Sample viewer

vx.netlux.org/Virus.DOS.Anti-AV.839

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T21:52:37.496802993Z	67	PC: 151ca \| Get or set file attributes
2018-12-17T21:52:37.504128459Z	65	PC: 151d1 \| Delete file (Filename = 'chklist.tav')
2018-12-17T21:52:37.508203582Z	67	PC: 151ca \| Get or set file attributes
2018-12-17T21:52:37.513686855Z	65	PC: 151d1 \| Delete file (Filename = 'chklist.cps')
2018-12-17T21:52:37.519756933Z	67	PC: 151ca \| Get or set file attributes
2018-12-17T21:52:37.530611692Z	65	PC: 151d1 \| Delete file (Filename = 'anti-vir.dat')
2018-12-17T21:52:37.541312646Z	67	PC: 151ca \| Get or set file attributes
2018-12-17T21:52:37.555074743Z	65	PC: 151d1 \| Delete file (Filename = 'chklist.ms')
2018-12-17T21:52:37.562103005Z	53	PC: 15265 \| Get interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T21:52:37.563188699Z	37	PC: 15274 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T21:52:37.564217754Z	53	PC: 15265 \| Get interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T21:52:37.566157372Z	37	PC: 15274 \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T21:52:37.567463144Z	53	PC: 15265 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T21:52:37.568774984Z	37	PC: 15274 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T21:52:37.57039765Z	47	PC: 15463 \| Get disk transfer address
2018-12-17T21:52:37.571421938Z	26	PC: 15472 \| Set disk transfer address
2018-12-17T21:52:37.572926816Z	78	PC: 15328 \| Find first file
2018-12-17T21:52:37.581982931Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:37.584384554Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:37.586655757Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:37.589594086Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:37.591845968Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:37.594157924Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:37.597474565Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:37.600187027Z	67	PC: 15361 \| Get or set file attributes
2018-12-17T21:52:37.606103266Z	67	PC: 15371 \| Get or set file attributes
2018-12-17T21:52:37.825134056Z	61	PC: 15380 \| Open file (Filename = 'TEST.COM')
2018-12-17T21:52:37.831605694Z	87	PC: 1538e \| Get or set file date and time
2018-12-17T21:52:37.83294743Z	63	PC: 153a0 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T21:52:37.840003288Z	87	PC: 15427 \| Get or set file date and time
2018-12-17T21:52:37.841487089Z	62	PC: 1542b \| Close file
2018-12-17T21:52:37.848425024Z	67	PC: 15438 \| Get or set file attributes
2018-12-17T21:52:37.859388261Z	78	PC: 15328 \| Find first file
2018-12-17T21:52:37.865940571Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:37.868665034Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:37.872162127Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:37.875188648Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:37.877884194Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:37.880717941Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:37.884126116Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:37.886467083Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:37.888991406Z	78	PC: 15328 \| Find first file
2018-12-17T21:52:37.898999578Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:37.902024304Z	67	PC: 15361 \| Get or set file attributes
2018-12-17T21:52:37.908953264Z	67	PC: 15371 \| Get or set file attributes
2018-12-17T21:52:38.574388086Z	61	PC: 15380 \| Open file (Filename = 'C:\DOS\FORMAT.COM')
2018-12-17T21:52:38.581681455Z	87	PC: 1538e \| Get or set file date and time
2018-12-17T21:52:38.583485379Z	63	PC: 153a0 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T21:52:38.590880079Z	66	PC: 153da \| Move file pointer
2018-12-17T21:52:38.592332711Z	64	PC: 153fd \| Write file or device (Write 839 bytes on handle 5)
2018-12-17T21:52:38.600051045Z	66	PC: 1540a \| Move file pointer
2018-12-17T21:52:38.601711545Z	64	PC: 15416 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T21:52:38.604309698Z	87	PC: 15427 \| Get or set file date and time
2018-12-17T21:52:38.605629151Z	62	PC: 1542b \| Close file
2018-12-17T21:52:38.613118263Z	67	PC: 15438 \| Get or set file attributes
2018-12-17T21:52:38.622976479Z	78	PC: 15328 \| Find first file
2018-12-17T21:52:38.62988958Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.633259275Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.635818221Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.638311434Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.641605765Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.644030811Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.64637607Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.649154722Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.651530814Z	78	PC: 15328 \| Find first file
2018-12-17T21:52:38.657598403Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.661119749Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.66424965Z	67	PC: 15361 \| Get or set file attributes
2018-12-17T21:52:38.670086341Z	67	PC: 15371 \| Get or set file attributes
2018-12-17T21:52:38.68059864Z	61	PC: 15380 \| Open file (Filename = 'C:\DOS\KEYB.COM')
2018-12-17T21:52:38.687632734Z	87	PC: 1538e \| Get or set file date and time
2018-12-17T21:52:38.689399198Z	63	PC: 153a0 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T21:52:38.696547151Z	66	PC: 153da \| Move file pointer
2018-12-17T21:52:38.697872874Z	64	PC: 153fd \| Write file or device (Write 839 bytes on handle 5)
2018-12-17T21:52:38.706909787Z	66	PC: 1540a \| Move file pointer
2018-12-17T21:52:38.708634734Z	64	PC: 15416 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T21:52:38.711251426Z	87	PC: 15427 \| Get or set file date and time
2018-12-17T21:52:38.712583547Z	62	PC: 1542b \| Close file
2018-12-17T21:52:38.719800389Z	67	PC: 15438 \| Get or set file attributes
2018-12-17T21:52:38.729294668Z	78	PC: 15328 \| Find first file
2018-12-17T21:52:38.734910714Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.737673204Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.740114136Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.742467807Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.74530137Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.747517437Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.749739859Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.752555417Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.755023318Z	78	PC: 15328 \| Find first file
2018-12-17T21:52:38.76237446Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.765899615Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.768792881Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.774655565Z	67	PC: 15361 \| Get or set file attributes
2018-12-17T21:52:38.781393465Z	67	PC: 15371 \| Get or set file attributes
2018-12-17T21:52:38.788158001Z	61	PC: 15380 \| Open file (Filename = 'C:\DOS\SYS.COM')
2018-12-17T21:52:38.7951192Z	87	PC: 1538e \| Get or set file date and time
2018-12-17T21:52:38.797119709Z	63	PC: 153a0 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T21:52:38.80236919Z	66	PC: 153da \| Move file pointer
2018-12-17T21:52:38.803580727Z	64	PC: 153fd \| Write file or device (Write 839 bytes on handle 5)
2018-12-17T21:52:38.812435338Z	66	PC: 1540a \| Move file pointer
2018-12-17T21:52:38.813727649Z	64	PC: 15416 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T21:52:38.816286994Z	87	PC: 15427 \| Get or set file date and time
2018-12-17T21:52:38.817943225Z	62	PC: 1542b \| Close file
2018-12-17T21:52:38.824520119Z	67	PC: 15438 \| Get or set file attributes
2018-12-17T21:52:38.834539509Z	78	PC: 15328 \| Find first file
2018-12-17T21:52:38.840357192Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.843153907Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.845470805Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.848023021Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.850609321Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.852842908Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.855269974Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.857615349Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.859708675Z	78	PC: 15328 \| Find first file
2018-12-17T21:52:38.865755226Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.868509236Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.871215844Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.874063246Z	79	PC: 1532e \| Find next file
2018-12-17T21:52:38.880097252Z	26	PC: 151a7 \| Set disk transfer address
2018-12-17T21:52:38.881083769Z	37	PC: 1529d \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T21:52:38.883075844Z	37	PC: 1529d \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T21:52:38.884554811Z	37	PC: 1529d \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T21:52:38.887469509Z	9	PC: 12bb5 \| Display string (String= '')
2018-12-17T21:52:38.889637392Z	9	PC: 12bbc \| Display string (Could not find end pointer)
2018-12-17T21:52:38.900730519Z	76	PC: 12bd2 \| Terminate with return code (Return code = '0')