See above)
2018-12-25T11:44:46.281277333Z 67 PC: 12a87 | Get or set file attributes (See above)
2018-12-25T11:44:46.298371152Z 61 PC: 12a94 | Open file (See above)
2018-12-25T11:44:46.306949663Z 63 PC: 12aa2 | Read file or device (See above)
2018-12-25T11:44:46.314315272Z 66 PC: 12abe | Move file pointer (See above)
2018-12-25T11:44:46.316284136Z 87 PC: 12b08 | Get or set file date and time (See above)
2018-12-25T11:44:46.319052558Z 62 PC: 12b0c | Close file (See above)
2018-12-25T11:44:46.327344362Z 67 PC: 12b1b | Get or set file attributes (See above)
2018-12-25T11:44:46.338357326Z 79 PC: 12b24 | Find next file (See above)
2018-12-25T11:44:46.341756139Z 67 PC: 12a87 | Get or set file attributes (See above)
2018-12-25T11:44:46.352898871Z 61 PC: 12a94 | Open file (See above)
2018-12-25T11:44:46.360435036Z 63 PC: 12aa2 | Read file or device (See above)
2018-12-25T11:44:46.368554182Z 66 PC: 12abe | Move file pointer (See above)
2018-12-25T11:44:46.370873816Z 87 PC: 12b08 | Get or set file date and time (See above)
2018-12-25T11:44:46.373328331Z 62 PC: 12b0c | Close file (See above)
2018-12-25T11:44:46.384107683Z 67 PC: 12b1b | Get or set file attributes (See above)
2018-12-25T11:44:46.396612623Z 79 PC: 12b24 | Find next file (See above)
2018-12-25T11:44:46.399914313Z 67 PC: 12a87 | Get or set file attributes (See above)
2018-12-25T11:44:46.421074396Z 61 PC: 12a94 | Open file (See above)
2018-12-25T11:44:46.429411293Z 63 PC: 12aa2 | Read file or device (See above)
2018-12-25T11:44:46.436598301Z 66 PC: 12abe | Move file pointer (See above)
2018-12-25T11:44:46.438021168Z 87 PC: 12b08 | Get or set file date and time (See above)
2018-12-25T11:44:46.440179981Z 62 PC: 12b0c | Close file (See above)
2018-12-25T11:44:46.445489199Z 67 PC: 12b1b | Get or set file attributes (See above)
2018-12-25T11:44:46.452259617Z 79 PC: 12b24 | Find next file (See above)
2018-12-25T11:44:46.454590536Z 37 PC: 12b30 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-25T11:44:46.455762264Z 26 PC: 12b39 | Set disk transfer address