Sample viewer

vx.netlux.org/Virus.DOS.Shame.1455

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:10:38.664429236Z	53	PC: 15b88 \| Get interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T22:10:38.667308431Z	37	PC: 15bb3 \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T22:10:38.668552707Z	53	PC: 15c16 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:10:38.669915758Z	37	PC: 15c29 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:10:38.673617358Z	26	PC: 15c31 \| Set disk transfer address
2018-12-17T22:10:38.675500173Z	65	PC: 15f86 \| Delete file (Filename = 'TBSCAN.EXE')
2018-12-17T22:10:38.681883361Z	65	PC: 15f86 \| Delete file (Filename = 'ANTI-VIR.DAT')
2018-12-17T22:10:38.688386791Z	65	PC: 15f86 \| Delete file (Filename = 'CHKLIST.MS')
2018-12-17T22:10:38.700404492Z	65	PC: 15f86 \| Delete file (Filename = 'CHKLIST.CPS')
2018-12-17T22:10:38.706460604Z	71	PC: 15e7a \| Get current directory
2018-12-17T22:10:38.709692845Z	78	PC: 15c4c \| Find first file
2018-12-17T22:10:38.716383843Z	67	PC: 15cdb \| Get or set file attributes
2018-12-17T22:10:38.722211398Z	61	PC: 15ce4 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:10:38.73366018Z	87	PC: 15cef \| Get or set file date and time
2018-12-17T22:10:38.735958236Z	63	PC: 15d02 \| Read file or device (Read 27 bytes on handle 5)
2018-12-17T22:10:38.742224364Z	66	PC: 15d0b \| Move file pointer
2018-12-17T22:10:38.744108569Z	87	PC: 15cb6 \| Get or set file date and time
2018-12-17T22:10:38.746524673Z	62	PC: 15cba \| Close file
2018-12-17T22:10:38.762077279Z	67	PC: 15cc9 \| Get or set file attributes
2018-12-17T22:10:38.774507297Z	79	PC: 15c4c \| Find next file
2018-12-17T22:10:38.778414971Z	67	PC: 15cdb \| Get or set file attributes
2018-12-17T22:10:38.784591153Z	61	PC: 15ce4 \| Open file (Filename = 'PRINT.S')
2018-12-17T22:10:38.791343638Z	87	PC: 15cef \| Get or set file date and time
2018-12-17T22:10:38.797449058Z	63	PC: 15d02 \| Read file or device (Read 27 bytes on handle 5)
2018-12-17T22:10:38.804294391Z	66	PC: 15d0b \| Move file pointer
2018-12-17T22:10:38.80660771Z	87	PC: 15cb6 \| Get or set file date and time
2018-12-17T22:10:38.811060887Z	62	PC: 15cba \| Close file
2018-12-17T22:10:38.819609214Z	67	PC: 15cc9 \| Get or set file attributes
2018-12-17T22:10:38.829466113Z	79	PC: 15c4c \| Find next file
2018-12-17T22:10:38.832886468Z	67	PC: 15cdb \| Get or set file attributes
2018-12-17T22:10:38.843998741Z	61	PC: 15ce4 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:10:38.855596314Z	87	PC: 15cef \| Get or set file date and time
2018-12-17T22:10:38.857752044Z	63	PC: 15d02 \| Read file or device (Read 27 bytes on handle 5)
2018-12-17T22:10:38.86437846Z	66	PC: 15d0b \| Move file pointer
2018-12-17T22:10:38.866212648Z	87	PC: 15cb6 \| Get or set file date and time
2018-12-17T22:10:38.868386611Z	62	PC: 15cba \| Close file
2018-12-17T22:10:38.875800556Z	67	PC: 15cc9 \| Get or set file attributes
2018-12-17T22:10:38.886559453Z	79	PC: 15c4c \| Find next file
2018-12-17T22:10:38.889758717Z	67	PC: 15cdb \| Get or set file attributes
2018-12-17T22:10:38.896954063Z	61	PC: 15ce4 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:10:38.908943314Z	87	PC: 15cef \| Get or set file date and time
2018-12-17T22:10:38.910927127Z	63	PC: 15d02 \| Read file or device (Read 27 bytes on handle 5)
2018-12-17T22:10:38.917743281Z	66	PC: 15d0b \| Move file pointer
2018-12-17T22:10:38.919561263Z	87	PC: 15cb6 \| Get or set file date and time
2018-12-17T22:10:38.92160614Z	62	PC: 15cba \| Close file
2018-12-17T22:10:38.929080958Z	67	PC: 15cc9 \| Get or set file attributes
2018-12-17T22:10:38.939065499Z	79	PC: 15c4c \| Find next file
2018-12-17T22:10:38.943140558Z	67	PC: 15cdb \| Get or set file attributes
2018-12-17T22:10:38.948886521Z	61	PC: 15ce4 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:10:38.955600436Z	87	PC: 15cef \| Get or set file date and time
2018-12-17T22:10:38.957352467Z	63	PC: 15d02 \| Read file or device (Read 27 bytes on handle 5)
2018-12-17T22:10:38.96456924Z	66	PC: 15d0b \| Move file pointer
2018-12-17T22:10:38.966263652Z	87	PC: 15cb6 \| Get or set file date and time
2018-12-17T22:10:38.967631912Z	62	PC: 15cba \| Close file
2018-12-17T22:10:38.977723616Z	67	PC: 15cc9 \| Get or set file attributes
2018-12-17T22:10:38.987121934Z	79	PC: 15c4c \| Find next file
2018-12-17T22:10:38.989588776Z	67	PC: 15cdb \| Get or set file attributes
2018-12-17T22:10:38.995714936Z	61	PC: 15ce4 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:10:39.002106728Z	87	PC: 15cef \| Get or set file date and time
2018-12-17T22:10:39.00337282Z	63	PC: 15d02 \| Read file or device (Read 27 bytes on handle 5)
2018-12-17T22:10:39.009819897Z	66	PC: 15d0b \| Move file pointer
2018-12-17T22:10:39.011087904Z	87	PC: 15cb6 \| Get or set file date and time
2018-12-17T22:10:39.012489742Z	62	PC: 15cba \| Close file
2018-12-17T22:10:39.019622704Z	67	PC: 15cc9 \| Get or set file attributes
2018-12-17T22:10:39.028484982Z	79	PC: 15c4c \| Find next file
2018-12-17T22:10:39.034959869Z	67	PC: 15cdb \| Get or set file attributes
2018-12-17T22:10:39.041377928Z	61	PC: 15ce4 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:10:39.047983764Z	87	PC: 15cef \| Get or set file date and time
2018-12-17T22:10:39.049659438Z	63	PC: 15d02 \| Read file or device (Read 27 bytes on handle 5)
2018-12-17T22:10:39.05646978Z	66	PC: 15d0b \| Move file pointer
2018-12-17T22:10:39.057902772Z	87	PC: 15cb6 \| Get or set file date and time
2018-12-17T22:10:39.059598717Z	62	PC: 15cba \| Close file
2018-12-17T22:10:39.066951926Z	67	PC: 15cc9 \| Get or set file attributes
2018-12-17T22:10:39.076373644Z	79	PC: 15c4c \| Find next file
2018-12-17T22:10:39.078925221Z	67	PC: 15cdb \| Get or set file attributes
2018-12-17T22:10:39.084852429Z	61	PC: 15ce4 \| Open file (Filename = 'PAH.COM')
2018-12-17T22:10:39.091427214Z	87	PC: 15cef \| Get or set file date and time
2018-12-17T22:10:39.093087419Z	63	PC: 15d02 \| Read file or device (Read 27 bytes on handle 5)
2018-12-17T22:10:39.100804421Z	66	PC: 15d0b \| Move file pointer
2018-12-17T22:10:39.102428817Z	87	PC: 15cb6 \| Get or set file date and time
2018-12-17T22:10:39.104106913Z	62	PC: 15cba \| Close file
2018-12-17T22:10:39.111734775Z	67	PC: 15cc9 \| Get or set file attributes
2018-12-17T22:10:39.12157685Z	79	PC: 15c4c \| Find next file
2018-12-17T22:10:39.124429024Z	67	PC: 15cdb \| Get or set file attributes
2018-12-17T22:10:39.131207596Z	61	PC: 15ce4 \| Open file (Filename = 'TEST.EXE')
2018-12-17T22:10:39.137826185Z	87	PC: 15cef \| Get or set file date and time
2018-12-17T22:10:39.139431753Z	63	PC: 15d02 \| Read file or device (Read 27 bytes on handle 5)
2018-12-17T22:10:39.147051265Z	66	PC: 15d0b \| Move file pointer
2018-12-17T22:10:39.148655868Z	87	PC: 15cb6 \| Get or set file date and time
2018-12-17T22:10:39.150368172Z	62	PC: 15cba \| Close file
2018-12-17T22:10:39.15837355Z	67	PC: 15cc9 \| Get or set file attributes
2018-12-17T22:10:39.170843298Z	79	PC: 15c4c \| Find next file
2018-12-17T22:10:39.173403583Z	59	PC: 15ca0 \| Change current directory
2018-12-17T22:10:39.178439601Z	26	PC: 15c66 \| Set disk transfer address
2018-12-17T22:10:39.180127039Z	59	PC: 15e83 \| Change current directory
2018-12-17T22:10:39.182081033Z	37	PC: 15e90 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:10:39.184217712Z	9	PC: 12a86 \| Display string (Could not find end pointer)
2018-12-17T22:10:39.190120682Z	48	PC: 12a8f \| Get DOS version
2018-12-17T22:10:39.19150095Z	61	PC: 12b5c \| Open file (Filename = '')
2018-12-17T22:10:39.198367473Z	93	PC: 12afe \| File sharing functions
2018-12-17T22:10:39.200686743Z	9	PC: 12a86 \| Display string (String= 'Size change=05AFh/01455d. ')
2018-12-17T22:10:39.204512161Z	76	PC: 12ae3 \| Terminate with return code (Return code = '1')