Sample viewer

vx.netlux.org/Virus.DOS.AntiPascal.605

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:24:12.250989923Z	74	PC: 12aa3 \| Reallocate memory
2018-12-17T22:24:12.253069269Z	72	PC: 12aaa \| Allocate memory
2018-12-17T22:24:12.254876501Z	37	PC: 12ab7 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:24:12.256237985Z	26	PC: 12abe \| Set disk transfer address
2018-12-17T22:24:12.258627504Z	25	PC: 12ac2 \| Get default drive
2018-12-17T22:24:12.259993786Z	78	PC: 12bf5 \| Find first file
2018-12-17T22:24:12.265805433Z	62	PC: 12c2f \| Close file
2018-12-17T22:24:12.267258484Z	79	PC: 12bf5 \| Find next file
2018-12-17T22:24:12.269820424Z	62	PC: 12c2f \| Close file
2018-12-17T22:24:12.271220615Z	79	PC: 12bf5 \| Find next file
2018-12-17T22:24:12.273671953Z	62	PC: 12c2f \| Close file
2018-12-17T22:24:12.275838362Z	79	PC: 12bf5 \| Find next file
2018-12-17T22:24:12.278480609Z	62	PC: 12c2f \| Close file
2018-12-17T22:24:12.280162883Z	79	PC: 12bf5 \| Find next file
2018-12-17T22:24:12.283303484Z	62	PC: 12c2f \| Close file
2018-12-17T22:24:12.285324285Z	79	PC: 12bf5 \| Find next file
2018-12-17T22:24:12.288229497Z	62	PC: 12c2f \| Close file
2018-12-17T22:24:12.290932502Z	79	PC: 12bf5 \| Find next file
2018-12-17T22:24:12.293463362Z	62	PC: 12c2f \| Close file
2018-12-17T22:24:12.295006201Z	79	PC: 12bf5 \| Find next file
2018-12-17T22:24:12.297877457Z	61	PC: 12b7a \| Open file (Filename = 'TEST.COM')
2018-12-17T22:24:12.304094726Z	63	PC: 12b8a \| Read file or device (Read 605 bytes on handle 5)
2018-12-17T22:24:12.310775488Z	62	PC: 12c2f \| Close file
2018-12-17T22:24:12.3128533Z	79	PC: 12bf5 \| Find next file
2018-12-17T22:24:12.31511806Z	78	PC: 12bb3 \| Find first file
2018-12-17T22:24:12.320697173Z	78	PC: 12bb3 \| Find first file
2018-12-17T22:24:12.327418701Z	78	PC: 12c55 \| Find first file
2018-12-17T22:24:12.334215888Z	79	PC: 12c55 \| Find next file
2018-12-17T22:24:12.336634633Z	79	PC: 12c55 \| Find next file
2018-12-17T22:24:12.340133436Z	79	PC: 12c55 \| Find next file
2018-12-17T22:24:12.3428421Z	79	PC: 12c55 \| Find next file
2018-12-17T22:24:12.34528174Z	79	PC: 12c55 \| Find next file
2018-12-17T22:24:12.348545763Z	79	PC: 12c55 \| Find next file
2018-12-17T22:24:12.351288594Z	79	PC: 12c55 \| Find next file
2018-12-17T22:24:12.353926832Z	79	PC: 12c55 \| Find next file
2018-12-17T22:24:12.357188281Z	79	PC: 12c55 \| Find next file
2018-12-17T22:24:12.360306352Z	68	PC: 12aeb \| I/O control for devices (Set for = '*.???')
2018-12-17T22:24:12.362106269Z	14	PC: 12af7 \| Set default drive (Drive = 'D')
2018-12-17T22:24:12.363376736Z	78	PC: 12bf5 \| Find first file
2018-12-17T22:24:12.368949083Z	62	PC: 12c2f \| Close file
2018-12-17T22:24:12.370467096Z	79	PC: 12bf5 \| Find next file
2018-12-17T22:24:12.372923769Z	62	PC: 12c2f \| Close file
2018-12-17T22:24:12.374684647Z	79	PC: 12bf5 \| Find next file
2018-12-17T22:24:12.377494993Z	62	PC: 12c2f \| Close file
2018-12-17T22:24:12.379444774Z	79	PC: 12bf5 \| Find next file
2018-12-17T22:24:12.382490388Z	62	PC: 12c2f \| Close file
2018-12-17T22:24:12.383813779Z	79	PC: 12bf5 \| Find next file
2018-12-17T22:24:12.386145615Z	62	PC: 12c2f \| Close file
2018-12-17T22:24:12.387975813Z	79	PC: 12bf5 \| Find next file
2018-12-17T22:24:12.390275591Z	62	PC: 12c2f \| Close file
2018-12-17T22:24:12.391723905Z	79	PC: 12bf5 \| Find next file
2018-12-17T22:24:12.400745062Z	62	PC: 12c2f \| Close file
2018-12-17T22:24:12.403185601Z	79	PC: 12bf5 \| Find next file
2018-12-17T22:24:12.408814445Z	61	PC: 12b7a \| Open file (Filename = 'TEST.COM')
2018-12-17T22:24:12.419077344Z	63	PC: 12b8a \| Read file or device (Read 605 bytes on handle 3)
2018-12-17T22:24:12.426081511Z	62	PC: 12c2f \| Close file
2018-12-17T22:24:12.428086998Z	79	PC: 12bf5 \| Find next file
2018-12-17T22:24:12.430641878Z	78	PC: 12bb3 \| Find first file
2018-12-17T22:24:12.436232746Z	78	PC: 12bb3 \| Find first file
2018-12-17T22:24:12.442155122Z	78	PC: 12c55 \| Find first file
2018-12-17T22:24:12.449298097Z	79	PC: 12c55 \| Find next file
2018-12-17T22:24:12.452131797Z	79	PC: 12c55 \| Find next file
2018-12-17T22:24:12.454972706Z	79	PC: 12c55 \| Find next file
2018-12-17T22:24:12.458485595Z	79	PC: 12c55 \| Find next file
2018-12-17T22:24:12.460980718Z	79	PC: 12c55 \| Find next file
2018-12-17T22:24:12.463772205Z	79	PC: 12c55 \| Find next file
2018-12-17T22:24:12.46757162Z	79	PC: 12c55 \| Find next file
2018-12-17T22:24:12.471193482Z	79	PC: 12c55 \| Find next file
2018-12-17T22:24:12.474380745Z	79	PC: 12c55 \| Find next file
2018-12-17T22:24:12.478194434Z	14	PC: 12aff \| Set default drive (Drive = 'A')
2018-12-17T22:24:12.479500168Z	73	PC: 12b0b \| Release memory
2018-12-17T22:24:12.480735292Z	74	PC: 12b14 \| Reallocate memory
2018-12-17T22:24:12.483065655Z	74	PC: 12b18 \| Reallocate memory
2018-12-17T22:24:12.48443294Z	26	PC: 12b1f \| Set disk transfer address
2018-12-17T22:24:12.485593895Z	37	PC: 12b29 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:24:12.487725469Z	9	PC: 13a3b \| Display string (String= 'Infected file. Original length = 4096 bytes. ')
2018-12-17T22:24:12.491769322Z	76	PC: 13a40 \| Terminate with return code (Return code = '0')