Sample viewer

vx.netlux.org/Virus.DOS.Grog.794

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:25:50.724228802Z 26 PC: 13252 | Set disk transfer address
2018-12-17T22:25:50.725473335Z 61 PC: 12f96 | Open file (Filename = '')
2018-12-17T22:25:50.730759767Z 63 PC: 12fac | Read file or device (Read 10 bytes on handle 5)
2018-12-17T22:25:50.733309867Z 66 PC: 12fcc | Move file pointer
2018-12-17T22:25:50.734643723Z 62 PC: 12fdc | Close file
2018-12-17T22:25:50.737029036Z 53 PC: 12fe1 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:25:50.738090672Z 37 PC: 12ff1 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:25:50.739207589Z 71 PC: 13002 | Get current directory
2018-12-17T22:25:50.742155588Z 78 PC: 13012 | Find first file
2018-12-17T22:25:50.749738643Z 61 PC: 13021 | Open file (Filename = 'SLEEP.COM')
2018-12-17T22:25:50.757317181Z 63 PC: 13031 | Read file or device (Read 10 bytes on handle 5)
2018-12-17T22:25:50.765221899Z 87 PC: 13049 | Get or set file date and time
2018-12-17T22:25:50.767517355Z 66 PC: 13054 | Move file pointer
2018-12-17T22:25:50.769376681Z 66 PC: 13063 | Move file pointer
2018-12-17T22:25:50.771746863Z 64 PC: 13078 | Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:25:50.774879805Z 66 PC: 1308b | Move file pointer
2018-12-17T22:25:50.776731997Z 64 PC: 1309e | Write file or device (Write 794 bytes on handle 5)
2018-12-17T22:25:50.793837531Z 87 PC: 130af | Get or set file date and time
2018-12-17T22:25:50.796532961Z 62 PC: 130b4 | Close file
2018-12-17T22:25:50.804836575Z 79 PC: 13012 | Find next file
2018-12-17T22:25:50.807836362Z 61 PC: 13021 | Open file (Filename = 'PRINT.COM')
2018-12-17T22:25:50.816348899Z 63 PC: 13031 | Read file or device (Read 10 bytes on handle 5)
2018-12-17T22:25:50.824946266Z 87 PC: 13049 | Get or set file date and time
2018-12-17T22:25:50.827821952Z 66 PC: 13054 | Move file pointer
2018-12-17T22:25:50.830778987Z 66 PC: 13063 | Move file pointer
2018-12-17T22:25:50.832880734Z 64 PC: 13078 | Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:25:50.836014998Z 66 PC: 1308b | Move file pointer
2018-12-17T22:25:50.83827208Z 64 PC: 1309e | Write file or device (Write 794 bytes on handle 5)
2018-12-17T22:25:50.847140448Z 87 PC: 130af | Get or set file date and time
2018-12-17T22:25:50.848769399Z 62 PC: 130b4 | Close file
2018-12-17T22:25:50.858506191Z 79 PC: 13012 | Find next file
2018-12-17T22:25:50.876862635Z 61 PC: 13021 | Open file (Filename = 'HELLO.COM')
2018-12-17T22:25:50.884669925Z 63 PC: 13031 | Read file or device (Read 10 bytes on handle 5)
2018-12-17T22:25:50.891765781Z 87 PC: 13049 | Get or set file date and time
2018-12-17T22:25:50.893942104Z 66 PC: 13054 | Move file pointer
2018-12-17T22:25:50.896052937Z 66 PC: 13063 | Move file pointer
2018-12-17T22:25:50.898139787Z 64 PC: 13078 | Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:25:50.901496899Z 66 PC: 1308b | Move file pointer
2018-12-17T22:25:50.903191672Z 64 PC: 1309e | Write file or device (Write 794 bytes on handle 5)
2018-12-17T22:25:50.911939113Z 87 PC: 130af | Get or set file date and time
2018-12-17T22:25:50.914273195Z 62 PC: 130b4 | Close file
2018-12-17T22:25:50.922377758Z 79 PC: 13012 | Find next file
2018-12-17T22:25:50.925229226Z 61 PC: 13021 | Open file (Filename = 'PHANG.COM')
2018-12-17T22:25:50.932946239Z 63 PC: 13031 | Read file or device (Read 10 bytes on handle 5)
2018-12-17T22:25:50.939756946Z 87 PC: 13049 | Get or set file date and time
2018-12-17T22:25:50.941463286Z 66 PC: 13054 | Move file pointer
2018-12-17T22:25:50.943577518Z 66 PC: 13063 | Move file pointer
2018-12-17T22:25:50.945134073Z 64 PC: 13078 | Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:25:50.948005603Z 66 PC: 1308b | Move file pointer
2018-12-17T22:25:50.95122146Z 64 PC: 1309e | Write file or device (Write 794 bytes on handle 5)
2018-12-17T22:25:50.960172246Z 87 PC: 130af | Get or set file date and time
2018-12-17T22:25:50.961936041Z 62 PC: 130b4 | Close file
2018-12-17T22:25:50.97079504Z 79 PC: 13012 | Find next file
2018-12-17T22:25:50.973948779Z 61 PC: 13021 | Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:25:50.981185437Z 63 PC: 13031 | Read file or device (Read 10 bytes on handle 5)
2018-12-17T22:25:50.988695737Z 87 PC: 13049 | Get or set file date and time
2018-12-17T22:25:50.991640522Z 66 PC: 13054 | Move file pointer
2018-12-17T22:25:50.993924588Z 66 PC: 13063 | Move file pointer
2018-12-17T22:25:50.995984499Z 64 PC: 13078 | Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:25:50.99977295Z 66 PC: 1308b | Move file pointer
2018-12-17T22:25:51.001750778Z 64 PC: 1309e | Write file or device (Write 794 bytes on handle 5)
2018-12-17T22:25:51.010967699Z 87 PC: 130af | Get or set file date and time
2018-12-17T22:25:51.013872212Z 62 PC: 130b4 | Close file
2018-12-17T22:25:51.024046769Z 79 PC: 13012 | Find next file
2018-12-17T22:25:51.027401518Z 61 PC: 13021 | Open file (Filename = 'MANDEL.COM')
2018-12-17T22:25:51.035385381Z 63 PC: 13031 | Read file or device (Read 10 bytes on handle 5)
2018-12-17T22:25:51.042442079Z 87 PC: 13049 | Get or set file date and time
2018-12-17T22:25:51.043956199Z 66 PC: 13054 | Move file pointer
2018-12-17T22:25:51.045835325Z 66 PC: 13063 | Move file pointer
2018-12-17T22:25:51.048301255Z 64 PC: 13078 | Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:25:51.051949638Z 66 PC: 1308b | Move file pointer
2018-12-17T22:25:51.053709361Z 64 PC: 1309e | Write file or device (Write 794 bytes on handle 5)
2018-12-17T22:25:51.063638238Z 87 PC: 130af | Get or set file date and time
2018-12-17T22:25:51.066125283Z 62 PC: 130b4 | Close file
2018-12-17T22:25:51.075744064Z 79 PC: 13012 | Find next file
2018-12-17T22:25:51.079803632Z 61 PC: 13021 | Open file (Filename = 'PAH.COM')
2018-12-17T22:25:51.088377617Z 63 PC: 13031 | Read file or device (Read 10 bytes on handle 5)
2018-12-17T22:25:51.095563149Z 87 PC: 13049 | Get or set file date and time
2018-12-17T22:25:51.098076169Z 66 PC: 13054 | Move file pointer
2018-12-17T22:25:51.10014305Z 66 PC: 13063 | Move file pointer
2018-12-17T22:25:51.101711658Z 64 PC: 13078 | Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:25:51.106185516Z 66 PC: 1308b | Move file pointer
2018-12-17T22:25:51.108358352Z 64 PC: 1309e | Write file or device (Write 794 bytes on handle 5)
2018-12-17T22:25:51.117552331Z 87 PC: 130af | Get or set file date and time
2018-12-17T22:25:51.119863272Z 62 PC: 130b4 | Close file
2018-12-17T22:25:51.138387541Z 79 PC: 13012 | Find next file
2018-12-17T22:25:51.142230835Z 61 PC: 13021 | Open file (Filename = 'TEST.COM')
2018-12-17T22:25:51.149293933Z 63 PC: 13031 | Read file or device (Read 10 bytes on handle 5)
2018-12-17T22:25:51.152786069Z 62 PC: 130b4 | Close file
2018-12-17T22:25:51.154804206Z 79 PC: 13012 | Find next file
2018-12-17T22:25:51.157558982Z 59 PC: 130d2 | Change current directory
2018-12-17T22:25:51.162593028Z 59 PC: 130e2 | Change current directory
2018-12-17T22:25:51.164524341Z 37 PC: 130e9 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:25:51.166774001Z 26 PC: 130f4 | Set disk transfer address