Sample viewer

vx.netlux.org/Trojan.DOS.ICrack

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:15:07.506577772Z	53	PC: 142ba \| Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:15:07.508741923Z	53	PC: 142ba \| Get interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:15:07.509898813Z	53	PC: 142ba \| Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:15:07.510974697Z	53	PC: 142ba \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:15:07.512539311Z	53	PC: 142ba \| Get interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:15:07.521231309Z	53	PC: 142ba \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:15:07.522614413Z	53	PC: 142ba \| Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:15:07.524281168Z	53	PC: 142ba \| Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:15:07.526462452Z	53	PC: 142ba \| Get interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:15:07.527844118Z	53	PC: 142ba \| Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:15:07.52921282Z	53	PC: 142ba \| Get interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:15:07.531693187Z	53	PC: 142ba \| Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:15:07.533152388Z	53	PC: 142ba \| Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:15:07.534582573Z	53	PC: 142ba \| Get interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:15:07.537867893Z	53	PC: 142ba \| Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:15:07.538997532Z	53	PC: 142ba \| Get interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:15:07.540142347Z	53	PC: 142ba \| Get interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:15:07.545004937Z	53	PC: 142ba \| Get interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:15:07.558445949Z	53	PC: 142ba \| Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:15:07.559906933Z	37	PC: 142cf \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:15:07.562292537Z	37	PC: 142d7 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:15:07.563315492Z	37	PC: 142df \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:15:07.564374626Z	37	PC: 142e7 \| Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:15:07.566646555Z	68	PC: 14c7d \| I/O control for devices (Set for = '>�!��')
2018-12-17T22:15:07.769472511Z	64	PC: 146d8 \| Write file or device (Write 0 bytes on handle 1)
2018-12-17T22:15:07.771679304Z	37	PC: 14411 \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:15:07.773947004Z	37	PC: 14411 \| Set interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:15:07.775733666Z	37	PC: 14411 \| Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:15:07.777172691Z	37	PC: 14411 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:15:07.778622239Z	37	PC: 14411 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:15:07.780938285Z	37	PC: 14411 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:15:07.782290352Z	37	PC: 14411 \| Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:15:07.783797944Z	37	PC: 14411 \| Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:15:07.789486136Z	37	PC: 14411 \| Set interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:15:07.790817648Z	37	PC: 14411 \| Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:15:07.79216033Z	37	PC: 14411 \| Set interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:15:07.794185832Z	37	PC: 14411 \| Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:15:07.795543635Z	37	PC: 14411 \| Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:15:07.796894568Z	37	PC: 14411 \| Set interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:15:07.809968083Z	37	PC: 14411 \| Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:15:07.811276889Z	37	PC: 14411 \| Set interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:15:07.812550831Z	37	PC: 14411 \| Set interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:15:07.814806668Z	37	PC: 14411 \| Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:15:07.816165881Z	37	PC: 14411 \| Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:15:07.817534403Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.821155297Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.823289481Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.825348105Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.82858234Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.830905459Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.833248494Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.836303719Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.83865111Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.840932972Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.843983782Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.84630393Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.848635119Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.851747591Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.854162144Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.856654083Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.859903423Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.86235709Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.86474191Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.868006423Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.871073518Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.873479577Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.87649366Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.87892176Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.881346253Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.884724541Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.887176675Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.889467412Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.892849524Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.895750141Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.897996314Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.900501639Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.903027431Z	6	PC: 14498 \| Direct console I/O
2018-12-17T22:15:07.906924445Z	76	PC: 14450 \| Terminate with return code (Return code = '200')