Sample viewer

vx.netlux.org/Virus.DOS.HtTM.638

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:21:44.280824907Z	26	PC: 1519c \| Set disk transfer address
2018-12-17T22:21:44.282419294Z	71	PC: 151a6 \| Get current directory
2018-12-17T22:21:44.285251095Z	53	PC: 151b0 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:21:44.286414951Z	37	PC: 151c0 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:21:44.287962445Z	78	PC: 15243 \| Find first file
2018-12-17T22:21:44.294056374Z	78	PC: 15243 \| Find first file
2018-12-17T22:21:44.301483499Z	61	PC: 153bf \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:21:44.316631504Z	63	PC: 15255 \| Read file or device (Read 26 bytes on handle 5)
2018-12-17T22:21:44.321844852Z	62	PC: 15259 \| Close file
2018-12-17T22:21:44.323128268Z	79	PC: 15243 \| Find next file
2018-12-17T22:21:44.333845439Z	61	PC: 153bf \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:21:44.34420646Z	63	PC: 15255 \| Read file or device (Read 26 bytes on handle 5)
2018-12-17T22:21:44.351088767Z	62	PC: 15259 \| Close file
2018-12-17T22:21:44.353671405Z	79	PC: 15243 \| Find next file
2018-12-17T22:21:44.356042123Z	61	PC: 153bf \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:21:44.362313358Z	63	PC: 15255 \| Read file or device (Read 26 bytes on handle 5)
2018-12-17T22:21:44.369204779Z	62	PC: 15259 \| Close file
2018-12-17T22:21:44.37055076Z	79	PC: 15243 \| Find next file
2018-12-17T22:21:44.372289187Z	61	PC: 153bf \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:21:44.376894497Z	63	PC: 15255 \| Read file or device (Read 26 bytes on handle 5)
2018-12-17T22:21:44.380830459Z	62	PC: 15259 \| Close file
2018-12-17T22:21:44.382054649Z	79	PC: 15243 \| Find next file
2018-12-17T22:21:44.38416574Z	61	PC: 153bf \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:21:44.388094027Z	63	PC: 15255 \| Read file or device (Read 26 bytes on handle 5)
2018-12-17T22:21:44.391907077Z	62	PC: 15259 \| Close file
2018-12-17T22:21:44.393638006Z	79	PC: 15243 \| Find next file
2018-12-17T22:21:44.396180233Z	61	PC: 153bf \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:21:44.400151046Z	63	PC: 15255 \| Read file or device (Read 26 bytes on handle 5)
2018-12-17T22:21:44.409017852Z	62	PC: 15259 \| Close file
2018-12-17T22:21:44.410493749Z	79	PC: 15243 \| Find next file
2018-12-17T22:21:44.412169251Z	61	PC: 153bf \| Open file (Filename = 'PAH.COM')
2018-12-17T22:21:44.419410552Z	63	PC: 15255 \| Read file or device (Read 26 bytes on handle 5)
2018-12-17T22:21:44.423322342Z	62	PC: 15259 \| Close file
2018-12-17T22:21:44.424647932Z	79	PC: 15243 \| Find next file
2018-12-17T22:21:44.426398995Z	61	PC: 153bf \| Open file (Filename = 'TEST.COM')
2018-12-17T22:21:44.433683439Z	63	PC: 15255 \| Read file or device (Read 26 bytes on handle 5)
2018-12-17T22:21:44.440781142Z	62	PC: 15259 \| Close file
2018-12-17T22:21:44.44304812Z	79	PC: 15243 \| Find next file
2018-12-17T22:21:44.445934563Z	59	PC: 151d8 \| Change current directory
2018-12-17T22:21:44.449920258Z	37	PC: 151e6 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:21:44.450932137Z	59	PC: 151f0 \| Change current directory
2018-12-17T22:21:44.455251908Z	26	PC: 151ff \| Set disk transfer address
2018-12-17T22:21:44.458598456Z	9	PC: 12bb5 \| Display string (String= '')
2018-12-17T22:21:44.460856984Z	9	PC: 12bbc \| Display string (Could not find end pointer)
2018-12-17T22:21:44.473538245Z	76	PC: 12bd2 \| Terminate with return code (Return code = '0')