Sample viewer

vx.netlux.org/Virus.DOS.K_Hate.1128

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T21:52:06.758443493Z	42	PC: 12abf \| Get date 0x12abf: jnp 0x12ad5 0x12ac1: dec bx 0x12ac2: mov ah, 0x30 0x12ac4: int 0x21 0x12ac6: add di, si 0x12ac8: mov ah, 0x2a 0x12aca: int 0x21 0x12acc: add bx, bx 0x12ace: sbb dx, 0xb645 0x12ad2: mov si, 0x7f39 0x12ad5: mov ah, 0x2c 0x12ad7: int 0x21 0x12ad9: and di, di 0x12adb: add bx, 0x35 0x12ade: mov ah, 0x19 0x12ae0: int 0x21 0x12ae2: xor di, bp 0x12ae4: test di, bx 0x12ae6: inc di 0x12ae7: or bx, ax
2018-12-17T21:52:06.762513204Z	44	PC: 12ad9 \| Get time 0x12ad9: and di, di 0x12adb: add bx, 0x35 0x12ade: mov ah, 0x19 0x12ae0: int 0x21 0x12ae2: xor di, bp 0x12ae4: test di, bx 0x12ae6: inc di 0x12ae7: or bx, ax 0x12ae9: dec si 0x12aea: inc si 0x12aeb: mov bx, 0x215 0x12aee: jg 0x12af4 0x12af0: and ax, sp 0x12af2: inc bp 0x12af3: cdq 0x12af4: add ax, bp 0x12af6: cmp ax, 0x6a44 0x12afa: cmp si, sp 0x12afc: xor si, 0x8dfc 0x12b00: or bp, si
2018-12-17T21:52:06.764896321Z	25	PC: 12ae2 \| Get default drive
2018-12-17T21:52:06.766767543Z	26	PC: 12b64 \| Set disk transfer address
2018-12-17T21:52:06.769479565Z	78	PC: 12b95 \| Find first file
2018-12-17T21:52:06.780388337Z	67	PC: 12bb6 \| Get or set file attributes
2018-12-17T21:52:06.796023455Z	61	PC: 12bbd \| Open file (Filename = 'SLEEP.COM')
2018-12-17T21:52:06.80275539Z	63	PC: 12bcb \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T21:52:06.809349256Z	66	PC: 12bf8 \| Move file pointer
2018-12-17T21:52:06.812125587Z	64	PC: 12c0e \| Write file or device (Write 1288 bytes on handle 5)
2018-12-17T21:52:06.820886976Z	66	PC: 12c18 \| Move file pointer
2018-12-17T21:52:06.828349789Z	64	PC: 12c2e \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T21:52:06.83402685Z	87	PC: 12c41 \| Get or set file date and time
2018-12-17T21:52:06.83521845Z	62	PC: 12c45 \| Close file
2018-12-17T21:52:06.840599305Z	67	PC: 12c52 \| Get or set file attributes
2018-12-17T21:52:06.843836498Z	79	PC: 12b95 \| Find next file
2018-12-17T21:52:06.84563549Z	67	PC: 12bb6 \| Get or set file attributes
2018-12-17T21:52:06.852061758Z	61	PC: 12bbd \| Open file (Filename = 'PRINT.COM')
2018-12-17T21:52:06.856230028Z	63	PC: 12bcb \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T21:52:06.860456701Z	66	PC: 12bf8 \| Move file pointer
2018-12-17T21:52:06.863418566Z	64	PC: 12c0e \| Write file or device (Write 1273 bytes on handle 5)
2018-12-17T21:52:06.871500466Z	66	PC: 12c18 \| Move file pointer
2018-12-17T21:52:06.872754098Z	64	PC: 12c2e \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T21:52:06.879921914Z	87	PC: 12c41 \| Get or set file date and time
2018-12-17T21:52:06.881637428Z	62	PC: 12c45 \| Close file
2018-12-17T21:52:06.905589754Z	67	PC: 12c52 \| Get or set file attributes
2018-12-17T21:52:06.909297891Z	79	PC: 12b95 \| Find next file
2018-12-17T21:52:06.911893792Z	67	PC: 12bb6 \| Get or set file attributes
2018-12-17T21:52:06.922072645Z	61	PC: 12bbd \| Open file (Filename = 'HELLO.COM')
2018-12-17T21:52:06.92898618Z	63	PC: 12bcb \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T21:52:06.935370242Z	66	PC: 12bf8 \| Move file pointer
2018-12-17T21:52:06.937754156Z	64	PC: 12c0e \| Write file or device (Write 1235 bytes on handle 5)
2018-12-17T21:52:06.946667219Z	66	PC: 12c18 \| Move file pointer
2018-12-17T21:52:06.94825413Z	64	PC: 12c2e \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T21:52:06.955516254Z	87	PC: 12c41 \| Get or set file date and time
2018-12-17T21:52:06.957540527Z	62	PC: 12c45 \| Close file
2018-12-17T21:52:06.96578526Z	67	PC: 12c52 \| Get or set file attributes
2018-12-17T21:52:06.970462307Z	79	PC: 12b95 \| Find next file
2018-12-17T21:52:06.973287171Z	67	PC: 12bb6 \| Get or set file attributes
2018-12-17T21:52:06.983166239Z	61	PC: 12bbd \| Open file (Filename = 'PHANG.COM')
2018-12-17T21:52:06.990312244Z	63	PC: 12bcb \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T21:52:06.997080487Z	66	PC: 12bf8 \| Move file pointer
2018-12-17T21:52:06.999463998Z	64	PC: 12c0e \| Write file or device (Write 1286 bytes on handle 5)
2018-12-17T21:52:07.007631407Z	66	PC: 12c18 \| Move file pointer
2018-12-17T21:52:07.009228096Z	64	PC: 12c2e \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T21:52:07.016269688Z	87	PC: 12c41 \| Get or set file date and time
2018-12-17T21:52:07.017772333Z	62	PC: 12c45 \| Close file
2018-12-17T21:52:07.025851859Z	67	PC: 12c52 \| Get or set file attributes
2018-12-17T21:52:07.03044966Z	79	PC: 12b95 \| Find next file
2018-12-17T21:52:07.032833477Z	67	PC: 12bb6 \| Get or set file attributes
2018-12-17T21:52:07.042750437Z	61	PC: 12bbd \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T21:52:07.049466909Z	63	PC: 12bcb \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T21:52:07.055453904Z	66	PC: 12bf8 \| Move file pointer
2018-12-17T21:52:07.058036315Z	64	PC: 12c0e \| Write file or device (Write 1261 bytes on handle 5)
2018-12-17T21:52:07.066390583Z	66	PC: 12c18 \| Move file pointer
2018-12-17T21:52:07.067614322Z	64	PC: 12c2e \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T21:52:07.074013402Z	87	PC: 12c41 \| Get or set file date and time
2018-12-17T21:52:07.076185352Z	62	PC: 12c45 \| Close file
2018-12-17T21:52:07.083546583Z	67	PC: 12c52 \| Get or set file attributes
2018-12-17T21:52:07.088176295Z	79	PC: 12b95 \| Find next file
2018-12-17T21:52:07.091024608Z	67	PC: 12bb6 \| Get or set file attributes
2018-12-17T21:52:07.100686872Z	61	PC: 12bbd \| Open file (Filename = 'MANDEL.COM')
2018-12-17T21:52:07.107334519Z	63	PC: 12bcb \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T21:52:07.113516308Z	66	PC: 12bf8 \| Move file pointer
2018-12-17T21:52:07.115807841Z	64	PC: 12c0e \| Write file or device (Write 1257 bytes on handle 5)
2018-12-17T21:52:07.124305997Z	66	PC: 12c18 \| Move file pointer
2018-12-17T21:52:07.125804945Z	64	PC: 12c2e \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T21:52:07.13207494Z	87	PC: 12c41 \| Get or set file date and time
2018-12-17T21:52:07.133591893Z	62	PC: 12c45 \| Close file
2018-12-17T21:52:07.141605394Z	67	PC: 12c52 \| Get or set file attributes
2018-12-17T21:52:07.146034603Z	79	PC: 12b95 \| Find next file
2018-12-17T21:52:07.148607687Z	67	PC: 12bb6 \| Get or set file attributes
2018-12-17T21:52:07.158251693Z	61	PC: 12bbd \| Open file (Filename = 'PAH.COM')
2018-12-17T21:52:07.16461147Z	63	PC: 12bcb \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T21:52:07.171075595Z	66	PC: 12bf8 \| Move file pointer
2018-12-17T21:52:07.173790462Z	64	PC: 12c0e \| Write file or device (Write 1283 bytes on handle 5)
2018-12-17T21:52:07.181795667Z	66	PC: 12c18 \| Move file pointer
2018-12-17T21:52:07.183126493Z	64	PC: 12c2e \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T21:52:07.189740388Z	87	PC: 12c41 \| Get or set file date and time
2018-12-17T21:52:07.191351937Z	62	PC: 12c45 \| Close file
2018-12-17T21:52:07.199100705Z	67	PC: 12c52 \| Get or set file attributes
2018-12-17T21:52:07.204664975Z	79	PC: 12b95 \| Find next file
2018-12-17T21:52:07.207482076Z	67	PC: 12bb6 \| Get or set file attributes
2018-12-17T21:52:07.217502362Z	61	PC: 12bbd \| Open file (Filename = 'TEST.COM')
2018-12-17T21:52:07.224067117Z	63	PC: 12bcb \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T21:52:07.226568833Z	62	PC: 12c45 \| Close file
2018-12-17T21:52:07.228343038Z	67	PC: 12c52 \| Get or set file attributes
2018-12-17T21:52:07.23301398Z	79	PC: 12b95 \| Find next file
2018-12-17T21:52:07.23589754Z	26	PC: 12b7a \| Set disk transfer address
2018-12-17T21:52:07.237282936Z	76	PC: 12ab6 \| Terminate with return code (Return code = '0')