Sample viewer

vx.netlux.org/Virus.DOS.Leprosy.Taz.1973

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:25:39.289123243Z	44	PC: 1305b \| Get time 0x1305b: cmp byte ptr [0x106], 0 0x13060: je 0x13067 0x13062: cmp dh, 0xf 0x13065: jg 0x13070 0x13067: cmp dl, 0 0x1306a: je 0x13057 0x1306c: mov byte ptr [0x106], dl 0x13070: mov byte ptr [0x70c], 0 0x13075: mov byte ptr [0x70d], 0xa 0x1307a: mov byte ptr [0x716], 0 0x1307f: mov cx, 0x27 0x13082: mov dx, 0x131 0x13085: mov ah, 0x4e 0x13087: int 0x21 0x13089: cmp ax, 0x12 0x1308c: je 0x13091 0x1308e: call 0x130b3 0x13091: mov cx, 0x27 0x13094: mov dx, 0x137 0x13097: mov ah, 0x4e
2018-12-17T22:25:39.29237012Z	78	PC: 13089 \| Find first file
2018-12-17T22:25:39.298643951Z	78	PC: 1309b \| Find first file
2018-12-17T22:25:39.304800744Z	67	PC: 130d4 \| Get or set file attributes
2018-12-17T22:25:39.322312693Z	61	PC: 130da \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:25:39.334753568Z	63	PC: 130e9 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:25:39.344203595Z	62	PC: 1311d \| Close file
2018-12-17T22:25:39.347181032Z	61	PC: 13126 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:25:39.36435878Z	64	PC: 12a5a \| Write file or device (Write 1973 bytes on handle 5)
2018-12-17T22:25:39.373550428Z	87	PC: 1314e \| Get or set file date and time
2018-12-17T22:25:39.375470129Z	62	PC: 13156 \| Close file
2018-12-17T22:25:39.384256454Z	67	PC: 13163 \| Get or set file attributes
2018-12-17T22:25:39.389289063Z	79	PC: 1310d \| Find next file
2018-12-17T22:25:39.391784253Z	67	PC: 130d4 \| Get or set file attributes
2018-12-17T22:25:39.402243054Z	61	PC: 130da \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:25:39.40885645Z	63	PC: 130e9 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:25:39.416107137Z	62	PC: 1311d \| Close file
2018-12-17T22:25:39.418655217Z	61	PC: 13126 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:25:39.426246059Z	64	PC: 12a5a \| Write file or device (Write 1973 bytes on handle 5)
2018-12-17T22:25:39.436405753Z	87	PC: 1314e \| Get or set file date and time
2018-12-17T22:25:39.43922524Z	62	PC: 13156 \| Close file
2018-12-17T22:25:39.4474763Z	67	PC: 13163 \| Get or set file attributes
2018-12-17T22:25:39.452197336Z	79	PC: 1310d \| Find next file
2018-12-17T22:25:39.463979061Z	67	PC: 130d4 \| Get or set file attributes
2018-12-17T22:25:39.474319555Z	61	PC: 130da \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:25:39.486300754Z	63	PC: 130e9 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:25:39.494566226Z	62	PC: 1311d \| Close file
2018-12-17T22:25:39.49650548Z	61	PC: 13126 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:25:39.503851409Z	64	PC: 12a5a \| Write file or device (Write 1973 bytes on handle 5)
2018-12-17T22:25:39.513854542Z	87	PC: 1314e \| Get or set file date and time
2018-12-17T22:25:39.515728845Z	62	PC: 13156 \| Close file
2018-12-17T22:25:39.5236198Z	67	PC: 13163 \| Get or set file attributes
2018-12-17T22:25:39.528641336Z	79	PC: 1310d \| Find next file
2018-12-17T22:25:39.532261506Z	67	PC: 130d4 \| Get or set file attributes
2018-12-17T22:25:39.542318194Z	61	PC: 130da \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:25:39.556247279Z	63	PC: 130e9 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:25:39.564111691Z	62	PC: 1311d \| Close file
2018-12-17T22:25:39.56639093Z	61	PC: 13126 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:25:39.574485786Z	64	PC: 12a5a \| Write file or device (Write 1973 bytes on handle 5)
2018-12-17T22:25:39.584518677Z	87	PC: 1314e \| Get or set file date and time
2018-12-17T22:25:39.586851892Z	62	PC: 13156 \| Close file
2018-12-17T22:25:39.595288292Z	67	PC: 13163 \| Get or set file attributes
2018-12-17T22:25:39.60083055Z	79	PC: 1310d \| Find next file
2018-12-17T22:25:39.603607911Z	67	PC: 130d4 \| Get or set file attributes
2018-12-17T22:25:39.61382124Z	61	PC: 130da \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:25:39.625543122Z	63	PC: 130e9 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:25:39.632478423Z	62	PC: 1311d \| Close file
2018-12-17T22:25:39.634735393Z	61	PC: 13126 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:25:39.642916327Z	64	PC: 12a5a \| Write file or device (Write 1973 bytes on handle 5)
2018-12-17T22:25:39.652902335Z	87	PC: 1314e \| Get or set file date and time
2018-12-17T22:25:39.654712843Z	62	PC: 13156 \| Close file
2018-12-17T22:25:39.662677666Z	67	PC: 13163 \| Get or set file attributes
2018-12-17T22:25:39.66832608Z	79	PC: 1310d \| Find next file
2018-12-17T22:25:39.670895603Z	67	PC: 130d4 \| Get or set file attributes
2018-12-17T22:25:39.68272677Z	61	PC: 130da \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:25:39.690854925Z	63	PC: 130e9 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:25:39.697653597Z	62	PC: 1311d \| Close file
2018-12-17T22:25:39.699973121Z	61	PC: 13126 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:25:39.708561954Z	64	PC: 12a5a \| Write file or device (Write 1973 bytes on handle 5)
2018-12-17T22:25:39.718811943Z	87	PC: 1314e \| Get or set file date and time
2018-12-17T22:25:39.720884733Z	62	PC: 13156 \| Close file
2018-12-17T22:25:39.729431133Z	67	PC: 13163 \| Get or set file attributes
2018-12-17T22:25:39.734854809Z	79	PC: 1310d \| Find next file
2018-12-17T22:25:39.73810132Z	67	PC: 130d4 \| Get or set file attributes
2018-12-17T22:25:39.748644553Z	61	PC: 130da \| Open file (Filename = 'PAH.COM')
2018-12-17T22:25:39.756824805Z	63	PC: 130e9 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:25:39.763501522Z	62	PC: 1311d \| Close file
2018-12-17T22:25:39.766104932Z	61	PC: 13126 \| Open file (Filename = 'PAH.COM')
2018-12-17T22:25:39.773282763Z	64	PC: 12a5a \| Write file or device (Write 1973 bytes on handle 5)
2018-12-17T22:25:39.782323503Z	87	PC: 1314e \| Get or set file date and time
2018-12-17T22:25:39.785168957Z	62	PC: 13156 \| Close file
2018-12-17T22:25:39.792955113Z	67	PC: 13163 \| Get or set file attributes
2018-12-17T22:25:39.797991979Z	79	PC: 1310d \| Find next file
2018-12-17T22:25:39.801958535Z	67	PC: 130d4 \| Get or set file attributes
2018-12-17T22:25:39.819618104Z	61	PC: 130da \| Open file (Filename = 'TEST.COM')
2018-12-17T22:25:39.828379731Z	63	PC: 130e9 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:25:39.836564364Z	87	PC: 1314e \| Get or set file date and time
2018-12-17T22:25:39.838374209Z	62	PC: 13156 \| Close file
2018-12-17T22:25:39.845656049Z	67	PC: 13163 \| Get or set file attributes
2018-12-17T22:25:39.853841964Z	79	PC: 1310d \| Find next file
2018-12-17T22:25:39.856939151Z	59	PC: 130aa \| Change current directory
2018-12-17T22:25:39.861739008Z	78	PC: 13089 \| Find first file
2018-12-17T22:25:39.880072764Z	78	PC: 1309b \| Find first file
2018-12-17T22:25:39.889076424Z	67	PC: 130d4 \| Get or set file attributes
2018-12-17T22:25:39.901360621Z	61	PC: 130da \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:25:39.908059151Z	63	PC: 130e9 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:25:39.914674265Z	87	PC: 1314e \| Get or set file date and time
2018-12-17T22:25:39.916114104Z	62	PC: 13156 \| Close file
2018-12-17T22:25:39.923383284Z	67	PC: 13163 \| Get or set file attributes
2018-12-17T22:25:39.935417289Z	79	PC: 1310d \| Find next file
2018-12-17T22:25:39.938278388Z	67	PC: 130d4 \| Get or set file attributes
2018-12-17T22:25:39.948723464Z	61	PC: 130da \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:25:39.956143593Z	63	PC: 130e9 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:25:39.962718952Z	87	PC: 1314e \| Get or set file date and time
2018-12-17T22:25:39.964531391Z	62	PC: 13156 \| Close file
2018-12-17T22:25:39.972657375Z	67	PC: 13163 \| Get or set file attributes
2018-12-17T22:25:39.977632404Z	79	PC: 1310d \| Find next file
2018-12-17T22:25:39.980547729Z	67	PC: 130d4 \| Get or set file attributes
2018-12-17T22:25:39.996522991Z	61	PC: 130da \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:25:40.007598782Z	63	PC: 130e9 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:25:40.014576926Z	87	PC: 1314e \| Get or set file date and time
2018-12-17T22:25:40.016705957Z	62	PC: 13156 \| Close file
2018-12-17T22:25:40.023576687Z	67	PC: 13163 \| Get or set file attributes
2018-12-17T22:25:40.028101935Z	79	PC: 1310d \| Find next file
2018-12-17T22:25:40.031263169Z	67	PC: 130d4 \| Get or set file attributes
2018-12-17T22:25:40.040650966Z	61	PC: 130da \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:25:40.047058805Z	63	PC: 130e9 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:25:40.054279168Z	87	PC: 1314e \| Get or set file date and time
2018-12-17T22:25:40.056028713Z	62	PC: 13156 \| Close file
2018-12-17T22:25:40.063343882Z	67	PC: 13163 \| Get or set file attributes
2018-12-17T22:25:40.074021271Z	79	PC: 1310d \| Find next file
2018-12-17T22:25:40.080740041Z	67	PC: 130d4 \| Get or set file attributes
2018-12-17T22:25:40.090850968Z	61	PC: 130da \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:25:40.098089935Z	63	PC: 130e9 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:25:40.104338745Z	87	PC: 1314e \| Get or set file date and time
2018-12-17T22:25:40.105770333Z	62	PC: 13156 \| Close file
2018-12-17T22:25:40.113572526Z	67	PC: 13163 \| Get or set file attributes
2018-12-17T22:25:40.118513667Z	79	PC: 1310d \| Find next file
2018-12-17T22:25:40.121326788Z	67	PC: 130d4 \| Get or set file attributes
2018-12-17T22:25:40.134545998Z	61	PC: 130da \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:25:40.146537512Z	63	PC: 130e9 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:25:40.152722239Z	87	PC: 1314e \| Get or set file date and time
2018-12-17T22:25:40.155217439Z	62	PC: 13156 \| Close file
2018-12-17T22:25:40.162074331Z	67	PC: 13163 \| Get or set file attributes
2018-12-17T22:25:40.166685319Z	79	PC: 1310d \| Find next file
2018-12-17T22:25:40.169989496Z	67	PC: 130d4 \| Get or set file attributes
2018-12-17T22:25:40.179383163Z	61	PC: 130da \| Open file (Filename = 'PAH.COM')
2018-12-17T22:25:40.18565473Z	63	PC: 130e9 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:25:40.191689196Z	87	PC: 1314e \| Get or set file date and time
2018-12-17T22:25:40.193086546Z	62	PC: 13156 \| Close file
2018-12-17T22:25:40.20213305Z	67	PC: 13163 \| Get or set file attributes
2018-12-17T22:25:40.207404567Z	79	PC: 1310d \| Find next file
2018-12-17T22:25:40.211082164Z	67	PC: 130d4 \| Get or set file attributes
2018-12-17T22:25:40.220775763Z	61	PC: 130da \| Open file (Filename = 'TEST.COM')
2018-12-17T22:25:40.227532628Z	63	PC: 130e9 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:25:40.235141274Z	87	PC: 1314e \| Get or set file date and time
2018-12-17T22:25:40.237003055Z	62	PC: 13156 \| Close file
2018-12-17T22:25:40.244343146Z	67	PC: 13163 \| Get or set file attributes
2018-12-17T22:25:40.251262063Z	79	PC: 1310d \| Find next file
2018-12-17T22:25:40.254306625Z	59	PC: 130aa \| Change current directory
2018-12-17T22:25:40.258487474Z	78	PC: 13089 \| Find first file
2018-12-17T22:25:40.270238976Z	78	PC: 1309b \| Find first file
2018-12-17T22:25:40.277023172Z	67	PC: 130d4 \| Get or set file attributes
2018-12-17T22:25:40.287103586Z	61	PC: 130da \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:25:40.294977604Z	63	PC: 130e9 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:25:40.301971142Z	87	PC: 1314e \| Get or set file date and time
2018-12-17T22:25:40.304017996Z	62	PC: 13156 \| Close file
2018-12-17T22:25:40.312142476Z	67	PC: 13163 \| Get or set file attributes
2018-12-17T22:25:40.317245893Z	79	PC: 1310d \| Find next file
2018-12-17T22:25:40.31994933Z	67	PC: 130d4 \| Get or set file attributes
2018-12-17T22:25:40.329764429Z	61	PC: 130da \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:25:40.342603688Z	63	PC: 130e9 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:25:40.348885896Z	87	PC: 1314e \| Get or set file date and time
2018-12-17T22:25:40.35075968Z	62	PC: 13156 \| Close file
2018-12-17T22:25:40.359394523Z	67	PC: 13163 \| Get or set file attributes
2018-12-17T22:25:40.364301791Z	79	PC: 1310d \| Find next file
2018-12-17T22:25:40.36713297Z	67	PC: 130d4 \| Get or set file attributes
2018-12-17T22:25:40.378051618Z	61	PC: 130da \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:25:40.384627821Z	63	PC: 130e9 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:25:40.391148983Z	87	PC: 1314e \| Get or set file date and time
2018-12-17T22:25:40.393891435Z	62	PC: 13156 \| Close file
2018-12-17T22:25:40.403508609Z	67	PC: 13163 \| Get or set file attributes
2018-12-17T22:25:40.408921595Z	79	PC: 1310d \| Find next file
2018-12-17T22:25:40.412493771Z	67	PC: 130d4 \| Get or set file attributes
2018-12-17T22:25:40.422381173Z	61	PC: 130da \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:25:40.429428242Z	63	PC: 130e9 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:25:40.436873589Z	87	PC: 1314e \| Get or set file date and time
2018-12-17T22:25:40.438885099Z	62	PC: 13156 \| Close file
2018-12-17T22:25:40.446507486Z	67	PC: 13163 \| Get or set file attributes
2018-12-17T22:25:40.451844933Z	79	PC: 1310d \| Find next file
2018-12-17T22:25:40.454603401Z	67	PC: 130d4 \| Get or set file attributes
2018-12-17T22:25:40.464346597Z	61	PC: 130da \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:25:40.476889033Z	63	PC: 130e9 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:25:40.483428621Z	87	PC: 1314e \| Get or set file date and time
2018-12-17T22:25:40.485296903Z	62	PC: 13156 \| Close file
2018-12-17T22:25:40.49345414Z	67	PC: 13163 \| Get or set file attributes
2018-12-17T22:25:40.497947725Z	79	PC: 1310d \| Find next file
2018-12-17T22:25:40.499757611Z	67	PC: 130d4 \| Get or set file attributes
2018-12-17T22:25:40.506276834Z	61	PC: 130da \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:25:40.510289792Z	63	PC: 130e9 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:25:40.514268216Z	87	PC: 1314e \| Get or set file date and time
2018-12-17T22:25:40.515936252Z	62	PC: 13156 \| Close file
2018-12-17T22:25:40.521607088Z	67	PC: 13163 \| Get or set file attributes
2018-12-17T22:25:40.527941501Z	79	PC: 1310d \| Find next file
2018-12-17T22:25:40.535380447Z	67	PC: 130d4 \| Get or set file attributes
2018-12-17T22:25:40.556855303Z	61	PC: 130da \| Open file (Filename = 'PAH.COM')
2018-12-17T22:25:40.567600991Z	63	PC: 130e9 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:25:40.574382085Z	87	PC: 1314e \| Get or set file date and time
2018-12-17T22:25:40.575902306Z	62	PC: 13156 \| Close file
2018-12-17T22:25:40.582933912Z	67	PC: 13163 \| Get or set file attributes
2018-12-17T22:25:40.588188058Z	79	PC: 1310d \| Find next file
2018-12-17T22:25:40.590867129Z	67	PC: 130d4 \| Get or set file attributes
2018-12-17T22:25:40.600492177Z	61	PC: 130da \| Open file (Filename = 'TEST.COM')
2018-12-17T22:25:40.607326396Z	63	PC: 130e9 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:25:40.613552485Z	87	PC: 1314e \| Get or set file date and time
2018-12-17T22:25:40.615038046Z	62	PC: 13156 \| Close file
2018-12-17T22:25:40.622395659Z	67	PC: 13163 \| Get or set file attributes
2018-12-17T22:25:40.626879Z	79	PC: 1310d \| Find next file
2018-12-17T22:25:40.629128979Z	59	PC: 130aa \| Change current directory
2018-12-17T22:25:40.633525339Z	9	PC: 131f1 \| Display string (String= ' Bad command or filename')
2018-12-17T22:25:40.637387418Z	76	PC: 131f5 \| Terminate with return code (Return code = '36')