Sample viewer

vx.netlux.org/Virus.DOS.HLLP.Gravanda.10272

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:14:58.293720257Z	53	PC: 142da \| Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:14:58.295424471Z	53	PC: 142da \| Get interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:14:58.296809223Z	53	PC: 142da \| Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:14:58.297963141Z	53	PC: 142da \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:14:58.300232495Z	53	PC: 142da \| Get interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:14:58.301602457Z	53	PC: 142da \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:14:58.302612846Z	53	PC: 142da \| Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:14:58.304083042Z	53	PC: 142da \| Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:14:58.305638575Z	53	PC: 142da \| Get interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:14:58.306970816Z	53	PC: 142da \| Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:14:58.30854713Z	53	PC: 142da \| Get interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:14:58.310675753Z	53	PC: 142da \| Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:14:58.31246919Z	53	PC: 142da \| Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:14:58.314222864Z	53	PC: 142da \| Get interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:14:58.316126944Z	53	PC: 142da \| Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:14:58.317284983Z	53	PC: 142da \| Get interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:14:58.318511985Z	53	PC: 142da \| Get interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:14:58.320243037Z	53	PC: 142da \| Get interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:14:58.321512364Z	53	PC: 142da \| Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:14:58.323172657Z	37	PC: 142ef \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:14:58.331985936Z	37	PC: 142f7 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:14:58.333333074Z	37	PC: 142ff \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:14:58.334438977Z	37	PC: 14307 \| Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:14:58.336447744Z	68	PC: 14e6d \| I/O control for devices (Set for = '��d��`�!s��%�3��'��B�%�d��0��>s')
2018-12-17T22:14:58.474229172Z	64	PC: 1469d \| Write file or device (Write 0 bytes on handle 1)
2018-12-17T22:14:58.476354684Z	37	PC: 14431 \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:14:58.47865245Z	37	PC: 14431 \| Set interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:14:58.479906941Z	37	PC: 14431 \| Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:14:58.48121342Z	37	PC: 14431 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:14:58.482988072Z	37	PC: 14431 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:14:58.484426653Z	37	PC: 14431 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:14:58.485807099Z	37	PC: 14431 \| Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:14:58.487797294Z	37	PC: 14431 \| Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:14:58.488905832Z	37	PC: 14431 \| Set interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:14:58.489970846Z	37	PC: 14431 \| Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:14:58.491822681Z	37	PC: 14431 \| Set interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:14:58.492892419Z	37	PC: 14431 \| Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:14:58.49400598Z	37	PC: 14431 \| Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:14:58.495253637Z	37	PC: 14431 \| Set interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:14:58.49697229Z	37	PC: 14431 \| Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:14:58.498282356Z	37	PC: 14431 \| Set interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:14:58.499455201Z	37	PC: 14431 \| Set interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:14:58.500735102Z	37	PC: 14431 \| Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:14:58.501715716Z	37	PC: 14431 \| Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:14:58.502846379Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.504928289Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.5068627Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.508967784Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.511410822Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.513327784Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.515404366Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.517499636Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.519377783Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.521537868Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.523198745Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.524715584Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.526317574Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.528130697Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.529602258Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.531548879Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.533206046Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.534778816Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.537076735Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.538713606Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.540642091Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.542737698Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.545221772Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.547295525Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.549337745Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.55140981Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.553558024Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.555837014Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.558686502Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.56121522Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.563590705Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.567020307Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.56923354Z	6	PC: 144b8 \| Direct console I/O
2018-12-17T22:14:58.572992332Z	76	PC: 14470 \| Terminate with return code (Return code = '200')