Sample viewer

vx.netlux.org/Virus.DOS.Vengence.435

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:15:38.323651207Z 44 PC: 12ac3 | Get time 0x12ac3: cmp ch, 0xc
0x12ac6: jne 0x12ae2
0x12ac8: nop
0x12ac9: nop
0x12aca: nop
0x12acb: cmp cl, 0
0x12ace: jne 0x12ae2
0x12ad0: nop
0x12ad1: nop
0x12ad2: nop
0x12ad3: push dx
0x12ad4: mov ah, 9
0x12ad6: mov dx, 0x21a
0x12ad9: int 0x21
0x12adb: pop dx
0x12adc: mov ah, 0x2d
0x12ade: inc ch
0x12ae0: int 0x21
0x12ae2: mov dx, 0x215
0x12ae5: mov ah, 0x4e
2018-12-17T22:15:38.326833764Z 78 PC: 12ae9 | Find first file
2018-12-17T22:15:38.333633022Z 61 PC: 12afa | Open file (Filename = 'SLEEP.COM')
2018-12-17T22:15:38.337918635Z 87 PC: 12b0b | Get or set file date and time
2018-12-17T22:15:38.34036408Z 64 PC: 12b2a | Write file or device (Write 435 bytes on handle 5)
2018-12-17T22:15:38.346940391Z 87 PC: 12b40 | Get or set file date and time
2018-12-17T22:15:38.348658293Z 62 PC: 12b4d | Close file
2018-12-17T22:15:38.362403671Z 79 PC: 12b51 | Find next file
2018-12-17T22:15:38.372393095Z 61 PC: 12afa | Open file (Filename = 'PRINT.COM')
2018-12-17T22:15:38.379033882Z 87 PC: 12b0b | Get or set file date and time
2018-12-17T22:15:38.380362668Z 64 PC: 12b2a | Write file or device (Write 435 bytes on handle 5)
2018-12-17T22:15:38.388063344Z 87 PC: 12b40 | Get or set file date and time
2018-12-17T22:15:38.389654053Z 62 PC: 12b4d | Close file
2018-12-17T22:15:38.397317213Z 79 PC: 12b51 | Find next file
2018-12-17T22:15:38.400633232Z 61 PC: 12afa | Open file (Filename = 'HELLO.COM')
2018-12-17T22:15:38.406688001Z 87 PC: 12b0b | Get or set file date and time
2018-12-17T22:15:38.40802565Z 64 PC: 12b2a | Write file or device (Write 435 bytes on handle 5)
2018-12-17T22:15:38.425634678Z 87 PC: 12b40 | Get or set file date and time
2018-12-17T22:15:38.427332683Z 62 PC: 12b4d | Close file
2018-12-17T22:15:38.434639241Z 79 PC: 12b51 | Find next file
2018-12-17T22:15:38.446572379Z 61 PC: 12afa | Open file (Filename = 'PHANG.COM')
2018-12-17T22:15:38.453708266Z 87 PC: 12b0b | Get or set file date and time
2018-12-17T22:15:38.455164126Z 64 PC: 12b2a | Write file or device (Write 435 bytes on handle 5)
2018-12-17T22:15:38.462198285Z 87 PC: 12b40 | Get or set file date and time
2018-12-17T22:15:38.46486649Z 62 PC: 12b4d | Close file
2018-12-17T22:15:38.474763825Z 79 PC: 12b51 | Find next file
2018-12-17T22:15:38.481145611Z 61 PC: 12afa | Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:15:38.488531493Z 87 PC: 12b0b | Get or set file date and time
2018-12-17T22:15:38.49013081Z 64 PC: 12b2a | Write file or device (Write 435 bytes on handle 5)
2018-12-17T22:15:38.500469691Z 87 PC: 12b40 | Get or set file date and time
2018-12-17T22:15:38.502642799Z 62 PC: 12b4d | Close file
2018-12-17T22:15:38.509861186Z 79 PC: 12b51 | Find next file
2018-12-17T22:15:38.512411263Z 61 PC: 12afa | Open file (Filename = 'MANDEL.COM')
2018-12-17T22:15:38.522259684Z 87 PC: 12b0b | Get or set file date and time
2018-12-17T22:15:38.528724095Z 64 PC: 12b2a | Write file or device (Write 435 bytes on handle 5)
2018-12-17T22:15:38.541024468Z 87 PC: 12b40 | Get or set file date and time
2018-12-17T22:15:38.543711759Z 62 PC: 12b4d | Close file
2018-12-17T22:15:38.551309875Z 79 PC: 12b51 | Find next file
2018-12-17T22:15:38.554352877Z 61 PC: 12afa | Open file (Filename = 'PAH.COM')
2018-12-17T22:15:38.561583147Z 87 PC: 12b0b | Get or set file date and time
2018-12-17T22:15:38.563215213Z 64 PC: 12b2a | Write file or device (Write 435 bytes on handle 5)
2018-12-17T22:15:38.569732883Z 87 PC: 12b40 | Get or set file date and time
2018-12-17T22:15:38.572195265Z 62 PC: 12b4d | Close file
2018-12-17T22:15:38.57937429Z 79 PC: 12b51 | Find next file
2018-12-17T22:15:38.582141028Z 61 PC: 12afa | Open file (Filename = 'TEST.COM')
2018-12-17T22:15:38.58938561Z 87 PC: 12b0b | Get or set file date and time
2018-12-17T22:15:38.591360786Z 64 PC: 12b2a | Write file or device (Write 435 bytes on handle 5)
2018-12-17T22:15:38.593435757Z 87 PC: 12b40 | Get or set file date and time
2018-12-17T22:15:38.594859578Z 62 PC: 12b4d | Close file
2018-12-17T22:15:38.600437077Z 79 PC: 12b51 | Find next file

{"DateBased":false,"Day":0,"Month":0,"Year":0,"Hour":0,"Min":0,"Second":0,"TimeBased":true,"OriginalID":2850,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T11:47:24.309067152Z 44 PC: 12ac3 | Get time 0x12ac3: cmp ch, 0xc
0x12ac6: jne 0x12ae2
0x12ac8: nop
0x12ac9: nop
0x12aca: nop
0x12acb: cmp cl, 0
0x12ace: jne 0x12ae2
0x12ad0: nop
0x12ad1: nop
0x12ad2: nop
0x12ad3: push dx
0x12ad4: mov ah, 9
0x12ad6: mov dx, 0x21a
0x12ad9: int 0x21
0x12adb: pop dx
0x12adc: mov ah, 0x2d
0x12ade: inc ch
0x12ae0: int 0x21
0x12ae2: mov dx, 0x215
0x12ae5: mov ah, 0x4e
2018-12-25T11:47:24.312588795Z 78 PC: 12ae9 | Find first file
2018-12-25T11:47:24.328681873Z 61 PC: 12afa | Open file (Filename = 'SLEEP.COM')
2018-12-25T11:47:24.335243185Z 87 PC: 12b0b | Get or set file date and time
2018-12-25T11:47:24.337768267Z 64 PC: 12b2a | Write file or device (Write 435 bytes on handle 5)
2018-12-25T11:47:24.344519027Z 87 PC: 12b40 | Get or set file date and time
2018-12-25T11:47:24.346038456Z 62 PC: 12b4d | Close file
2018-12-25T11:47:24.359377365Z 79 PC: 12b51 | Find next file
2018-12-25T11:47:24.362765202Z 61 PC: 12afa | Open file (See above)
2018-12-25T11:47:24.373826935Z 87 PC: 12b0b | Get or set file date and time (See above)
2018-12-25T11:47:24.375597411Z 64 PC: 12b2a | Write file or device (See above)
2018-12-25T11:47:24.383086392Z 87 PC: 12b40 | Get or set file date and time (See above)
2018-12-25T11:47:24.384490973Z 62 PC: 12b4d | Close file (See above)
2018-12-25T11:47:24.391604198Z 79 PC: 12b51 | Find next file (See above)
2018-12-25T11:47:24.394515374Z 61 PC: 12afa | Open file (See above)
2018-12-25T11:47:24.400909036Z 87 PC: 12b0b | Get or set file date and time (See above)
2018-12-25T11:47:24.402277459Z 64 PC: 12b2a | Write file or device (See above)
2018-12-25T11:47:24.409277383Z 87 PC: 12b40 | Get or set file date and time (See above)
2018-12-25T11:47:24.410824225Z 62 PC: 12b4d | Close file (See above)
2018-12-25T11:47:24.418943635Z 79 PC: 12b51 | Find next file (See above)
2018-12-25T11:47:24.421981896Z 61 PC: 12afa | Open file (See above)
2018-12-25T11:47:24.434056212Z 87 PC: 12b0b | Get or set file date and time (See above)
2018-12-25T11:47:24.435911804Z 64 PC: 12b2a | Write file or device (See above)
2018-12-25T11:47:24.442916677Z 87 PC: 12b40 | Get or set file date and time (See above)
2018-12-25T11:47:24.445583759Z 62 PC: 12b4d | Close file (See above)
2018-12-25T11:47:24.452981632Z 79 PC: 12b51 | Find next file (See above)
2018-12-25T11:47:24.455759429Z 61 PC: 12afa | Open file (See above)
2018-12-25T11:47:24.467112407Z 87 PC: 12b0b | Get or set file date and time (See above)
2018-12-25T11:47:24.471836548Z 64 PC: 12b2a | Write file or device (See above)
2018-12-25T11:47:24.478858613Z 87 PC: 12b40 | Get or set file date and time (See above)
2018-12-25T11:47:24.480857112Z 62 PC: 12b4d | Close file (See above)
2018-12-25T11:47:24.486909978Z 79 PC: 12b51 | Find next file (See above)
2018-12-25T11:47:24.489263901Z 61 PC: 12afa | Open file (See above)
2018-12-25T11:47:24.495570465Z 87 PC: 12b0b | Get or set file date and time (See above)
2018-12-25T11:47:24.496882876Z 64 PC: 12b2a | Write file or device (See above)
2018-12-25T11:47:24.502138005Z 87 PC: 12b40 | Get or set file date and time (See above)
2018-12-25T11:47:24.504057042Z 62 PC: 12b4d | Close file (See above)
2018-12-25T11:47:24.51000244Z 79 PC: 12b51 | Find next file (See above)
2018-12-25T11:47:24.512229172Z 61 PC: 12afa | Open file (See above)
2018-12-25T11:47:24.518033869Z 87 PC: 12b0b | Get or set file date and time (See above)
2018-12-25T11:47:24.519205777Z 64 PC: 12b2a | Write file or device (See above)
2018-12-25T11:47:24.524646776Z 87 PC: 12b40 | Get or set file date and time (See above)
2018-12-25T11:47:24.52669006Z 62 PC: 12b4d | Close file (See above)
2018-12-25T11:47:24.532654454Z 79 PC: 12b51 | Find next file (See above)
2018-12-25T11:47:24.5347492Z 61 PC: 12afa | Open file (See above)
2018-12-25T11:47:24.542135458Z 87 PC: 12b0b | Get or set file date and time (See above)
2018-12-25T11:47:24.543477004Z 64 PC: 12b2a | Write file or device (See above)
2018-12-25T11:47:24.549921386Z 87 PC: 12b40 | Get or set file date and time (See above)
2018-12-25T11:47:24.551882394Z 62 PC: 12b4d | Close file (See above)
2018-12-25T11:47:24.557992322Z 79 PC: 12b51 | Find next file (See above)

{"DateBased":false,"Day":0,"Month":0,"Year":0,"Hour":12,"Min":0,"Second":0,"TimeBased":true,"OriginalID":2850,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T11:47:24.624619553Z 44 PC: 12ac3 | Get time 0x12ac3: cmp ch, 0xc
0x12ac6: jne 0x12ae2
0x12ac8: nop
0x12ac9: nop
0x12aca: nop
0x12acb: cmp cl, 0
0x12ace: jne 0x12ae2
0x12ad0: nop
0x12ad1: nop
0x12ad2: nop
0x12ad3: push dx
0x12ad4: mov ah, 9
0x12ad6: mov dx, 0x21a
0x12ad9: int 0x21
0x12adb: pop dx
0x12adc: mov ah, 0x2d
0x12ade: inc ch
0x12ae0: int 0x21
0x12ae2: mov dx, 0x215
0x12ae5: mov ah, 0x4e
2018-12-25T11:47:24.627326353Z 9 PC: 12adb | Display string (String= 'Vengence-D virus. Lastest release from Swedish Virus Association. Released 12:th of May 1992. Satan will come and rule his world and his people! ')
2018-12-25T11:47:24.636573146Z 45 PC: 12ae2 | Set time
2018-12-25T11:47:24.639661441Z 78 PC: 12ae9 | Find first file
2018-12-25T11:47:24.651170233Z 61 PC: 12afa | Open file (Filename = 'SLEEP.COM')
2018-12-25T11:47:24.657873577Z 87 PC: 12b0b | Get or set file date and time
2018-12-25T11:47:24.65931352Z 64 PC: 12b2a | Write file or device (Write 435 bytes on handle 5)
2018-12-25T11:47:24.667028772Z 87 PC: 12b40 | Get or set file date and time
2018-12-25T11:47:24.668943824Z 62 PC: 12b4d | Close file
2018-12-25T11:47:24.6841514Z 79 PC: 12b51 | Find next file
2018-12-25T11:47:24.686994005Z 61 PC: 12afa | Open file (See above)
2018-12-25T11:47:24.693803612Z 87 PC: 12b0b | Get or set file date and time (See above)
2018-12-25T11:47:24.69510812Z 64 PC: 12b2a | Write file or device (See above)
2018-12-25T11:47:24.702531167Z 87 PC: 12b40 | Get or set file date and time (See above)
2018-12-25T11:47:24.704874556Z 62 PC: 12b4d | Close file (See above)
2018-12-25T11:47:24.712649565Z 79 PC: 12b51 | Find next file (See above)
2018-12-25T11:47:24.715210306Z 61 PC: 12afa | Open file (See above)
2018-12-25T11:47:24.722274753Z 87 PC: 12b0b | Get or set file date and time (See above)
2018-12-25T11:47:24.7236068Z 64 PC: 12b2a | Write file or device (See above)
2018-12-25T11:47:24.729980051Z 87 PC: 12b40 | Get or set file date and time (See above)
2018-12-25T11:47:24.732847785Z 62 PC: 12b4d | Close file (See above)
2018-12-25T11:47:24.740072643Z 79 PC: 12b51 | Find next file (See above)
2018-12-25T11:47:24.743617802Z 61 PC: 12afa | Open file (See above)
2018-12-25T11:47:24.750875493Z 87 PC: 12b0b | Get or set file date and time (See above)
2018-12-25T11:47:24.752561791Z 64 PC: 12b2a | Write file or device (See above)
2018-12-25T11:47:24.761821301Z 87 PC: 12b40 | Get or set file date and time (See above)
2018-12-25T11:47:24.766001057Z 62 PC: 12b4d | Close file (See above)
2018-12-25T11:47:24.773646929Z 79 PC: 12b51 | Find next file (See above)
2018-12-25T11:47:24.776857897Z 61 PC: 12afa | Open file (See above)
2018-12-25T11:47:24.784230172Z 87 PC: 12b0b | Get or set file date and time (See above)
2018-12-25T11:47:24.786573207Z 64 PC: 12b2a | Write file or device (See above)
2018-12-25T11:47:24.793067722Z 87 PC: 12b40 | Get or set file date and time (See above)
2018-12-25T11:47:24.79452434Z 62 PC: 12b4d | Close file (See above)
2018-12-25T11:47:24.802209158Z 79 PC: 12b51 | Find next file (See above)
2018-12-25T11:47:24.804983799Z 61 PC: 12afa | Open file (See above)
2018-12-25T11:47:24.812128108Z 87 PC: 12b0b | Get or set file date and time (See above)
2018-12-25T11:47:24.814512329Z 64 PC: 12b2a | Write file or device (See above)
2018-12-25T11:47:24.82136334Z 87 PC: 12b40 | Get or set file date and time (See above)
2018-12-25T11:47:24.823420818Z 62 PC: 12b4d | Close file (See above)
2018-12-25T11:47:24.831783483Z 79 PC: 12b51 | Find next file (See above)
2018-12-25T11:47:24.834370151Z 61 PC: 12afa | Open file (See above)
2018-12-25T11:47:24.841719448Z 87 PC: 12b0b | Get or set file date and time (See above)
2018-12-25T11:47:24.843925105Z 64 PC: 12b2a | Write file or device (See above)
2018-12-25T11:47:24.850511318Z 87 PC: 12b40 | Get or set file date and time (See above)
2018-12-25T11:47:24.851835628Z 62 PC: 12b4d | Close file (See above)
2018-12-25T11:47:24.86007818Z 79 PC: 12b51 | Find next file (See above)
2018-12-25T11:47:24.862632038Z 61 PC: 12afa | Open file (See above)
2018-12-25T11:47:24.868935889Z 87 PC: 12b0b | Get or set file date and time (See above)
2018-12-25T11:47:24.870713178Z 64 PC: 12b2a | Write file or device (See above)
2018-12-25T11:47:24.877242599Z 87 PC: 12b40 | Get or set file date and time (See above)
2018-12-25T11:47:24.879542188Z 62 PC: 12b4d | Close file (See above)
2018-12-25T11:47:24.887414595Z 79 PC: 12b51 | Find next file (See above)

{"DateBased":false,"Day":0,"Month":0,"Year":0,"Hour":12,"Min":1,"Second":0,"TimeBased":true,"OriginalID":2850,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T11:47:26.086039431Z 44 PC: 12ac3 | Get time 0x12ac3: cmp ch, 0xc
0x12ac6: jne 0x12ae2
0x12ac8: nop
0x12ac9: nop
0x12aca: nop
0x12acb: cmp cl, 0
0x12ace: jne 0x12ae2
0x12ad0: nop
0x12ad1: nop
0x12ad2: nop
0x12ad3: push dx
0x12ad4: mov ah, 9
0x12ad6: mov dx, 0x21a
0x12ad9: int 0x21
0x12adb: pop dx
0x12adc: mov ah, 0x2d
0x12ade: inc ch
0x12ae0: int 0x21
0x12ae2: mov dx, 0x215
0x12ae5: mov ah, 0x4e
2018-12-25T11:47:26.088598532Z 78 PC: 12ae9 | Find first file
2018-12-25T11:47:26.094500187Z 61 PC: 12afa | Open file (Filename = 'SLEEP.COM')
2018-12-25T11:47:26.100881883Z 87 PC: 12b0b | Get or set file date and time
2018-12-25T11:47:26.102686273Z 64 PC: 12b2a | Write file or device (Write 435 bytes on handle 5)
2018-12-25T11:47:26.109369917Z 87 PC: 12b40 | Get or set file date and time
2018-12-25T11:47:26.111167481Z 62 PC: 12b4d | Close file
2018-12-25T11:47:26.127596011Z 79 PC: 12b51 | Find next file
2018-12-25T11:47:26.130248623Z 61 PC: 12afa | Open file (See above)
2018-12-25T11:47:26.136587462Z 87 PC: 12b0b | Get or set file date and time (See above)
2018-12-25T11:47:26.138843072Z 64 PC: 12b2a | Write file or device (See above)
2018-12-25T11:47:26.145985371Z 87 PC: 12b40 | Get or set file date and time (See above)
2018-12-25T11:47:26.147518092Z 62 PC: 12b4d | Close file (See above)
2018-12-25T11:47:26.154588618Z 79 PC: 12b51 | Find next file (See above)
2018-12-25T11:47:26.157662839Z 61 PC: 12afa | Open file (See above)
2018-12-25T11:47:26.164119436Z 87 PC: 12b0b | Get or set file date and time (See above)
2018-12-25T11:47:26.165993774Z 64 PC: 12b2a | Write file or device (See above)
2018-12-25T11:47:26.172849474Z 87 PC: 12b40 | Get or set file date and time (See above)
2018-12-25T11:47:26.17414998Z 62 PC: 12b4d | Close file (See above)
2018-12-25T11:47:26.194922108Z 79 PC: 12b51 | Find next file (See above)
2018-12-25T11:47:26.198260073Z 61 PC: 12afa | Open file (See above)
2018-12-25T11:47:26.205062168Z 87 PC: 12b0b | Get or set file date and time (See above)
2018-12-25T11:47:26.206486102Z 64 PC: 12b2a | Write file or device (See above)
2018-12-25T11:47:26.214431186Z 87 PC: 12b40 | Get or set file date and time (See above)
2018-12-25T11:47:26.217137688Z 62 PC: 12b4d | Close file (See above)
2018-12-25T11:47:26.225063344Z 79 PC: 12b51 | Find next file (See above)
2018-12-25T11:47:26.228442517Z 61 PC: 12afa | Open file (See above)
2018-12-25T11:47:26.23528626Z 87 PC: 12b0b | Get or set file date and time (See above)
2018-12-25T11:47:26.237043069Z 64 PC: 12b2a | Write file or device (See above)
2018-12-25T11:47:26.244798294Z 87 PC: 12b40 | Get or set file date and time (See above)
2018-12-25T11:47:26.246294407Z 62 PC: 12b4d | Close file (See above)
2018-12-25T11:47:26.253114691Z 79 PC: 12b51 | Find next file (See above)
2018-12-25T11:47:26.25773129Z 61 PC: 12afa | Open file (See above)
2018-12-25T11:47:26.264159258Z 87 PC: 12b0b | Get or set file date and time (See above)
2018-12-25T11:47:26.265549187Z 64 PC: 12b2a | Write file or device (See above)
2018-12-25T11:47:26.27276789Z 87 PC: 12b40 | Get or set file date and time (See above)
2018-12-25T11:47:26.274558084Z 62 PC: 12b4d | Close file (See above)
2018-12-25T11:47:26.282112591Z 79 PC: 12b51 | Find next file (See above)
2018-12-25T11:47:26.290472084Z 61 PC: 12afa | Open file (See above)
2018-12-25T11:47:26.297328351Z 87 PC: 12b0b | Get or set file date and time (See above)
2018-12-25T11:47:26.298963213Z 64 PC: 12b2a | Write file or device (See above)
2018-12-25T11:47:26.306495324Z 87 PC: 12b40 | Get or set file date and time (See above)
2018-12-25T11:47:26.308632262Z 62 PC: 12b4d | Close file (See above)
2018-12-25T11:47:26.315989508Z 79 PC: 12b51 | Find next file (See above)
2018-12-25T11:47:26.31889337Z 61 PC: 12afa | Open file (See above)
2018-12-25T11:47:26.326559503Z 87 PC: 12b0b | Get or set file date and time (See above)
2018-12-25T11:47:26.328231364Z 64 PC: 12b2a | Write file or device (See above)
2018-12-25T11:47:26.331294496Z 87 PC: 12b40 | Get or set file date and time (See above)
2018-12-25T11:47:26.333631307Z 62 PC: 12b4d | Close file (See above)
2018-12-25T11:47:26.34167294Z 79 PC: 12b51 | Find next file (See above)