Sample viewer

vx.netlux.org/Virus.DOS.AntiTrace.1334

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:20:44.581031932Z	254	PC: 12e7e \| UNKNOWN!
2018-12-17T22:20:44.582833889Z	48	PC: 12e8a \| Get DOS version
2018-12-17T22:20:44.587026283Z	77	PC: 11fe0 \| Get program return code
2018-12-17T22:20:44.58904086Z	72	PC: 12174 \| Allocate memory
2018-12-17T22:20:44.59213456Z	72	PC: 1218d \| Allocate memory
2018-12-17T22:20:44.596376831Z	37	PC: 123c4 \| Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T22:20:44.598407151Z	37	PC: 123cb \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:20:44.601452906Z	37	PC: 123d2 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:20:44.602752373Z	87	PC: 9f4c2 \| Get or set file date and time
2018-12-17T22:20:44.604285881Z	62	PC: 9f4c2 \| Close file
2018-12-17T22:20:44.607304692Z	62	PC: 9f4c2 \| Close file
2018-12-17T22:20:44.609223644Z	87	PC: 9f4c2 \| Get or set file date and time
2018-12-17T22:20:44.610628646Z	62	PC: 9f4c2 \| Close file
2018-12-17T22:20:44.612446474Z	62	PC: 9f4c2 \| Close file
2018-12-17T22:20:44.614223689Z	62	PC: 9f4c2 \| Close file
2018-12-17T22:20:44.615539118Z	62	PC: 9f4c2 \| Close file
2018-12-17T22:20:44.616948236Z	62	PC: 9f4c2 \| Close file
2018-12-17T22:20:44.618682222Z	62	PC: 9f4c2 \| Close file
2018-12-17T22:20:44.620029236Z	62	PC: 9f4c2 \| Close file
2018-12-17T22:20:44.621693795Z	62	PC: 9f4c2 \| Close file
2018-12-17T22:20:44.623568367Z	62	PC: 9f4c2 \| Close file
2018-12-17T22:20:44.625554946Z	62	PC: 9f4c2 \| Close file
2018-12-17T22:20:44.62736516Z	62	PC: 9f4c2 \| Close file
2018-12-17T22:20:44.630172804Z	62	PC: 9f4c2 \| Close file
2018-12-17T22:20:44.633259731Z	62	PC: 9f4c2 \| Close file
2018-12-17T22:20:44.636526646Z	99	PC: 99cd7 \| Get DBCS lead byte table pointer
2018-12-17T22:20:44.638847695Z	56	PC: 944f9 \| Get or set country info
2018-12-17T22:20:44.641135916Z	64	PC: 99f48 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T22:20:44.645921741Z	25	PC: 94562 \| Get default drive
2018-12-17T22:20:44.648414255Z	71	PC: 967dd \| Get current directory
2018-12-17T22:20:44.65264242Z	64	PC: 99f48 \| Write file or device (Write 3 bytes on handle 1)
2018-12-17T22:20:44.656097874Z	2	PC: 967b2 \| Character output (Char = '3e')
2018-12-17T22:20:44.658647644Z	93	PC: 94620 \| File sharing functions
2018-12-17T22:20:44.661042033Z	93	PC: 94627 \| File sharing functions
2018-12-17T22:20:44.663344715Z	10	PC: 94639 \| Buffered keyboard input
2018-12-17T22:20:59.571023241Z	0	PC: 0 \| Program terminate
2018-12-17T22:21:00.925625003Z	0	PC: 0 \| Program terminate
2018-12-17T22:21:01.028835071Z	64	PC: 99f48 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T22:21:01.034913565Z	41	PC: 946ae \| Parse filename
2018-12-17T22:21:01.037071118Z	41	PC: 9472f \| Parse filename
2018-12-17T22:21:01.039693559Z	41	PC: 9474c \| Parse filename
2018-12-17T22:21:01.043558164Z	26	PC: 97bf7 \| Set disk transfer address
2018-12-17T22:21:01.0455415Z	71	PC: 97df3 \| Get current directory
2018-12-17T22:21:01.053663598Z	78	PC: 9f4c2 \| Find first file
2018-12-17T22:21:01.070949487Z	47	PC: 9f4c2 \| Get disk transfer address
2018-12-17T22:21:01.073583017Z	71	PC: 97c6c \| Get current directory
2018-12-17T22:21:01.079529656Z	73	PC: 97309 \| Release memory
2018-12-17T22:21:01.081168029Z	75	PC: 11821 \| Execute program
2018-12-17T22:21:01.095825748Z	9	PC: 12a47 \| Display string (String= 'Hello, World! ')
2018-12-17T22:21:01.099926719Z	76	PC: 12a4b \| Terminate with return code (Return code = '36')
2018-12-17T22:21:01.106850409Z	77	PC: 11fe0 \| Get program return code
2018-12-17T22:21:01.108619287Z	72	PC: 12174 \| Allocate memory
2018-12-17T22:21:01.110891358Z	72	PC: 1218d \| Allocate memory
2018-12-17T22:21:01.1165569Z	37	PC: 123c4 \| Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T22:21:01.118083036Z	37	PC: 123cb \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:21:01.119719096Z	37	PC: 123d2 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:21:01.121846426Z	87	PC: 9f4c2 \| Get or set file date and time
2018-12-17T22:21:01.123475392Z	62	PC: 9f4c2 \| Close file
2018-12-17T22:21:01.126133564Z	62	PC: 9f4c2 \| Close file
2018-12-17T22:21:01.129036595Z	87	PC: 9f4c2 \| Get or set file date and time
2018-12-17T22:21:01.13161192Z	62	PC: 9f4c2 \| Close file
2018-12-17T22:21:01.13383374Z	62	PC: 9f4c2 \| Close file
2018-12-17T22:21:01.136399165Z	62	PC: 9f4c2 \| Close file
2018-12-17T22:21:01.138370566Z	62	PC: 9f4c2 \| Close file
2018-12-17T22:21:01.140293989Z	62	PC: 9f4c2 \| Close file
2018-12-17T22:21:01.15378478Z	62	PC: 9f4c2 \| Close file
2018-12-17T22:21:01.156120072Z	62	PC: 9f4c2 \| Close file
2018-12-17T22:21:01.158018465Z	62	PC: 9f4c2 \| Close file
2018-12-17T22:21:01.160985141Z	62	PC: 9f4c2 \| Close file
2018-12-17T22:21:01.162847638Z	62	PC: 9f4c2 \| Close file
2018-12-17T22:21:01.164712025Z	62	PC: 9f4c2 \| Close file
2018-12-17T22:21:01.168284944Z	62	PC: 9f4c2 \| Close file
2018-12-17T22:21:01.170110251Z	62	PC: 9f4c2 \| Close file
2018-12-17T22:21:01.173186513Z	99	PC: 99cd7 \| Get DBCS lead byte table pointer
2018-12-17T22:21:01.17602542Z	56	PC: 944f9 \| Get or set country info
2018-12-17T22:21:01.17803971Z	64	PC: 99f48 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T22:21:01.182568725Z	25	PC: 94562 \| Get default drive
2018-12-17T22:21:01.185353405Z	71	PC: 967dd \| Get current directory
2018-12-17T22:21:01.189500994Z	64	PC: 99f48 \| Write file or device (Write 3 bytes on handle 1)
2018-12-17T22:21:01.19271311Z	2	PC: 967b2 \| Character output (Char = '3e')
2018-12-17T22:21:01.195232719Z	93	PC: 94620 \| File sharing functions
2018-12-17T22:21:01.197064687Z	93	PC: 94627 \| File sharing functions
2018-12-17T22:21:01.199386527Z	10	PC: 94639 \| Buffered keyboard input