Sample viewer

vx.netlux.org/Virus.DOS.IVP.Messenger.371

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:26:14.070370883Z	26	PC: 12bce \| Set disk transfer address
2018-12-17T22:26:14.071730641Z	53	PC: 12ac9 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:26:14.072753111Z	37	PC: 12adb \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:26:14.073709205Z	71	PC: 12ae7 \| Get current directory
2018-12-17T22:26:14.07605725Z	78	PC: 12b22 \| Find first file
2018-12-17T22:26:14.080637266Z	61	PC: 12bd7 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:26:14.086910973Z	63	PC: 12b3d \| Read file or device (Read 26 bytes on handle 5)
2018-12-17T22:26:14.096443574Z	62	PC: 12b41 \| Close file
2018-12-17T22:26:14.098149498Z	67	PC: 12be2 \| Get or set file attributes
2018-12-17T22:26:14.122989082Z	61	PC: 12bd7 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:26:14.134441694Z	64	PC: 12b91 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:26:14.141185453Z	66	PC: 12bc9 \| Move file pointer
2018-12-17T22:26:14.142560552Z	64	PC: 12ba3 \| Write file or device (Write 371 bytes on handle 5)
2018-12-17T22:26:14.151394264Z	87	PC: 12bb2 \| Get or set file date and time
2018-12-17T22:26:14.153997814Z	62	PC: 12bb6 \| Close file
2018-12-17T22:26:14.161208249Z	67	PC: 12be2 \| Get or set file attributes
2018-12-17T22:26:14.170731996Z	79	PC: 12b22 \| Find next file
2018-12-17T22:26:14.173308506Z	61	PC: 12bd7 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:26:14.179579951Z	63	PC: 12b3d \| Read file or device (Read 26 bytes on handle 5)
2018-12-17T22:26:14.185620854Z	62	PC: 12b41 \| Close file
2018-12-17T22:26:14.18765013Z	67	PC: 12be2 \| Get or set file attributes
2018-12-17T22:26:14.197735731Z	61	PC: 12bd7 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:26:14.205507013Z	64	PC: 12b91 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:26:14.208559285Z	66	PC: 12bc9 \| Move file pointer
2018-12-17T22:26:14.210107995Z	64	PC: 12ba3 \| Write file or device (Write 371 bytes on handle 5)
2018-12-17T22:26:14.213127121Z	87	PC: 12bb2 \| Get or set file date and time
2018-12-17T22:26:14.215308634Z	62	PC: 12bb6 \| Close file
2018-12-17T22:26:14.222795883Z	67	PC: 12be2 \| Get or set file attributes
2018-12-17T22:26:14.232648396Z	79	PC: 12b22 \| Find next file
2018-12-17T22:26:14.236239378Z	61	PC: 12bd7 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:26:14.242633076Z	63	PC: 12b3d \| Read file or device (Read 26 bytes on handle 5)
2018-12-17T22:26:14.248764583Z	62	PC: 12b41 \| Close file
2018-12-17T22:26:14.258019313Z	67	PC: 12be2 \| Get or set file attributes
2018-12-17T22:26:14.267691996Z	61	PC: 12bd7 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:26:14.274938157Z	64	PC: 12b91 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:26:14.278231466Z	66	PC: 12bc9 \| Move file pointer
2018-12-17T22:26:14.27949787Z	64	PC: 12ba3 \| Write file or device (Write 371 bytes on handle 5)
2018-12-17T22:26:14.282062351Z	87	PC: 12bb2 \| Get or set file date and time
2018-12-17T22:26:14.284116793Z	62	PC: 12bb6 \| Close file
2018-12-17T22:26:14.292038617Z	67	PC: 12be2 \| Get or set file attributes
2018-12-17T22:26:14.301338066Z	79	PC: 12b22 \| Find next file
2018-12-17T22:26:14.304713479Z	61	PC: 12bd7 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:26:14.310871925Z	63	PC: 12b3d \| Read file or device (Read 26 bytes on handle 5)
2018-12-17T22:26:14.316841355Z	62	PC: 12b41 \| Close file
2018-12-17T22:26:14.319651378Z	67	PC: 12be2 \| Get or set file attributes
2018-12-17T22:26:14.329126678Z	61	PC: 12bd7 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:26:14.336350097Z	64	PC: 12b91 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:26:14.340234909Z	66	PC: 12bc9 \| Move file pointer
2018-12-17T22:26:14.341654793Z	64	PC: 12ba3 \| Write file or device (Write 371 bytes on handle 5)
2018-12-17T22:26:14.344265282Z	87	PC: 12bb2 \| Get or set file date and time
2018-12-17T22:26:14.347313412Z	62	PC: 12bb6 \| Close file
2018-12-17T22:26:14.354533062Z	67	PC: 12be2 \| Get or set file attributes
2018-12-17T22:26:14.364166327Z	79	PC: 12b22 \| Find next file
2018-12-17T22:26:14.366873956Z	61	PC: 12bd7 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:26:14.373662217Z	63	PC: 12b3d \| Read file or device (Read 26 bytes on handle 5)
2018-12-17T22:26:14.37970201Z	62	PC: 12b41 \| Close file
2018-12-17T22:26:14.38408591Z	67	PC: 12be2 \| Get or set file attributes
2018-12-17T22:26:14.394904196Z	61	PC: 12bd7 \| Open file (Filename = 'PRINTA~1.COM�')
2018-12-17T22:26:14.399495771Z	64	PC: 12b91 \| Write file or device (Write 3 bytes on handle 2)
2018-12-17T22:26:14.402879306Z	66	PC: 12bc9 \| Move file pointer
2018-12-17T22:26:14.40511934Z	64	PC: 12ba3 \| Write file or device (Write 371 bytes on handle 2)
2018-12-17T22:26:14.411745641Z	87	PC: 12bb2 \| Get or set file date and time
2018-12-17T22:26:14.413585399Z	62	PC: 12bb6 \| Close file
2018-12-17T22:26:14.416719181Z	67	PC: 12be2 \| Get or set file attributes
2018-12-17T22:26:14.421318983Z	79	PC: 12b22 \| Find next file
2018-12-17T22:26:14.424221757Z	61	PC: 12bd7 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:26:14.431553313Z	63	PC: 12b3d \| Read file or device (Read 26 bytes on handle 2)
2018-12-17T22:26:14.437662023Z	62	PC: 12b41 \| Close file
2018-12-17T22:26:14.439468455Z	67	PC: 12be2 \| Get or set file attributes
2018-12-17T22:26:14.450078159Z	61	PC: 12bd7 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:26:14.456533299Z	64	PC: 12b91 \| Write file or device (Write 3 bytes on handle 2)
2018-12-17T22:26:14.459157077Z	66	PC: 12bc9 \| Move file pointer
2018-12-17T22:26:14.46108231Z	64	PC: 12ba3 \| Write file or device (Write 371 bytes on handle 2)
2018-12-17T22:26:14.469309811Z	87	PC: 12bb2 \| Get or set file date and time
2018-12-17T22:26:14.471650433Z	62	PC: 12bb6 \| Close file
2018-12-17T22:26:14.480386341Z	67	PC: 12be2 \| Get or set file attributes
2018-12-17T22:26:14.490053232Z	79	PC: 12b22 \| Find next file
2018-12-17T22:26:14.492537886Z	61	PC: 12bd7 \| Open file (Filename = 'PAH.COM')
2018-12-17T22:26:14.502319337Z	63	PC: 12b3d \| Read file or device (Read 26 bytes on handle 2)
2018-12-17T22:26:14.507477992Z	62	PC: 12b41 \| Close file
2018-12-17T22:26:14.509368539Z	67	PC: 12be2 \| Get or set file attributes
2018-12-17T22:26:14.519614536Z	61	PC: 12bd7 \| Open file (Filename = 'PAH.COM')
2018-12-17T22:26:14.531964644Z	64	PC: 12b91 \| Write file or device (Write 3 bytes on handle 2)
2018-12-17T22:26:14.534886307Z	66	PC: 12bc9 \| Move file pointer
2018-12-17T22:26:14.537100034Z	64	PC: 12ba3 \| Write file or device (Write 371 bytes on handle 2)
2018-12-17T22:26:14.539668269Z	87	PC: 12bb2 \| Get or set file date and time
2018-12-17T22:26:14.541040357Z	62	PC: 12bb6 \| Close file
2018-12-17T22:26:14.559474823Z	67	PC: 12be2 \| Get or set file attributes
2018-12-17T22:26:14.568974029Z	79	PC: 12b22 \| Find next file
2018-12-17T22:26:14.571799607Z	61	PC: 12bd7 \| Open file (Filename = 'TEST.COM')
2018-12-17T22:26:14.578919404Z	63	PC: 12b3d \| Read file or device (Read 26 bytes on handle 2)
2018-12-17T22:26:14.5859601Z	62	PC: 12b41 \| Close file
2018-12-17T22:26:14.58780446Z	79	PC: 12b22 \| Find next file
2018-12-17T22:26:14.591299799Z	59	PC: 12af6 \| Change current directory
2018-12-17T22:26:14.595460062Z	9	PC: 12b00 \| Display string (String= 'Barney Messenger From Hell [IVP] ')
2018-12-17T22:26:14.603091124Z	37	PC: 12b0a \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:26:14.605440156Z	59	PC: 12b14 \| Change current directory
2018-12-17T22:26:14.607685181Z	78	PC: 12b22 \| Find first file
2018-12-17T22:26:14.610756192Z	9	PC: 12aa2 \| Display string (String= 'ABCDE - This is a 100 byte COM test, 1994 ')