Sample viewer

vx.netlux.org/Virus.DOS.HLLP.Irus.5333

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:17:25.251642975Z 53 PC: 1308a | Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:17:25.2527559Z 53 PC: 1308a | Get interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:17:25.254933007Z 53 PC: 1308a | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:17:25.256021322Z 53 PC: 1308a | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:17:25.257099979Z 53 PC: 1308a | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:17:25.258876948Z 53 PC: 1308a | Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:17:25.260078974Z 53 PC: 1308a | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:17:25.26114869Z 53 PC: 1308a | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:17:25.262842132Z 53 PC: 1308a | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:17:25.274971849Z 53 PC: 1308a | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:17:25.276253084Z 53 PC: 1308a | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:17:25.277948689Z 53 PC: 1308a | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:17:25.279631766Z 53 PC: 1308a | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:17:25.281654194Z 53 PC: 1308a | Get interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:17:25.283696251Z 53 PC: 1308a | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:17:25.284883982Z 53 PC: 1308a | Get interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:17:25.286053585Z 53 PC: 1308a | Get interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:17:25.287590954Z 53 PC: 1308a | Get interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:17:25.288907079Z 53 PC: 1308a | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:17:25.290270235Z 37 PC: 1309f | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:17:25.29207011Z 37 PC: 130a7 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:17:25.293295867Z 37 PC: 130af | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:17:25.294575228Z 37 PC: 130b7 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:17:25.297015149Z 68 PC: 13c59 | I/O control for devices (Set for = '[��� ')
2018-12-17T22:17:25.299051923Z 25 PC: 1392b | Get default drive
2018-12-17T22:17:25.300298679Z 71 PC: 1393e | Get current directory
2018-12-17T22:17:25.305078975Z 26 PC: 12fd7 | Set disk transfer address
2018-12-17T22:17:25.306480539Z 78 PC: 12fe3 | Find first file
2018-12-17T22:17:25.312939123Z 26 PC: 12ffb | Set disk transfer address
2018-12-17T22:17:25.31438568Z 79 PC: 13000 | Find next file
2018-12-17T22:17:25.317419614Z 26 PC: 12ffb | Set disk transfer address
2018-12-17T22:17:25.318648161Z 79 PC: 13000 | Find next file
2018-12-17T22:17:25.322154997Z 26 PC: 12ffb | Set disk transfer address
2018-12-17T22:17:25.33358295Z 79 PC: 13000 | Find next file
2018-12-17T22:17:25.336120963Z 26 PC: 12ffb | Set disk transfer address
2018-12-17T22:17:25.337539353Z 79 PC: 13000 | Find next file
2018-12-17T22:17:25.340070702Z 26 PC: 12ffb | Set disk transfer address
2018-12-17T22:17:25.340985908Z 79 PC: 13000 | Find next file
2018-12-17T22:17:25.343663906Z 26 PC: 12ffb | Set disk transfer address
2018-12-17T22:17:25.344936067Z 79 PC: 13000 | Find next file
2018-12-17T22:17:25.347547201Z 26 PC: 12ffb | Set disk transfer address
2018-12-17T22:17:25.348789996Z 79 PC: 13000 | Find next file
2018-12-17T22:17:25.351486775Z 26 PC: 12ffb | Set disk transfer address
2018-12-17T22:17:25.352567731Z 79 PC: 13000 | Find next file
2018-12-17T22:17:25.355357621Z 26 PC: 12ffb | Set disk transfer address
2018-12-17T22:17:25.356979888Z 79 PC: 13000 | Find next file
2018-12-17T22:17:25.360366223Z 26 PC: 12ffb | Set disk transfer address
2018-12-17T22:17:25.361470279Z 79 PC: 13000 | Find next file
2018-12-17T22:17:25.364692278Z 26 PC: 12ffb | Set disk transfer address
2018-12-17T22:17:25.365789583Z 79 PC: 13000 | Find next file
2018-12-17T22:17:25.368383941Z 26 PC: 12ffb | Set disk transfer address
2018-12-17T22:17:25.369972542Z 79 PC: 13000 | Find next file
2018-12-17T22:17:25.372572168Z 26 PC: 12ffb | Set disk transfer address
2018-12-17T22:17:25.373665072Z 79 PC: 13000 | Find next file
2018-12-17T22:17:25.376904785Z 26 PC: 12ffb | Set disk transfer address
2018-12-17T22:17:25.378166425Z 79 PC: 13000 | Find next file
2018-12-17T22:17:25.380867858Z 26 PC: 12ffb | Set disk transfer address
2018-12-17T22:17:25.38222725Z 79 PC: 13000 | Find next file
2018-12-17T22:17:25.384717487Z 64 PC: 134a8 | Write file or device (Write 42 bytes on handle 1)
2018-12-17T22:17:25.389310896Z 14 PC: 13984 | Set default drive (Drive = 'A')
2018-12-17T22:17:25.391844675Z 25 PC: 13988 | Get default drive
2018-12-17T22:17:25.392863858Z 59 PC: 139f2 | Change current directory
2018-12-17T22:17:25.397323801Z 64 PC: 134a8 | Write file or device (Write 0 bytes on handle 1)
2018-12-17T22:17:25.399986248Z 37 PC: 131e1 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:17:25.401028751Z 37 PC: 131e1 | Set interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:17:25.402218815Z 37 PC: 131e1 | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:17:25.404033297Z 37 PC: 131e1 | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:17:25.405360559Z 37 PC: 131e1 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:17:25.406421579Z 37 PC: 131e1 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:17:25.408482129Z 37 PC: 131e1 | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:17:25.409517781Z 37 PC: 131e1 | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:17:25.410527009Z 37 PC: 131e1 | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:17:25.412226168Z 37 PC: 131e1 | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:17:25.41348391Z 37 PC: 131e1 | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:17:25.41471838Z 37 PC: 131e1 | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:17:25.416937146Z 37 PC: 131e1 | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:17:25.418258399Z 37 PC: 131e1 | Set interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:17:25.419562169Z 37 PC: 131e1 | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:17:25.42187417Z 37 PC: 131e1 | Set interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:17:25.423216142Z 37 PC: 131e1 | Set interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:17:25.424544052Z 37 PC: 131e1 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:17:25.426868462Z 37 PC: 131e1 | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:17:25.428324138Z 76 PC: 13220 | Terminate with return code (Return code = '0')