Sample viewer

vx.netlux.org/Virus.DOS.HLLW.Grana.11440

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:19:04.86784871Z	53	PC: 144aa \| Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:19:04.870372112Z	53	PC: 144aa \| Get interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:19:04.871537371Z	53	PC: 144aa \| Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:19:04.872676578Z	53	PC: 144aa \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:19:04.873837835Z	53	PC: 144aa \| Get interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:19:04.875363045Z	53	PC: 144aa \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:19:04.876610538Z	53	PC: 144aa \| Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:19:04.877950634Z	53	PC: 144aa \| Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:19:04.880275384Z	53	PC: 144aa \| Get interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:19:04.88176283Z	53	PC: 144aa \| Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:19:04.883174151Z	53	PC: 144aa \| Get interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:19:04.885727883Z	53	PC: 144aa \| Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:19:04.887040016Z	53	PC: 144aa \| Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:19:04.888247359Z	53	PC: 144aa \| Get interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:19:04.890467676Z	53	PC: 144aa \| Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:19:04.892641122Z	53	PC: 144aa \| Get interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:19:04.893811021Z	53	PC: 144aa \| Get interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:19:04.895287492Z	53	PC: 144aa \| Get interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:19:04.896803284Z	53	PC: 144aa \| Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:19:04.898153396Z	37	PC: 144bf \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:19:04.89943313Z	37	PC: 144c7 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:19:04.901548642Z	37	PC: 144cf \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:19:04.902639576Z	37	PC: 144d7 \| Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:19:04.904139567Z	68	PC: 15051 \| I/O control for devices (Set for = '硴;�!2��þ�')
2018-12-17T22:19:04.998682876Z	64	PC: 148c8 \| Write file or device (Write 0 bytes on handle 1)
2018-12-17T22:19:05.00035816Z	37	PC: 14601 \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:19:05.001417922Z	37	PC: 14601 \| Set interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:19:05.004586451Z	37	PC: 14601 \| Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:19:05.005762073Z	37	PC: 14601 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:19:05.006864879Z	37	PC: 14601 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:19:05.008848512Z	37	PC: 14601 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:19:05.009927712Z	37	PC: 14601 \| Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:19:05.011005976Z	37	PC: 14601 \| Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:19:05.012769976Z	37	PC: 14601 \| Set interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:19:05.013839817Z	37	PC: 14601 \| Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:19:05.014891218Z	37	PC: 14601 \| Set interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:19:05.01707522Z	37	PC: 14601 \| Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:19:05.018392335Z	37	PC: 14601 \| Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:19:05.01981454Z	37	PC: 14601 \| Set interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:19:05.021768148Z	37	PC: 14601 \| Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:19:05.022920983Z	37	PC: 14601 \| Set interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:19:05.024800258Z	37	PC: 14601 \| Set interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:19:05.026922335Z	37	PC: 14601 \| Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:19:05.02922967Z	37	PC: 14601 \| Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:19:05.030652308Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.033337013Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.035986165Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.037894786Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.04049536Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.042412708Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.044285193Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.05220739Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.054290834Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.05632718Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.058705912Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.060751422Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.062728761Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.065665608Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.067681606Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.069584362Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.072808921Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.074772689Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.076683209Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.079296377Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.081392064Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.083344823Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.087661011Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.090113289Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.092027728Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.094146867Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.096847628Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.098807874Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.10068789Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.102728382Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.104661401Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.106547657Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.108823297Z	6	PC: 14688 \| Direct console I/O
2018-12-17T22:19:05.11294586Z	76	PC: 14640 \| Terminate with return code (Return code = '200')