Sample viewer

vx.netlux.org/Virus.DOS.HLLO.Joker.a

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T21:52:28.056612172Z	53	PC: 1447b \| Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T21:52:28.058709026Z	53	PC: 14488 \| Get interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T21:52:28.059913571Z	53	PC: 14495 \| Get interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T21:52:28.061401831Z	53	PC: 144a2 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T21:52:28.071282463Z	53	PC: 144af \| Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T21:52:28.072790297Z	37	PC: 144c2 \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T21:52:28.074066635Z	37	PC: 144ca \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T21:52:28.077090358Z	37	PC: 144d2 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T21:52:28.079930971Z	68	PC: 14b84 \| I/O control for devices (Set for = '')
2018-12-17T21:52:28.144406797Z	53	PC: 13e4f \| Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T21:52:28.145866398Z	37	PC: 13e62 \| Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T21:52:28.148708796Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.150039494Z	78	PC: 13d4d \| Find first file
2018-12-17T21:52:28.155985506Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.157436171Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.160963927Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.162274249Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.165791341Z	44	PC: 14a12 \| Get time 0x14a12: mov word ptr [0x49d6], cx 0x14a16: mov word ptr [0x49d8], dx 0x14a1a: retf 0x14a1b: mov bx, sp 0x14a1d: push ds 0x14a1e: les di, ptr ss:[bx + 8] 0x14a22: lds si, ptr ss:[bx + 4] 0x14a26: cld 0x14a27: xor ax, ax 0x14a29: stosw word ptr es:[di], ax 0x14a2a: mov ax, 0xd7b0 0x14a2d: stosw word ptr es:[di], ax 0x14a2e: mov ax, 0x80 0x14a31: stosw word ptr es:[di], ax 0x14a32: xor ax, ax 0x14a34: stosw word ptr es:[di], ax 0x14a35: stosw word ptr es:[di], ax 0x14a36: stosw word ptr es:[di], ax 0x14a37: lea ax, word ptr [di + 0x74] 0x14a3a: stosw word ptr es:[di], ax
2018-12-17T21:52:28.168440311Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.169731138Z	78	PC: 13d4d \| Find first file
2018-12-17T21:52:28.180008348Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.181276616Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.1848022Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.186692308Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.190089525Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.191361292Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.195264696Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.196548862Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.19994777Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.20180884Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.209039681Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.210342696Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.214299107Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.215495415Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.219230496Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.221555551Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.225119086Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.22658524Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.231067691Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.232434825Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.235896551Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.238138628Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.241622478Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.243034255Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.247056827Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.248564154Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.252280472Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.25424583Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.258193263Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.25975062Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.267211663Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.268947107Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.272701363Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.277465069Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.283322959Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.285535581Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.290352549Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.292221334Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.296361648Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.298750136Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.303034213Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.304862202Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.309333724Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.310771373Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.314240585Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.31589144Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.322487833Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.323706162Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.328478536Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.329790294Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.333214572Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.334985148Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.338831496Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.340084733Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.343909221Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.345157425Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.348800185Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.351375912Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.358319629Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.36015075Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.367635205Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.369304763Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.377457422Z	26	PC: 13d4d \| Set disk transfer address
2018-12-17T21:52:28.379616388Z	79	PC: 13d4d \| Find next file
2018-12-17T21:52:28.385872025Z	61	PC: 14efa \| Open file (Filename = 'WABIKEXE.EXE')
2018-12-17T21:52:28.394980801Z	37	PC: 13f2d \| Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T21:52:28.397533475Z	37	PC: 1451e \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T21:52:28.398858971Z	37	PC: 14529 \| Set interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T21:52:28.39992812Z	37	PC: 14534 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T21:52:28.402063794Z	37	PC: 1453f \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T21:52:28.403052824Z	37	PC: 1454a \| Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T21:52:28.40435884Z	76	PC: 1468d \| Terminate with return code (Return code = '0')