Sample viewer

vx.netlux.org/Virus.DOS.IVP.Darlene.632

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:15:38.532934031Z	26	PC: 12c46 \| Set disk transfer address
2018-12-17T22:15:38.534963065Z	53	PC: 12a7f \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:15:38.536134545Z	37	PC: 12a91 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:15:38.537197854Z	71	PC: 12a9d \| Get current directory
2018-12-17T22:15:38.540548614Z	78	PC: 12b10 \| Find first file
2018-12-17T22:15:38.547111915Z	78	PC: 12b10 \| Find first file
2018-12-17T22:15:38.558126971Z	61	PC: 12c4f \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:15:38.56504514Z	63	PC: 12b2b \| Read file or device (Read 26 bytes on handle 5)
2018-12-17T22:15:38.571758141Z	62	PC: 12b2f \| Close file
2018-12-17T22:15:38.573473178Z	67	PC: 12c5a \| Get or set file attributes
2018-12-17T22:15:38.591999657Z	61	PC: 12c4f \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:15:38.599379591Z	64	PC: 12c09 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:15:38.602027433Z	66	PC: 12c41 \| Move file pointer
2018-12-17T22:15:38.603317013Z	64	PC: 12c1b \| Write file or device (Write 632 bytes on handle 5)
2018-12-17T22:15:38.613167208Z	87	PC: 12c2a \| Get or set file date and time
2018-12-17T22:15:38.614596175Z	62	PC: 12c2e \| Close file
2018-12-17T22:15:38.621891772Z	67	PC: 12c5a \| Get or set file attributes
2018-12-17T22:15:38.632084413Z	79	PC: 12b10 \| Find next file
2018-12-17T22:15:38.635178288Z	61	PC: 12c4f \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:15:38.641990796Z	63	PC: 12b2b \| Read file or device (Read 26 bytes on handle 5)
2018-12-17T22:15:38.656328529Z	62	PC: 12b2f \| Close file
2018-12-17T22:15:38.65874842Z	67	PC: 12c5a \| Get or set file attributes
2018-12-17T22:15:38.668772355Z	61	PC: 12c4f \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:15:38.675434883Z	64	PC: 12c09 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:15:38.678887999Z	66	PC: 12c41 \| Move file pointer
2018-12-17T22:15:38.680490269Z	64	PC: 12c1b \| Write file or device (Write 632 bytes on handle 5)
2018-12-17T22:15:38.689069114Z	87	PC: 12c2a \| Get or set file date and time
2018-12-17T22:15:38.691100599Z	62	PC: 12c2e \| Close file
2018-12-17T22:15:38.69940185Z	67	PC: 12c5a \| Get or set file attributes
2018-12-17T22:15:38.709012699Z	79	PC: 12b10 \| Find next file
2018-12-17T22:15:38.71246066Z	61	PC: 12c4f \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:15:38.718876303Z	63	PC: 12b2b \| Read file or device (Read 26 bytes on handle 5)
2018-12-17T22:15:38.725058447Z	62	PC: 12b2f \| Close file
2018-12-17T22:15:38.72741121Z	67	PC: 12c5a \| Get or set file attributes
2018-12-17T22:15:38.737795249Z	61	PC: 12c4f \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:15:38.741861822Z	64	PC: 12c09 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:15:38.744186446Z	66	PC: 12c41 \| Move file pointer
2018-12-17T22:15:38.745246737Z	64	PC: 12c1b \| Write file or device (Write 632 bytes on handle 5)
2018-12-17T22:15:38.750350399Z	87	PC: 12c2a \| Get or set file date and time
2018-12-17T22:15:38.75185766Z	62	PC: 12c2e \| Close file
2018-12-17T22:15:38.756699883Z	67	PC: 12c5a \| Get or set file attributes
2018-12-17T22:15:38.762962505Z	79	PC: 12b10 \| Find next file
2018-12-17T22:15:38.765093704Z	61	PC: 12c4f \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:15:38.769224016Z	63	PC: 12b2b \| Read file or device (Read 26 bytes on handle 5)
2018-12-17T22:15:38.77317703Z	62	PC: 12b2f \| Close file
2018-12-17T22:15:38.774794082Z	67	PC: 12c5a \| Get or set file attributes
2018-12-17T22:15:38.781594128Z	61	PC: 12c4f \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:15:38.787747574Z	64	PC: 12c09 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:15:38.790121893Z	66	PC: 12c41 \| Move file pointer
2018-12-17T22:15:38.791394092Z	64	PC: 12c1b \| Write file or device (Write 632 bytes on handle 5)
2018-12-17T22:15:38.799105992Z	87	PC: 12c2a \| Get or set file date and time
2018-12-17T22:15:38.800921259Z	62	PC: 12c2e \| Close file
2018-12-17T22:15:38.808225644Z	67	PC: 12c5a \| Get or set file attributes
2018-12-17T22:15:38.817666592Z	79	PC: 12b10 \| Find next file
2018-12-17T22:15:38.82066236Z	61	PC: 12c4f \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:15:38.827249135Z	63	PC: 12b2b \| Read file or device (Read 26 bytes on handle 5)
2018-12-17T22:15:38.833366823Z	62	PC: 12b2f \| Close file
2018-12-17T22:15:38.835938039Z	67	PC: 12c5a \| Get or set file attributes
2018-12-17T22:15:38.840153414Z	61	PC: 12c4f \| Open file (Filename = 'PRINTA~1.COM�')
2018-12-17T22:15:38.844623144Z	64	PC: 12c09 \| Write file or device (Write 3 bytes on handle 2)
2018-12-17T22:15:38.847579515Z	66	PC: 12c41 \| Move file pointer
2018-12-17T22:15:38.8491337Z	64	PC: 12c1b \| Write file or device (Write 632 bytes on handle 2)
2018-12-17T22:15:38.856910817Z	87	PC: 12c2a \| Get or set file date and time
2018-12-17T22:15:38.858991439Z	62	PC: 12c2e \| Close file
2018-12-17T22:15:38.860969011Z	67	PC: 12c5a \| Get or set file attributes
2018-12-17T22:15:38.865835425Z	79	PC: 12b10 \| Find next file
2018-12-17T22:15:38.868913177Z	61	PC: 12c4f \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:15:38.875663369Z	63	PC: 12b2b \| Read file or device (Read 26 bytes on handle 2)
2018-12-17T22:15:38.882042349Z	62	PC: 12b2f \| Close file
2018-12-17T22:15:38.884720297Z	67	PC: 12c5a \| Get or set file attributes
2018-12-17T22:15:38.897292443Z	61	PC: 12c4f \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:15:38.903867349Z	64	PC: 12c09 \| Write file or device (Write 3 bytes on handle 2)
2018-12-17T22:15:38.910981236Z	66	PC: 12c41 \| Move file pointer
2018-12-17T22:15:38.91275708Z	64	PC: 12c1b \| Write file or device (Write 632 bytes on handle 2)
2018-12-17T22:15:38.921524514Z	87	PC: 12c2a \| Get or set file date and time
2018-12-17T22:15:38.924146863Z	62	PC: 12c2e \| Close file
2018-12-17T22:15:38.932043673Z	67	PC: 12c5a \| Get or set file attributes
2018-12-17T22:15:38.942659023Z	79	PC: 12b10 \| Find next file
2018-12-17T22:15:38.94624754Z	61	PC: 12c4f \| Open file (Filename = 'PAH.COM')
2018-12-17T22:15:38.953589948Z	63	PC: 12b2b \| Read file or device (Read 26 bytes on handle 2)
2018-12-17T22:15:38.959766777Z	62	PC: 12b2f \| Close file
2018-12-17T22:15:38.961819168Z	67	PC: 12c5a \| Get or set file attributes
2018-12-17T22:15:38.971940802Z	61	PC: 12c4f \| Open file (Filename = 'PAH.COM')
2018-12-17T22:15:38.978456606Z	64	PC: 12c09 \| Write file or device (Write 3 bytes on handle 2)
2018-12-17T22:15:38.982082709Z	66	PC: 12c41 \| Move file pointer
2018-12-17T22:15:38.983566158Z	64	PC: 12c1b \| Write file or device (Write 632 bytes on handle 2)
2018-12-17T22:15:38.991594238Z	87	PC: 12c2a \| Get or set file date and time
2018-12-17T22:15:38.993339892Z	62	PC: 12c2e \| Close file
2018-12-17T22:15:39.001564499Z	67	PC: 12c5a \| Get or set file attributes
2018-12-17T22:15:39.012036546Z	79	PC: 12b10 \| Find next file
2018-12-17T22:15:39.015103787Z	61	PC: 12c4f \| Open file (Filename = 'TEST.COM')
2018-12-17T22:15:39.027326871Z	63	PC: 12b2b \| Read file or device (Read 26 bytes on handle 2)
2018-12-17T22:15:39.034413879Z	62	PC: 12b2f \| Close file
2018-12-17T22:15:39.036728984Z	79	PC: 12b10 \| Find next file
2018-12-17T22:15:39.040693373Z	59	PC: 12ab3 \| Change current directory
2018-12-17T22:15:39.045193762Z	9	PC: 12abd \| Display string (String= 'Darlene Conner - Basketball Anyone? MuTaTiON INTERRUPT [NOVEMBER 1994] ')
2018-12-17T22:15:39.054434563Z	37	PC: 12ac7 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:15:39.057043558Z	59	PC: 12ad1 \| Change current directory
2018-12-17T22:15:39.058906282Z	26	PC: 12c46 \| Set disk transfer address