Sample viewer

vx.netlux.org/Virus.DOS.Abba.9849.a

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:12:53.52574007Z	232	PC: 12a68 \| UNKNOWN!
2018-12-17T22:12:53.527516392Z	53	PC: 12b9e \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:12:53.528751679Z	74	PC: 12b2a \| Reallocate memory
2018-12-17T22:12:53.530168246Z	98	PC: 15042 \| Get current PSP
2018-12-17T22:12:53.547974208Z	26	PC: 1504d \| Set disk transfer address
2018-12-17T22:12:53.549197747Z	78	PC: 15059 \| Find first file
2018-12-17T22:12:53.554861155Z	54	PC: 1502b \| Get free disk space
2018-12-17T22:12:53.561688812Z	98	PC: 15042 \| Get current PSP
2018-12-17T22:12:53.562641453Z	26	PC: 1504d \| Set disk transfer address
2018-12-17T22:12:53.563745745Z	78	PC: 15059 \| Find first file
2018-12-17T22:12:53.569135568Z	67	PC: 14e23 \| Get or set file attributes
2018-12-17T22:12:53.926807249Z	78	PC: 12cc1 \| Find first file
2018-12-17T22:12:53.932618147Z	60	PC: 12cd7 \| Create or truncate file
2018-12-17T22:12:53.94275387Z	62	PC: 12cdd \| Close file
2018-12-17T22:12:53.945622344Z	61	PC: 14e64 \| Open file (Filename = '��:u ��;Du��øB�$3�3��!��#�؋�#%')
2018-12-17T22:12:53.951949734Z	63	PC: 14e73 \| Read file or device (Read 24 bytes on handle 5)
2018-12-17T22:12:53.954913926Z	62	PC: 14ea7 \| Close file
2018-12-17T22:12:53.958066062Z	67	PC: 14e32 \| Get or set file attributes
2018-12-17T22:12:53.967614752Z	75	PC: 12b73 \| Execute program
2018-12-17T22:12:53.988167416Z	80	PC: 167a9 \| Set current PSP
2018-12-17T22:12:53.989840963Z	48	PC: 167ae \| Get DOS version
2018-12-17T22:12:53.991791315Z	101	PC: 16834 \| Get extended country info
2018-12-17T22:12:53.993039232Z	99	PC: 1683a \| Get DBCS lead byte table pointer
2018-12-17T22:12:53.994716795Z	74	PC: 1689c \| Reallocate memory
2018-12-17T22:12:53.996929938Z	25	PC: 168d3 \| Get default drive
2018-12-17T22:12:53.999048915Z	37	PC: 16393 \| Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T22:12:54.001077527Z	37	PC: 1639a \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:12:54.003066041Z	37	PC: 163a1 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:12:54.006493915Z	2	PC: 1665c \| Character output (Char = '0d')
2018-12-17T22:12:54.015566485Z	2	PC: 1665c \| Character output (Char = '0a')
2018-12-17T22:12:54.02596261Z	2	PC: 1665c \| Character output (Char = '0d')
2018-12-17T22:12:54.028381941Z	2	PC: 1665c \| Character output (Char = '0a')
2018-12-17T22:12:54.032615728Z	2	PC: 1665c \| Character output (Char = '4d')
2018-12-17T22:12:54.034696735Z	2	PC: 1665c \| Character output (Char = '69')
2018-12-17T22:12:54.037149198Z	2	PC: 1665c \| Character output (Char = '63')
2018-12-17T22:12:54.04079125Z	2	PC: 1665c \| Character output (Char = '72')
2018-12-17T22:12:54.043251107Z	2	PC: 1665c \| Character output (Char = '6f')
2018-12-17T22:12:54.045685557Z	2	PC: 1665c \| Character output (Char = '73')
2018-12-17T22:12:54.048836053Z	2	PC: 1665c \| Character output (Char = '6f')
2018-12-17T22:12:54.051366372Z	2	PC: 1665c \| Character output (Char = '66')
2018-12-17T22:12:54.053807712Z	2	PC: 1665c \| Character output (Char = '74')
2018-12-17T22:12:54.05735411Z	2	PC: 1665c \| Character output (Char = '28')
2018-12-17T22:12:54.070842004Z	2	PC: 1665c \| Character output (Char = '52')
2018-12-17T22:12:54.07411013Z	2	PC: 1665c \| Character output (Char = '29')
2018-12-17T22:12:54.077499993Z	2	PC: 1665c \| Character output (Char = '20')
2018-12-17T22:12:54.079993882Z	2	PC: 1665c \| Character output (Char = '4d')
2018-12-17T22:12:54.082564547Z	2	PC: 1665c \| Character output (Char = '53')
2018-12-17T22:12:54.086056309Z	2	PC: 1665c \| Character output (Char = '2d')
2018-12-17T22:12:54.088640115Z	2	PC: 1665c \| Character output (Char = '44')
2018-12-17T22:12:54.091191969Z	2	PC: 1665c \| Character output (Char = '4f')
2018-12-17T22:12:54.094474883Z	2	PC: 1665c \| Character output (Char = '53')
2018-12-17T22:12:54.097641013Z	2	PC: 1665c \| Character output (Char = '28')
2018-12-17T22:12:54.100163108Z	2	PC: 1665c \| Character output (Char = '52')
2018-12-17T22:12:54.103354832Z	2	PC: 1665c \| Character output (Char = '29')
2018-12-17T22:12:54.105841412Z	2	PC: 1665c \| Character output (Char = '20')
2018-12-17T22:12:54.108389824Z	2	PC: 1665c \| Character output (Char = '56')
2018-12-17T22:12:54.111639733Z	2	PC: 1665c \| Character output (Char = '65')
2018-12-17T22:12:54.114104691Z	2	PC: 1665c \| Character output (Char = '72')
2018-12-17T22:12:54.116530422Z	2	PC: 1665c \| Character output (Char = '73')
2018-12-17T22:12:54.12060251Z	2	PC: 1665c \| Character output (Char = '69')
2018-12-17T22:12:54.123054239Z	2	PC: 1665c \| Character output (Char = '6f')
2018-12-17T22:12:54.125493779Z	2	PC: 1665c \| Character output (Char = '6e')
2018-12-17T22:12:54.128721296Z	2	PC: 1665c \| Character output (Char = '20')
2018-12-17T22:12:54.131012082Z	2	PC: 1665c \| Character output (Char = '36')
2018-12-17T22:12:54.133354452Z	2	PC: 1665c \| Character output (Char = '2e')
2018-12-17T22:12:54.136725875Z	2	PC: 1665c \| Character output (Char = '32')
2018-12-17T22:12:54.13930292Z	2	PC: 1665c \| Character output (Char = '32')
2018-12-17T22:12:54.14171088Z	2	PC: 1665c \| Character output (Char = '0d')
2018-12-17T22:12:54.145426309Z	2	PC: 1665c \| Character output (Char = '0a')
2018-12-17T22:12:54.149592347Z	2	PC: 1665c \| Character output (Char = '20')
2018-12-17T22:12:54.151945472Z	2	PC: 1665c \| Character output (Char = '20')
2018-12-17T22:12:54.155402459Z	2	PC: 1665c \| Character output (Char = '20')
2018-12-17T22:12:54.158652883Z	2	PC: 1665c \| Character output (Char = '20')
2018-12-17T22:12:54.160884961Z	2	PC: 1665c \| Character output (Char = '20')
2018-12-17T22:12:54.16311199Z	2	PC: 1665c \| Character output (Char = '20')
2018-12-17T22:12:54.166357293Z	2	PC: 1665c \| Character output (Char = '20')
2018-12-17T22:12:54.168846871Z	2	PC: 1665c \| Character output (Char = '20')
2018-12-17T22:12:54.170931755Z	2	PC: 1665c \| Character output (Char = '20')
2018-12-17T22:12:54.174237167Z	2	PC: 1665c \| Character output (Char = '20')
2018-12-17T22:12:54.17629756Z	2	PC: 1665c \| Character output (Char = '20')
2018-12-17T22:12:54.178342468Z	2	PC: 1665c \| Character output (Char = '20')
2018-12-17T22:12:54.181459994Z	2	PC: 1665c \| Character output (Char = '20')
2018-12-17T22:12:54.18359334Z	2	PC: 1665c \| Character output (Char = '28')
2018-12-17T22:12:54.185671878Z	2	PC: 1665c \| Character output (Char = '43')
2018-12-17T22:12:54.188600328Z	2	PC: 1665c \| Character output (Char = '29')
2018-12-17T22:12:54.192055824Z	2	PC: 1665c \| Character output (Char = '43')
2018-12-17T22:12:54.194592299Z	2	PC: 1665c \| Character output (Char = '6f')
2018-12-17T22:12:54.205028898Z	2	PC: 1665c \| Character output (Char = '70')
2018-12-17T22:12:54.208677107Z	2	PC: 1665c \| Character output (Char = '79')
2018-12-17T22:12:54.211273517Z	2	PC: 1665c \| Character output (Char = '72')
2018-12-17T22:12:54.214579264Z	2	PC: 1665c \| Character output (Char = '69')
2018-12-17T22:12:54.217160956Z	2	PC: 1665c \| Character output (Char = '67')
2018-12-17T22:12:54.219647708Z	2	PC: 1665c \| Character output (Char = '68')
2018-12-17T22:12:54.22284626Z	2	PC: 1665c \| Character output (Char = '74')
2018-12-17T22:12:54.225495585Z	2	PC: 1665c \| Character output (Char = '20')
2018-12-17T22:12:54.227971811Z	2	PC: 1665c \| Character output (Char = '4d')
2018-12-17T22:12:54.232013806Z	2	PC: 1665c \| Character output (Char = '69')
2018-12-17T22:12:54.234427108Z	2	PC: 1665c \| Character output (Char = '63')
2018-12-17T22:12:54.236954718Z	2	PC: 1665c \| Character output (Char = '72')
2018-12-17T22:12:54.24013218Z	2	PC: 1665c \| Character output (Char = '6f')
2018-12-17T22:12:54.242911812Z	2	PC: 1665c \| Character output (Char = '73')
2018-12-17T22:12:54.245271095Z	2	PC: 1665c \| Character output (Char = '6f')
2018-12-17T22:12:54.248361925Z	2	PC: 1665c \| Character output (Char = '66')
2018-12-17T22:12:54.251631798Z	2	PC: 1665c \| Character output (Char = '74')
2018-12-17T22:12:54.253972887Z	2	PC: 1665c \| Character output (Char = '20')
2018-12-17T22:12:54.256530602Z	2	PC: 1665c \| Character output (Char = '43')
2018-12-17T22:12:54.27029571Z	2	PC: 1665c \| Character output (Char = '6f')
2018-12-17T22:12:54.272505164Z	2	PC: 1665c \| Character output (Char = '72')
2018-12-17T22:12:54.274657176Z	2	PC: 1665c \| Character output (Char = '70')
2018-12-17T22:12:54.277219039Z	2	PC: 1665c \| Character output (Char = '20')
2018-12-17T22:12:54.279317626Z	2	PC: 1665c \| Character output (Char = '31')
2018-12-17T22:12:54.281421215Z	2	PC: 1665c \| Character output (Char = '39')
2018-12-17T22:12:54.284661168Z	2	PC: 1665c \| Character output (Char = '38')
2018-12-17T22:12:54.28729202Z	2	PC: 1665c \| Character output (Char = '31')
2018-12-17T22:12:54.289912391Z	2	PC: 1665c \| Character output (Char = '2d')
2018-12-17T22:12:54.29283727Z	2	PC: 1665c \| Character output (Char = '31')
2018-12-17T22:12:54.294978975Z	2	PC: 1665c \| Character output (Char = '39')
2018-12-17T22:12:54.297529791Z	2	PC: 1665c \| Character output (Char = '39')
2018-12-17T22:12:54.300486639Z	2	PC: 1665c \| Character output (Char = '34')
2018-12-17T22:12:54.303921224Z	2	PC: 1665c \| Character output (Char = '2e')
2018-12-17T22:12:54.307293009Z	2	PC: 1665c \| Character output (Char = '0d')
2018-12-17T22:12:54.310210878Z	2	PC: 1665c \| Character output (Char = '0a')
2018-12-17T22:12:54.322455799Z	74	PC: 1553c \| Reallocate memory
2018-12-17T22:12:54.324457494Z	72	PC: 1557d \| Allocate memory
2018-12-17T22:12:54.327137604Z	72	PC: 155b5 \| Allocate memory
2018-12-17T22:12:54.329468344Z	72	PC: 155bd \| Allocate memory