Sample viewer

vx.netlux.org/Virus.DOS.Mshark.378

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:23:02.460807011Z	47	PC: 1341f \| Get disk transfer address
2018-12-17T22:23:02.462957225Z	26	PC: 1342c \| Set disk transfer address
2018-12-17T22:23:02.465535243Z	78	PC: 13456 \| Find first file
2018-12-17T22:23:02.472481766Z	61	PC: 1348c \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:23:02.480030046Z	63	PC: 1349f \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:23:02.488641681Z	66	PC: 134ab \| Move file pointer
2018-12-17T22:23:02.490509047Z	63	PC: 134b9 \| Read file or device (Read 6 bytes on handle 5)
2018-12-17T22:23:02.493518537Z	66	PC: 1353e \| Move file pointer
2018-12-17T22:23:02.496426086Z	64	PC: 134dd \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:23:02.499673421Z	66	PC: 134e8 \| Move file pointer
2018-12-17T22:23:02.501659446Z	64	PC: 13503 \| Write file or device (Write 378 bytes on handle 5)
2018-12-17T22:23:02.518475716Z	62	PC: 134ca \| Close file
2018-12-17T22:23:02.528435129Z	79	PC: 13456 \| Find next file
2018-12-17T22:23:02.532022282Z	61	PC: 1348c \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:23:02.540317199Z	63	PC: 1349f \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:23:02.549365142Z	66	PC: 134ab \| Move file pointer
2018-12-17T22:23:02.551433108Z	63	PC: 134b9 \| Read file or device (Read 6 bytes on handle 5)
2018-12-17T22:23:02.554571343Z	66	PC: 1353e \| Move file pointer
2018-12-17T22:23:02.557747389Z	64	PC: 134dd \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:23:02.561145641Z	66	PC: 134e8 \| Move file pointer
2018-12-17T22:23:02.563153916Z	64	PC: 13503 \| Write file or device (Write 378 bytes on handle 5)
2018-12-17T22:23:02.567522752Z	62	PC: 134ca \| Close file
2018-12-17T22:23:02.576639587Z	79	PC: 13456 \| Find next file
2018-12-17T22:23:02.581403541Z	61	PC: 1348c \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:23:02.59434841Z	63	PC: 1349f \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:23:02.601688598Z	66	PC: 134ab \| Move file pointer
2018-12-17T22:23:02.603611689Z	63	PC: 134b9 \| Read file or device (Read 6 bytes on handle 5)
2018-12-17T22:23:02.607361456Z	66	PC: 1353e \| Move file pointer
2018-12-17T22:23:02.612519711Z	64	PC: 134dd \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:23:02.61552033Z	66	PC: 134e8 \| Move file pointer
2018-12-17T22:23:02.617586878Z	64	PC: 13503 \| Write file or device (Write 378 bytes on handle 5)
2018-12-17T22:23:02.620788916Z	62	PC: 134ca \| Close file
2018-12-17T22:23:02.629492874Z	79	PC: 13456 \| Find next file
2018-12-17T22:23:02.632545608Z	61	PC: 1348c \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:23:02.639984398Z	63	PC: 1349f \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:23:02.647352077Z	66	PC: 134ab \| Move file pointer
2018-12-17T22:23:02.649482429Z	63	PC: 134b9 \| Read file or device (Read 6 bytes on handle 5)
2018-12-17T22:23:02.65373438Z	66	PC: 1353e \| Move file pointer
2018-12-17T22:23:02.655654535Z	64	PC: 134dd \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:23:02.659901485Z	66	PC: 134e8 \| Move file pointer
2018-12-17T22:23:02.662845697Z	64	PC: 13503 \| Write file or device (Write 378 bytes on handle 5)
2018-12-17T22:23:02.66903604Z	62	PC: 134ca \| Close file
2018-12-17T22:23:02.678777184Z	79	PC: 13456 \| Find next file
2018-12-17T22:23:02.682882435Z	61	PC: 1348c \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:23:02.690809493Z	63	PC: 1349f \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:23:02.698272552Z	66	PC: 134ab \| Move file pointer
2018-12-17T22:23:02.700819811Z	63	PC: 134b9 \| Read file or device (Read 6 bytes on handle 5)
2018-12-17T22:23:02.704115656Z	66	PC: 1353e \| Move file pointer
2018-12-17T22:23:02.706193916Z	64	PC: 134dd \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:23:02.709624881Z	66	PC: 134e8 \| Move file pointer
2018-12-17T22:23:02.712639661Z	64	PC: 13503 \| Write file or device (Write 378 bytes on handle 5)
2018-12-17T22:23:02.715829557Z	62	PC: 134ca \| Close file
2018-12-17T22:23:02.739450138Z	79	PC: 13456 \| Find next file
2018-12-17T22:23:02.743912396Z	61	PC: 1348c \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:23:02.751670618Z	63	PC: 1349f \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:23:02.75946867Z	66	PC: 134ab \| Move file pointer
2018-12-17T22:23:02.762450922Z	63	PC: 134b9 \| Read file or device (Read 6 bytes on handle 5)
2018-12-17T22:23:02.766004194Z	66	PC: 1353e \| Move file pointer
2018-12-17T22:23:02.767969979Z	64	PC: 134dd \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:23:02.77206209Z	66	PC: 134e8 \| Move file pointer
2018-12-17T22:23:02.774463123Z	64	PC: 13503 \| Write file or device (Write 378 bytes on handle 5)
2018-12-17T22:23:02.783806489Z	62	PC: 134ca \| Close file
2018-12-17T22:23:02.793736554Z	79	PC: 13456 \| Find next file
2018-12-17T22:23:02.798146873Z	61	PC: 1348c \| Open file (Filename = 'PAH.COM')
2018-12-17T22:23:02.805817138Z	63	PC: 1349f \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:23:02.813323365Z	66	PC: 134ab \| Move file pointer
2018-12-17T22:23:02.816369475Z	63	PC: 134b9 \| Read file or device (Read 6 bytes on handle 5)
2018-12-17T22:23:02.819528354Z	66	PC: 1353e \| Move file pointer
2018-12-17T22:23:02.821453821Z	64	PC: 134dd \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:23:02.825605924Z	66	PC: 134e8 \| Move file pointer
2018-12-17T22:23:02.82795866Z	64	PC: 13503 \| Write file or device (Write 378 bytes on handle 5)
2018-12-17T22:23:02.83137116Z	62	PC: 134ca \| Close file
2018-12-17T22:23:02.841150228Z	79	PC: 13456 \| Find next file
2018-12-17T22:23:02.845004908Z	61	PC: 1348c \| Open file (Filename = 'TEST.COM')
2018-12-17T22:23:02.852742324Z	63	PC: 1349f \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:23:02.856265877Z	66	PC: 134ab \| Move file pointer
2018-12-17T22:23:02.859428453Z	63	PC: 134b9 \| Read file or device (Read 6 bytes on handle 5)
2018-12-17T22:23:02.863082331Z	62	PC: 134ca \| Close file
2018-12-17T22:23:02.866245632Z	79	PC: 13456 \| Find next file
2018-12-17T22:23:02.870374103Z	78	PC: 13456 \| Find first file
2018-12-17T22:23:02.877326767Z	61	PC: 1348c \| Open file (Filename = '\SLEEP.COM')
2018-12-17T22:23:02.884978215Z	63	PC: 1349f \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:23:02.893298956Z	66	PC: 134ab \| Move file pointer
2018-12-17T22:23:02.895539295Z	63	PC: 134b9 \| Read file or device (Read 6 bytes on handle 5)
2018-12-17T22:23:02.899133157Z	62	PC: 134ca \| Close file
2018-12-17T22:23:02.902189432Z	79	PC: 13456 \| Find next file
2018-12-17T22:23:02.905830636Z	61	PC: 1348c \| Open file (Filename = '\PRINT.COM')
2018-12-17T22:23:02.913524844Z	63	PC: 1349f \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:23:02.916808966Z	66	PC: 134ab \| Move file pointer
2018-12-17T22:23:02.919821942Z	63	PC: 134b9 \| Read file or device (Read 6 bytes on handle 5)
2018-12-17T22:23:02.923129707Z	62	PC: 134ca \| Close file
2018-12-17T22:23:02.925700187Z	79	PC: 13456 \| Find next file
2018-12-17T22:23:02.930385343Z	61	PC: 1348c \| Open file (Filename = '\HELLO.COM')
2018-12-17T22:23:02.939199637Z	63	PC: 1349f \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:23:02.942603633Z	66	PC: 134ab \| Move file pointer
2018-12-17T22:23:02.945032843Z	63	PC: 134b9 \| Read file or device (Read 6 bytes on handle 5)
2018-12-17T22:23:02.948380908Z	62	PC: 134ca \| Close file
2018-12-17T22:23:02.951245305Z	79	PC: 13456 \| Find next file
2018-12-17T22:23:02.956099934Z	61	PC: 1348c \| Open file (Filename = '\PHANG.COM')
2018-12-17T22:23:02.964469075Z	63	PC: 1349f \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:23:02.96823589Z	66	PC: 134ab \| Move file pointer
2018-12-17T22:23:02.97099538Z	63	PC: 134b9 \| Read file or device (Read 6 bytes on handle 5)
2018-12-17T22:23:02.974212883Z	62	PC: 134ca \| Close file
2018-12-17T22:23:02.976788083Z	79	PC: 13456 \| Find next file
2018-12-17T22:23:02.98114938Z	61	PC: 1348c \| Open file (Filename = '\PRINTA~1.COM')
2018-12-17T22:23:02.989483043Z	63	PC: 1349f \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:23:02.992979515Z	66	PC: 134ab \| Move file pointer
2018-12-17T22:23:02.995615675Z	63	PC: 134b9 \| Read file or device (Read 6 bytes on handle 5)
2018-12-17T22:23:02.998920356Z	62	PC: 134ca \| Close file
2018-12-17T22:23:03.001129463Z	79	PC: 13456 \| Find next file
2018-12-17T22:23:03.004906475Z	61	PC: 1348c \| Open file (Filename = '\MANDEL.COM')
2018-12-17T22:23:03.01414224Z	63	PC: 1349f \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:23:03.021808209Z	66	PC: 134ab \| Move file pointer
2018-12-17T22:23:03.023877061Z	63	PC: 134b9 \| Read file or device (Read 6 bytes on handle 5)
2018-12-17T22:23:03.028434908Z	62	PC: 134ca \| Close file
2018-12-17T22:23:03.031332698Z	79	PC: 13456 \| Find next file
2018-12-17T22:23:03.035147275Z	61	PC: 1348c \| Open file (Filename = '\PAH.COM')
2018-12-17T22:23:03.04429626Z	63	PC: 1349f \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:23:03.047878374Z	66	PC: 134ab \| Move file pointer
2018-12-17T22:23:03.049976359Z	63	PC: 134b9 \| Read file or device (Read 6 bytes on handle 5)
2018-12-17T22:23:03.054149488Z	62	PC: 134ca \| Close file
2018-12-17T22:23:03.056518583Z	79	PC: 13456 \| Find next file
2018-12-17T22:23:03.059914773Z	61	PC: 1348c \| Open file (Filename = '\TEST.COM')
2018-12-17T22:23:03.069172381Z	63	PC: 1349f \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:23:03.072848569Z	66	PC: 134ab \| Move file pointer
2018-12-17T22:23:03.074879341Z	63	PC: 134b9 \| Read file or device (Read 6 bytes on handle 5)
2018-12-17T22:23:03.079492341Z	62	PC: 134ca \| Close file
2018-12-17T22:23:03.0831168Z	79	PC: 13456 \| Find next file
2018-12-17T22:23:03.086273676Z	26	PC: 13522 \| Set disk transfer address
2018-12-17T22:23:03.088215744Z	9	PC: 13217 \| Display string (String= 'Genius Mouse driver have not installed ')