Sample viewer

vx.netlux.org/Virus.DOS.FullDead.507

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:08:32.735084624Z	26	PC: 13e73 \| Set disk transfer address
2018-12-17T22:08:32.736913692Z	78	PC: 13e80 \| Find first file
2018-12-17T22:08:32.743624819Z	67	PC: 13eb1 \| Get or set file attributes
2018-12-17T22:08:32.759111879Z	61	PC: 13eb6 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:08:32.7677546Z	63	PC: 13ec5 \| Read file or device (Read 10 bytes on handle 5)
2018-12-17T22:08:32.775441041Z	66	PC: 13fe9 \| Move file pointer
2018-12-17T22:08:32.777994232Z	64	PC: 1401a \| Write file or device (Write 430 bytes on handle 5)
2018-12-17T22:08:32.786787248Z	64	PC: 13fbd \| Write file or device (Write 77 bytes on handle 5)
2018-12-17T22:08:32.805757736Z	66	PC: 1402b \| Move file pointer
2018-12-17T22:08:32.807153001Z	64	PC: 14038 \| Write file or device (Write 10 bytes on handle 5)
2018-12-17T22:08:32.81345668Z	87	PC: 13ee2 \| Get or set file date and time
2018-12-17T22:08:32.815106084Z	62	PC: 13ee6 \| Close file
2018-12-17T22:08:32.822633853Z	67	PC: 13ef4 \| Get or set file attributes
2018-12-17T22:08:32.827706075Z	79	PC: 13e80 \| Find next file
2018-12-17T22:08:32.830653646Z	67	PC: 13eb1 \| Get or set file attributes
2018-12-17T22:08:32.84013284Z	61	PC: 13eb6 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:08:32.846430479Z	63	PC: 13ec5 \| Read file or device (Read 10 bytes on handle 5)
2018-12-17T22:08:32.852965355Z	66	PC: 13fe9 \| Move file pointer
2018-12-17T22:08:32.854470964Z	64	PC: 1401a \| Write file or device (Write 430 bytes on handle 5)
2018-12-17T22:08:32.857236579Z	64	PC: 13fbd \| Write file or device (Write 77 bytes on handle 5)
2018-12-17T22:08:32.865676347Z	66	PC: 1402b \| Move file pointer
2018-12-17T22:08:32.867388917Z	64	PC: 14038 \| Write file or device (Write 10 bytes on handle 5)
2018-12-17T22:08:32.874051862Z	87	PC: 13ee2 \| Get or set file date and time
2018-12-17T22:08:32.889740592Z	62	PC: 13ee6 \| Close file
2018-12-17T22:08:32.897482693Z	67	PC: 13ef4 \| Get or set file attributes
2018-12-17T22:08:32.902083383Z	79	PC: 13e80 \| Find next file
2018-12-17T22:08:32.914134488Z	67	PC: 13eb1 \| Get or set file attributes
2018-12-17T22:08:32.924010033Z	61	PC: 13eb6 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:08:32.93049208Z	63	PC: 13ec5 \| Read file or device (Read 10 bytes on handle 5)
2018-12-17T22:08:32.937250744Z	66	PC: 13fe9 \| Move file pointer
2018-12-17T22:08:32.938780451Z	64	PC: 1401a \| Write file or device (Write 430 bytes on handle 5)
2018-12-17T22:08:32.946795018Z	64	PC: 13fbd \| Write file or device (Write 77 bytes on handle 5)
2018-12-17T22:08:32.949940823Z	66	PC: 1402b \| Move file pointer
2018-12-17T22:08:32.951358639Z	64	PC: 14038 \| Write file or device (Write 10 bytes on handle 5)
2018-12-17T22:08:32.957702728Z	87	PC: 13ee2 \| Get or set file date and time
2018-12-17T22:08:32.959852586Z	62	PC: 13ee6 \| Close file
2018-12-17T22:08:32.968215362Z	67	PC: 13ef4 \| Get or set file attributes
2018-12-17T22:08:32.972756409Z	79	PC: 13e80 \| Find next file
2018-12-17T22:08:32.976437089Z	67	PC: 13eb1 \| Get or set file attributes
2018-12-17T22:08:32.985876078Z	61	PC: 13eb6 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:08:32.992327238Z	63	PC: 13ec5 \| Read file or device (Read 10 bytes on handle 5)
2018-12-17T22:08:33.000109121Z	66	PC: 13fe9 \| Move file pointer
2018-12-17T22:08:33.001667126Z	64	PC: 1401a \| Write file or device (Write 430 bytes on handle 5)
2018-12-17T22:08:33.004428735Z	64	PC: 13fbd \| Write file or device (Write 77 bytes on handle 5)
2018-12-17T22:08:33.012443994Z	66	PC: 1402b \| Move file pointer
2018-12-17T22:08:33.014146244Z	64	PC: 14038 \| Write file or device (Write 10 bytes on handle 5)
2018-12-17T22:08:33.020838543Z	87	PC: 13ee2 \| Get or set file date and time
2018-12-17T22:08:33.02274015Z	62	PC: 13ee6 \| Close file
2018-12-17T22:08:33.031060078Z	67	PC: 13ef4 \| Get or set file attributes
2018-12-17T22:08:33.036737284Z	79	PC: 13e80 \| Find next file
2018-12-17T22:08:33.039963993Z	67	PC: 13eb1 \| Get or set file attributes
2018-12-17T22:08:33.050087579Z	61	PC: 13eb6 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:08:33.056449235Z	63	PC: 13ec5 \| Read file or device (Read 10 bytes on handle 5)
2018-12-17T22:08:33.07036651Z	66	PC: 13fe9 \| Move file pointer
2018-12-17T22:08:33.07788226Z	64	PC: 1401a \| Write file or device (Write 430 bytes on handle 5)
2018-12-17T22:08:33.080802727Z	64	PC: 13fbd \| Write file or device (Write 77 bytes on handle 5)
2018-12-17T22:08:33.088687235Z	66	PC: 1402b \| Move file pointer
2018-12-17T22:08:33.09161938Z	64	PC: 14038 \| Write file or device (Write 10 bytes on handle 5)
2018-12-17T22:08:33.097835109Z	87	PC: 13ee2 \| Get or set file date and time
2018-12-17T22:08:33.099476572Z	62	PC: 13ee6 \| Close file
2018-12-17T22:08:33.108423365Z	67	PC: 13ef4 \| Get or set file attributes
2018-12-17T22:08:33.113266919Z	79	PC: 13e80 \| Find next file
2018-12-17T22:08:33.116038188Z	67	PC: 13eb1 \| Get or set file attributes
2018-12-17T22:08:33.1260723Z	61	PC: 13eb6 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:08:33.132520322Z	63	PC: 13ec5 \| Read file or device (Read 10 bytes on handle 5)
2018-12-17T22:08:33.138720856Z	66	PC: 13fe9 \| Move file pointer
2018-12-17T22:08:33.141262398Z	64	PC: 1401a \| Write file or device (Write 430 bytes on handle 5)
2018-12-17T22:08:33.149316591Z	64	PC: 13fbd \| Write file or device (Write 77 bytes on handle 5)
2018-12-17T22:08:33.151935393Z	66	PC: 1402b \| Move file pointer
2018-12-17T22:08:33.154104017Z	64	PC: 14038 \| Write file or device (Write 10 bytes on handle 5)
2018-12-17T22:08:33.161575445Z	87	PC: 13ee2 \| Get or set file date and time
2018-12-17T22:08:33.162934625Z	62	PC: 13ee6 \| Close file
2018-12-17T22:08:33.172511832Z	67	PC: 13ef4 \| Get or set file attributes
2018-12-17T22:08:33.177159377Z	79	PC: 13e80 \| Find next file
2018-12-17T22:08:33.179597983Z	67	PC: 13eb1 \| Get or set file attributes
2018-12-17T22:08:33.189674174Z	61	PC: 13eb6 \| Open file (Filename = 'PAH.COM')
2018-12-17T22:08:33.196231116Z	63	PC: 13ec5 \| Read file or device (Read 10 bytes on handle 5)
2018-12-17T22:08:33.202501982Z	66	PC: 13fe9 \| Move file pointer
2018-12-17T22:08:33.205478374Z	64	PC: 1401a \| Write file or device (Write 430 bytes on handle 5)
2018-12-17T22:08:33.208264638Z	64	PC: 13fbd \| Write file or device (Write 77 bytes on handle 5)
2018-12-17T22:08:33.216678006Z	66	PC: 1402b \| Move file pointer
2018-12-17T22:08:33.2187434Z	64	PC: 14038 \| Write file or device (Write 10 bytes on handle 5)
2018-12-17T22:08:33.22525922Z	87	PC: 13ee2 \| Get or set file date and time
2018-12-17T22:08:33.226755213Z	62	PC: 13ee6 \| Close file
2018-12-17T22:08:33.235706838Z	67	PC: 13ef4 \| Get or set file attributes
2018-12-17T22:08:33.24231973Z	79	PC: 13e80 \| Find next file
2018-12-17T22:08:33.244851232Z	67	PC: 13eb1 \| Get or set file attributes
2018-12-17T22:08:33.255305416Z	61	PC: 13eb6 \| Open file (Filename = 'TEST.COM')
2018-12-17T22:08:33.261958601Z	63	PC: 13ec5 \| Read file or device (Read 10 bytes on handle 5)
2018-12-17T22:08:33.264385272Z	87	PC: 13ee2 \| Get or set file date and time
2018-12-17T22:08:33.26667326Z	62	PC: 13ee6 \| Close file
2018-12-17T22:08:33.273663002Z	67	PC: 13ef4 \| Get or set file attributes
2018-12-17T22:08:33.278205236Z	79	PC: 13e80 \| Find next file
2018-12-17T22:08:33.280874354Z	26	PC: 13e8c \| Set disk transfer address
2018-12-17T22:08:33.28230304Z	9	PC: 12a85 \| Display string (String= 'Sophos Ltd, Oxford sacrificial COM goat 1400H bytes long ')
2018-12-17T22:08:33.287534055Z	0	PC: 12a89 \| Program terminate