Sample viewer

vx.netlux.org/Virus.DOS.HLLP.Soubor.5088

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:28:04.442935615Z	53	PC: 1313a \| Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:28:04.444772222Z	53	PC: 1313a \| Get interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:28:04.447282547Z	53	PC: 1313a \| Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:28:04.44952296Z	53	PC: 1313a \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:28:04.450865928Z	53	PC: 1313a \| Get interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:28:04.453018655Z	53	PC: 1313a \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:28:04.454688933Z	53	PC: 1313a \| Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:28:04.456377354Z	53	PC: 1313a \| Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:28:04.458795082Z	53	PC: 1313a \| Get interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:28:04.460709167Z	53	PC: 1313a \| Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:28:04.462304976Z	53	PC: 1313a \| Get interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:28:04.465119903Z	53	PC: 1313a \| Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:28:04.466464269Z	53	PC: 1313a \| Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:28:04.467844676Z	53	PC: 1313a \| Get interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:28:04.477708212Z	53	PC: 1313a \| Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:28:04.480951193Z	53	PC: 1313a \| Get interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:28:04.482316956Z	53	PC: 1313a \| Get interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:28:04.488529933Z	53	PC: 1313a \| Get interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:28:04.494572493Z	53	PC: 1313a \| Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:28:04.496424299Z	37	PC: 1314f \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:28:04.498198464Z	37	PC: 13157 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:28:04.500409988Z	37	PC: 1315f \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:28:04.502085947Z	37	PC: 13167 \| Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:28:04.504254547Z	68	PC: 13b3e \| I/O control for devices (Set for = '��')
2018-12-17T22:28:04.507561223Z	64	PC: 13558 \| Write file or device (Write 39 bytes on handle 1)
2018-12-17T22:28:04.513400074Z	64	PC: 13558 \| Write file or device (Write 54 bytes on handle 1)
2018-12-17T22:28:04.520849845Z	64	PC: 13558 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T22:28:04.527267942Z	75	PC: 130b0 \| Execute program
2018-12-17T22:28:04.53033447Z	26	PC: 1301d \| Set disk transfer address
2018-12-17T22:28:04.532014366Z	78	PC: 13029 \| Find first file
2018-12-17T22:28:04.541489193Z	64	PC: 13558 \| Write file or device (Write 11 bytes on handle 1)
2018-12-17T22:28:04.547032688Z	61	PC: 13891 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:28:04.554648871Z	66	PC: 139c3 \| Move file pointer
2018-12-17T22:28:04.556608414Z	63	PC: 13964 \| Read file or device (Read 28 bytes on handle 5)
2018-12-17T22:28:04.564067779Z	26	PC: 13041 \| Set disk transfer address
2018-12-17T22:28:04.566152481Z	79	PC: 13046 \| Find next file
2018-12-17T22:28:04.572099041Z	64	PC: 13558 \| Write file or device (Write 11 bytes on handle 1)
2018-12-17T22:28:04.578022204Z	61	PC: 13891 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:28:04.58624507Z	66	PC: 139c3 \| Move file pointer
2018-12-17T22:28:04.588700523Z	63	PC: 13964 \| Read file or device (Read 28 bytes on handle 6)
2018-12-17T22:28:04.597494621Z	64	PC: 13558 \| Write file or device (Write 0 bytes on handle 1)
2018-12-17T22:28:04.600770053Z	37	PC: 13291 \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:28:04.602544751Z	37	PC: 13291 \| Set interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:28:04.605152928Z	37	PC: 13291 \| Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:28:04.607230961Z	37	PC: 13291 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:28:04.60889082Z	37	PC: 13291 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:28:04.611314925Z	37	PC: 13291 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:28:04.613159441Z	37	PC: 13291 \| Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:28:04.614849256Z	37	PC: 13291 \| Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:28:04.616715256Z	37	PC: 13291 \| Set interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:28:04.623118352Z	37	PC: 13291 \| Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:28:04.629249247Z	37	PC: 13291 \| Set interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:28:04.630702348Z	37	PC: 13291 \| Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:28:04.632358399Z	37	PC: 13291 \| Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:28:04.633647925Z	37	PC: 13291 \| Set interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:28:04.635206619Z	37	PC: 13291 \| Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:28:04.637863685Z	37	PC: 13291 \| Set interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:28:04.639410018Z	37	PC: 13291 \| Set interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:28:04.640957485Z	37	PC: 13291 \| Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:28:04.642967217Z	37	PC: 13291 \| Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:28:04.644578865Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.647401303Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.651186759Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.65459945Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.657238481Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.660813639Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.663536571Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.666204441Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.668900542Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.672894445Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.675791703Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.678498625Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.681980663Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.684673958Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.687390658Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.691063588Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.693683715Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.696337902Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.699755363Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.702399014Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.705012625Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.708563198Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.711274666Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.713891004Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.716895189Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.719466178Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.72211473Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.724909175Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.727856398Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.730570338Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.733141541Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.737019846Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.739524233Z	6	PC: 13318 \| Direct console I/O
2018-12-17T22:28:04.743879525Z	76	PC: 132d0 \| Terminate with return code (Return code = '100')