Sample viewer

vx.netlux.org/Virus.DOS.VCL.Renegade.5737

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:10:09.365606349Z 47 PC: 12a6b | Get disk transfer address
2018-12-17T22:10:09.367532226Z 26 PC: 12a73 | Set disk transfer address
2018-12-17T22:10:09.368896688Z 71 PC: 12b24 | Get current directory
2018-12-17T22:10:09.371741582Z 59 PC: 12b2c | Change current directory
2018-12-17T22:10:09.377380352Z 47 PC: 12b41 | Get disk transfer address
2018-12-17T22:10:09.378580786Z 26 PC: 12b4f | Set disk transfer address
2018-12-17T22:10:09.379643193Z 78 PC: 12b5a | Find first file
2018-12-17T22:10:09.385942854Z 79 PC: 12b82 | Find next file
2018-12-17T22:10:09.389556798Z 79 PC: 12b82 | Find next file
2018-12-17T22:10:09.393318231Z 79 PC: 12b82 | Find next file
2018-12-17T22:10:09.396812416Z 79 PC: 12b82 | Find next file
2018-12-17T22:10:09.407368583Z 79 PC: 12b82 | Find next file
2018-12-17T22:10:09.410325267Z 79 PC: 12b82 | Find next file
2018-12-17T22:10:09.413299732Z 79 PC: 12b82 | Find next file
2018-12-17T22:10:09.416784214Z 79 PC: 12b82 | Find next file
2018-12-17T22:10:09.419692683Z 79 PC: 12b82 | Find next file
2018-12-17T22:10:09.422287921Z 47 PC: 12ba6 | Get disk transfer address
2018-12-17T22:10:09.424559292Z 26 PC: 12bb5 | Set disk transfer address
2018-12-17T22:10:09.425973385Z 78 PC: 12bbd | Find first file
2018-12-17T22:10:09.433515963Z 47 PC: 12bd5 | Get disk transfer address
2018-12-17T22:10:09.445647129Z 61 PC: 12bee | Open file (Filename = 'SLEEP.COM')
2018-12-17T22:10:09.46298746Z 63 PC: 12bfa | Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:10:09.478683406Z 66 PC: 12c02 | Move file pointer
2018-12-17T22:10:09.481550759Z 62 PC: 12c07 | Close file
2018-12-17T22:10:09.483654625Z 67 PC: 12c27 | Get or set file attributes
2018-12-17T22:10:09.499814695Z 61 PC: 12c2c | Open file (Filename = 'SLEEP.COM')
2018-12-17T22:10:09.506894732Z 64 PC: 12c38 | Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:10:09.511583381Z 66 PC: 12c40 | Move file pointer
2018-12-17T22:10:09.514756512Z 64 PC: 140c3 | Write file or device (Write 5737 bytes on handle 5)
2018-12-17T22:10:09.523465219Z 87 PC: 12c50 | Get or set file date and time
2018-12-17T22:10:09.525775845Z 62 PC: 12c54 | Close file
2018-12-17T22:10:09.533412162Z 67 PC: 12c61 | Get or set file attributes
2018-12-17T22:10:09.543500323Z 26 PC: 12bcf | Set disk transfer address
2018-12-17T22:10:09.545934396Z 26 PC: 12b92 | Set disk transfer address
2018-12-17T22:10:09.547314051Z 59 PC: 12b36 | Change current directory
2018-12-17T22:10:09.549353197Z 71 PC: 12b24 | Get current directory
2018-12-17T22:10:09.553087961Z 59 PC: 12b2c | Change current directory
2018-12-17T22:10:09.558041607Z 47 PC: 12b41 | Get disk transfer address
2018-12-17T22:10:09.559280277Z 26 PC: 12b4f | Set disk transfer address
2018-12-17T22:10:09.561009387Z 78 PC: 12b5a | Find first file
2018-12-17T22:10:09.571608111Z 79 PC: 12b82 | Find next file
2018-12-17T22:10:09.574157352Z 79 PC: 12b82 | Find next file
2018-12-17T22:10:09.57761598Z 79 PC: 12b82 | Find next file
2018-12-17T22:10:09.580246525Z 79 PC: 12b82 | Find next file
2018-12-17T22:10:09.582992933Z 79 PC: 12b82 | Find next file
2018-12-17T22:10:09.587274607Z 79 PC: 12b82 | Find next file
2018-12-17T22:10:09.590195145Z 79 PC: 12b82 | Find next file
2018-12-17T22:10:09.592976429Z 79 PC: 12b82 | Find next file
2018-12-17T22:10:09.596309544Z 79 PC: 12b82 | Find next file
2018-12-17T22:10:09.598742525Z 47 PC: 12ba6 | Get disk transfer address
2018-12-17T22:10:09.59975234Z 26 PC: 12bb5 | Set disk transfer address
2018-12-17T22:10:09.601182999Z 78 PC: 12bbd | Find first file
2018-12-17T22:10:09.607758034Z 47 PC: 12bd5 | Get disk transfer address
2018-12-17T22:10:09.609165822Z 61 PC: 12bee | Open file (Filename = 'SLEEP.COM')
2018-12-17T22:10:09.616256551Z 63 PC: 12bfa | Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:10:09.622622933Z 66 PC: 12c02 | Move file pointer
2018-12-17T22:10:09.624303306Z 62 PC: 12c07 | Close file
2018-12-17T22:10:09.626505036Z 79 PC: 12bbd | Find next file
2018-12-17T22:10:09.628383251Z 47 PC: 12bd5 | Get disk transfer address
2018-12-17T22:10:09.629316746Z 61 PC: 12bee | Open file (Filename = 'PRINT.COM')
2018-12-17T22:10:09.633952921Z 63 PC: 12bfa | Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:10:09.638243544Z 66 PC: 12c02 | Move file pointer
2018-12-17T22:10:09.63955302Z 62 PC: 12c07 | Close file
2018-12-17T22:10:09.641350117Z 67 PC: 12c27 | Get or set file attributes
2018-12-17T22:10:09.64777071Z 61 PC: 12c2c | Open file (Filename = 'PRINT.COM')
2018-12-17T22:10:09.652016742Z 64 PC: 12c38 | Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:10:09.655999882Z 66 PC: 12c40 | Move file pointer
2018-12-17T22:10:09.658350623Z 64 PC: 140c3 | Write file or device (Write 5737 bytes on handle 5)
2018-12-17T22:10:09.667726748Z 87 PC: 12c50 | Get or set file date and time
2018-12-17T22:10:09.669821831Z 62 PC: 12c54 | Close file
2018-12-17T22:10:09.675732231Z 67 PC: 12c61 | Get or set file attributes
2018-12-17T22:10:09.683730017Z 26 PC: 12bcf | Set disk transfer address
2018-12-17T22:10:09.685136956Z 26 PC: 12b92 | Set disk transfer address
2018-12-17T22:10:09.686426279Z 59 PC: 12b36 | Change current directory
2018-12-17T22:10:09.687841409Z 71 PC: 12b24 | Get current directory
2018-12-17T22:10:09.690533933Z 59 PC: 12b2c | Change current directory
2018-12-17T22:10:09.693236414Z 47 PC: 12b41 | Get disk transfer address
2018-12-17T22:10:09.694400927Z 26 PC: 12b4f | Set disk transfer address
2018-12-17T22:10:09.695276248Z 78 PC: 12b5a | Find first file
2018-12-17T22:10:09.704253754Z 79 PC: 12b82 | Find next file
2018-12-17T22:10:09.706788088Z 79 PC: 12b82 | Find next file
2018-12-17T22:10:09.709335088Z 79 PC: 12b82 | Find next file
2018-12-17T22:10:09.712149524Z 79 PC: 12b82 | Find next file
2018-12-17T22:10:09.714732136Z 79 PC: 12b82 | Find next file
2018-12-17T22:10:09.718400364Z 79 PC: 12b82 | Find next file
2018-12-17T22:10:09.720995703Z 79 PC: 12b82 | Find next file
2018-12-17T22:10:09.723295873Z 79 PC: 12b82 | Find next file
2018-12-17T22:10:09.727330543Z 79 PC: 12b82 | Find next file
2018-12-17T22:10:09.730418486Z 47 PC: 12ba6 | Get disk transfer address
2018-12-17T22:10:09.731932066Z 26 PC: 12bb5 | Set disk transfer address
2018-12-17T22:10:09.733704395Z 78 PC: 12bbd | Find first file
2018-12-17T22:10:09.738286595Z 47 PC: 12bd5 | Get disk transfer address
2018-12-17T22:10:09.739171395Z 61 PC: 12bee | Open file (Filename = 'SLEEP.COM')
2018-12-17T22:10:09.743981625Z 63 PC: 12bfa | Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:10:09.748704871Z 66 PC: 12c02 | Move file pointer
2018-12-17T22:10:09.750628087Z 62 PC: 12c07 | Close file
2018-12-17T22:10:09.752390392Z 79 PC: 12bbd | Find next file
2018-12-17T22:10:09.755454855Z 47 PC: 12bd5 | Get disk transfer address
2018-12-17T22:10:09.756506921Z 61 PC: 12bee | Open file (Filename = 'PRINT.COM')
2018-12-17T22:10:09.762999413Z 63 PC: 12bfa | Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:10:09.770084711Z 66 PC: 12c02 | Move file pointer
2018-12-17T22:10:09.771545924Z 62 PC: 12c07 | Close file
2018-12-17T22:10:09.773760767Z 79 PC: 12bbd | Find next file
2018-12-17T22:10:09.777457131Z 47 PC: 12bd5 | Get disk transfer address
2018-12-17T22:10:09.778843151Z 61 PC: 12bee | Open file (Filename = 'HELLO.COM')
2018-12-17T22:10:09.78624779Z 63 PC: 12bfa | Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:10:09.792437932Z 66 PC: 12c02 | Move file pointer
2018-12-17T22:10:09.793578318Z 62 PC: 12c07 | Close file
2018-12-17T22:10:09.794882286Z 67 PC: 12c27 | Get or set file attributes
2018-12-17T22:10:09.801855364Z 61 PC: 12c2c | Open file (Filename = 'HELLO.COM')
2018-12-17T22:10:09.806034779Z 64 PC: 12c38 | Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:10:09.807993928Z 66 PC: 12c40 | Move file pointer
2018-12-17T22:10:09.810629329Z 64 PC: 140c3 | Write file or device (Write 5737 bytes on handle 5)
2018-12-17T22:10:09.816300523Z 87 PC: 12c50 | Get or set file date and time
2018-12-17T22:10:09.817825452Z 62 PC: 12c54 | Close file
2018-12-17T22:10:09.824358243Z 67 PC: 12c61 | Get or set file attributes
2018-12-17T22:10:09.834830696Z 26 PC: 12bcf | Set disk transfer address
2018-12-17T22:10:09.836121423Z 26 PC: 12b92 | Set disk transfer address
2018-12-17T22:10:09.837866852Z 59 PC: 12b36 | Change current directory
2018-12-17T22:10:09.839485913Z 44 PC: 12c7a | Get time 0x12c7a: mov al, cl
0x12c7c: cwde
0x12c7d: ret
0x12c7e: mov ah, 0x2a
0x12c80: int 0x21
0x12c82: mov al, dh
0x12c84: cwde
0x12c85: ret
0x12c86: mov ah, 0x2c
0x12c88: int 0x21
0x12c8a: mov al, dh
0x12c8c: cwde
0x12c8d: ret
0x12c8e: and byte ptr [bx + si], ah
0x12c90: and byte ptr [bx + si], ah
0x12c92: and byte ptr [bx + si], ah
0x12c94: and byte ptr [bx + si], ah
0x12c96: and byte ptr [bx + si], ah
0x12c98: and byte ptr [bx + si], ah
0x12c9a: and byte ptr [bx + si], ah
2018-12-17T22:10:09.84150401Z 44 PC: 12c72 | Get time 0x12c72: mov al, ch
0x12c74: cwde
0x12c75: ret
0x12c76: mov ah, 0x2c
0x12c78: int 0x21
0x12c7a: mov al, cl
0x12c7c: cwde
0x12c7d: ret
0x12c7e: mov ah, 0x2a
0x12c80: int 0x21
0x12c82: mov al, dh
0x12c84: cwde
0x12c85: ret
0x12c86: mov ah, 0x2c
0x12c88: int 0x21
0x12c8a: mov al, dh
0x12c8c: cwde
0x12c8d: ret
0x12c8e: and byte ptr [bx + si], ah
0x12c90: and byte ptr [bx + si], ah
2018-12-17T22:10:09.843996905Z 44 PC: 12c72 | Get time 0x12c72: mov al, ch
0x12c74: cwde
0x12c75: ret
0x12c76: mov ah, 0x2c
0x12c78: int 0x21
0x12c7a: mov al, cl
0x12c7c: cwde
0x12c7d: ret
0x12c7e: mov ah, 0x2a
0x12c80: int 0x21
0x12c82: mov al, dh
0x12c84: cwde
0x12c85: ret
0x12c86: mov ah, 0x2c
0x12c88: int 0x21
0x12c8a: mov al, dh
0x12c8c: cwde
0x12c8d: ret
0x12c8e: and byte ptr [bx + si], ah
0x12c90: and byte ptr [bx + si], ah
2018-12-17T22:10:09.846015212Z 78 PC: 12ae2 | Find first file
2018-12-17T22:10:09.849772726Z 26 PC: 12b04 | Set disk transfer address
2018-12-17T22:10:09.851133743Z 76 PC: 12a46 | Terminate with return code (Return code = '0')