Sample viewer

vx.netlux.org/Virus.DOS.VCL.549

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:28:47.704492644Z	47	PC: 12a61 \| Get disk transfer address
2018-12-17T22:28:47.705942549Z	26	PC: 12a69 \| Set disk transfer address
2018-12-17T22:28:47.707140494Z	42	PC: 12bff \| Get date 0x12bff: mov al, dl 0x12c01: cwde 0x12c02: ret 0x12c03: and byte ptr [bx + di + 0x7a], al 0x12c06: push dx 0x12c07: dec sp 0x12c08: and byte ptr [bx + si], ch 0x12c0a: arpl word ptr [bx + di], bp 0x12c0c: and byte ptr [bx + di], dh 0x12c0e: cmp word ptr [bx + di], di 0x12c10: xor sp, word ptr [bx + si] 0x12c12: sub ax, 0x4120 0x12c15: pop dx 0x12c16: push dx 0x12c17: inc cx 0x12c18: inc bp 0x12c19: dec sp 0x12c1a: and byte ptr [bp + si + 0x59], al 0x12c1d: and byte ptr [bp + di + 0x61], dl 0x12c20: push sp
2018-12-17T22:28:47.709314357Z	71	PC: 12ab0 \| Get current directory
2018-12-17T22:28:47.712321839Z	59	PC: 12ab7 \| Change current directory
2018-12-17T22:28:47.717957272Z	47	PC: 12acc \| Get disk transfer address
2018-12-17T22:28:47.7190225Z	26	PC: 12ada \| Set disk transfer address
2018-12-17T22:28:47.719992993Z	78	PC: 12ae4 \| Find first file
2018-12-17T22:28:47.731175603Z	79	PC: 12b0b \| Find next file
2018-12-17T22:28:47.733498867Z	79	PC: 12b0b \| Find next file
2018-12-17T22:28:47.735769597Z	79	PC: 12b0b \| Find next file
2018-12-17T22:28:47.738723139Z	79	PC: 12b0b \| Find next file
2018-12-17T22:28:47.741074497Z	79	PC: 12b0b \| Find next file
2018-12-17T22:28:47.74371544Z	79	PC: 12b0b \| Find next file
2018-12-17T22:28:47.747118825Z	79	PC: 12b0b \| Find next file
2018-12-17T22:28:47.749651349Z	79	PC: 12b0b \| Find next file
2018-12-17T22:28:47.752000535Z	79	PC: 12b0b \| Find next file
2018-12-17T22:28:47.754751224Z	47	PC: 12b30 \| Get disk transfer address
2018-12-17T22:28:47.755932916Z	26	PC: 12b3f \| Set disk transfer address
2018-12-17T22:28:47.757195698Z	78	PC: 12b49 \| Find first file
2018-12-17T22:28:47.763702528Z	47	PC: 12b61 \| Get disk transfer address
2018-12-17T22:28:47.764633397Z	61	PC: 12b79 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:28:47.770889816Z	63	PC: 12b84 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:28:47.776952534Z	66	PC: 12b8c \| Move file pointer
2018-12-17T22:28:47.778432554Z	62	PC: 12b91 \| Close file
2018-12-17T22:28:47.780910575Z	67	PC: 12bb0 \| Get or set file attributes
2018-12-17T22:28:47.796991616Z	61	PC: 12bb5 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:28:47.803408898Z	64	PC: 12bc0 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:28:47.805934646Z	66	PC: 12bc8 \| Move file pointer
2018-12-17T22:28:47.807047163Z	64	PC: 12bd2 \| Write file or device (Write 549 bytes on handle 5)
2018-12-17T22:28:47.815241123Z	87	PC: 12bdd \| Get or set file date and time
2018-12-17T22:28:47.816651258Z	62	PC: 12be1 \| Close file
2018-12-17T22:28:47.823853722Z	67	PC: 12bee \| Get or set file attributes
2018-12-17T22:28:47.833368121Z	26	PC: 12b5b \| Set disk transfer address
2018-12-17T22:28:47.834460059Z	26	PC: 12b1a \| Set disk transfer address
2018-12-17T22:28:47.835544126Z	59	PC: 12ac1 \| Change current directory
2018-12-17T22:28:47.837587119Z	71	PC: 12ab0 \| Get current directory
2018-12-17T22:28:47.840223802Z	59	PC: 12ab7 \| Change current directory
2018-12-17T22:28:47.848553789Z	47	PC: 12acc \| Get disk transfer address
2018-12-17T22:28:47.849901322Z	26	PC: 12ada \| Set disk transfer address
2018-12-17T22:28:47.850870901Z	78	PC: 12ae4 \| Find first file
2018-12-17T22:28:47.861644688Z	79	PC: 12b0b \| Find next file
2018-12-17T22:28:47.865079366Z	79	PC: 12b0b \| Find next file
2018-12-17T22:28:47.868037171Z	79	PC: 12b0b \| Find next file
2018-12-17T22:28:47.870661119Z	79	PC: 12b0b \| Find next file
2018-12-17T22:28:47.873915794Z	79	PC: 12b0b \| Find next file
2018-12-17T22:28:47.876558094Z	79	PC: 12b0b \| Find next file
2018-12-17T22:28:47.878873532Z	79	PC: 12b0b \| Find next file
2018-12-17T22:28:47.881026188Z	79	PC: 12b0b \| Find next file
2018-12-17T22:28:47.883439828Z	79	PC: 12b0b \| Find next file
2018-12-17T22:28:47.885479241Z	47	PC: 12b30 \| Get disk transfer address
2018-12-17T22:28:47.886386224Z	26	PC: 12b3f \| Set disk transfer address
2018-12-17T22:28:47.887885481Z	78	PC: 12b49 \| Find first file
2018-12-17T22:28:47.893503956Z	47	PC: 12b61 \| Get disk transfer address
2018-12-17T22:28:47.894461269Z	61	PC: 12b79 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:28:47.902136374Z	63	PC: 12b84 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:28:47.908373671Z	66	PC: 12b8c \| Move file pointer
2018-12-17T22:28:47.909791214Z	62	PC: 12b91 \| Close file
2018-12-17T22:28:47.91204775Z	79	PC: 12b49 \| Find next file
2018-12-17T22:28:47.914636492Z	47	PC: 12b61 \| Get disk transfer address
2018-12-17T22:28:47.91572319Z	61	PC: 12b79 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:28:47.92313273Z	63	PC: 12b84 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:28:47.930303347Z	66	PC: 12b8c \| Move file pointer
2018-12-17T22:28:47.931964485Z	62	PC: 12b91 \| Close file
2018-12-17T22:28:47.934216978Z	67	PC: 12bb0 \| Get or set file attributes
2018-12-17T22:28:47.944784935Z	61	PC: 12bb5 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:28:47.951228391Z	64	PC: 12bc0 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:28:47.953956492Z	66	PC: 12bc8 \| Move file pointer
2018-12-17T22:28:47.956231931Z	64	PC: 12bd2 \| Write file or device (Write 549 bytes on handle 5)
2018-12-17T22:28:47.965191056Z	87	PC: 12bdd \| Get or set file date and time
2018-12-17T22:28:47.966827406Z	62	PC: 12be1 \| Close file
2018-12-17T22:28:47.974884708Z	67	PC: 12bee \| Get or set file attributes
2018-12-17T22:28:47.984567667Z	26	PC: 12b5b \| Set disk transfer address
2018-12-17T22:28:47.985755891Z	26	PC: 12b1a \| Set disk transfer address
2018-12-17T22:28:47.987496911Z	59	PC: 12ac1 \| Change current directory
2018-12-17T22:28:47.98933342Z	71	PC: 12ab0 \| Get current directory
2018-12-17T22:28:47.997269215Z	59	PC: 12ab7 \| Change current directory
2018-12-17T22:28:48.001908691Z	47	PC: 12acc \| Get disk transfer address
2018-12-17T22:28:48.003349609Z	26	PC: 12ada \| Set disk transfer address
2018-12-17T22:28:48.004719613Z	78	PC: 12ae4 \| Find first file
2018-12-17T22:28:48.014762046Z	79	PC: 12b0b \| Find next file
2018-12-17T22:28:48.018181867Z	79	PC: 12b0b \| Find next file
2018-12-17T22:28:48.020625794Z	79	PC: 12b0b \| Find next file
2018-12-17T22:28:48.023875872Z	79	PC: 12b0b \| Find next file
2018-12-17T22:28:48.026298328Z	79	PC: 12b0b \| Find next file
2018-12-17T22:28:48.028588262Z	79	PC: 12b0b \| Find next file
2018-12-17T22:28:48.032182977Z	79	PC: 12b0b \| Find next file
2018-12-17T22:28:48.034590097Z	79	PC: 12b0b \| Find next file
2018-12-17T22:28:48.036926135Z	79	PC: 12b0b \| Find next file
2018-12-17T22:28:48.040173758Z	47	PC: 12b30 \| Get disk transfer address
2018-12-17T22:28:48.041270007Z	26	PC: 12b3f \| Set disk transfer address
2018-12-17T22:28:48.04275768Z	78	PC: 12b49 \| Find first file
2018-12-17T22:28:48.049867465Z	47	PC: 12b61 \| Get disk transfer address
2018-12-17T22:28:48.050912711Z	61	PC: 12b79 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:28:48.057846676Z	63	PC: 12b84 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:28:48.065389571Z	66	PC: 12b8c \| Move file pointer
2018-12-17T22:28:48.066709632Z	62	PC: 12b91 \| Close file
2018-12-17T22:28:48.068432352Z	79	PC: 12b49 \| Find next file
2018-12-17T22:28:48.071985263Z	47	PC: 12b61 \| Get disk transfer address
2018-12-17T22:28:48.073458033Z	61	PC: 12b79 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:28:48.079769618Z	63	PC: 12b84 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:28:48.08639519Z	66	PC: 12b8c \| Move file pointer
2018-12-17T22:28:48.08793586Z	62	PC: 12b91 \| Close file
2018-12-17T22:28:48.089830965Z	79	PC: 12b49 \| Find next file
2018-12-17T22:28:48.093574945Z	47	PC: 12b61 \| Get disk transfer address
2018-12-17T22:28:48.095296028Z	61	PC: 12b79 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:28:48.101841179Z	63	PC: 12b84 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:28:48.109090864Z	66	PC: 12b8c \| Move file pointer
2018-12-17T22:28:48.110718223Z	62	PC: 12b91 \| Close file
2018-12-17T22:28:48.112635634Z	67	PC: 12bb0 \| Get or set file attributes
2018-12-17T22:28:48.124525243Z	61	PC: 12bb5 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:28:48.131432589Z	64	PC: 12bc0 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:28:48.135187762Z	66	PC: 12bc8 \| Move file pointer
2018-12-17T22:28:48.137736121Z	64	PC: 12bd2 \| Write file or device (Write 549 bytes on handle 5)
2018-12-17T22:28:48.145986653Z	87	PC: 12bdd \| Get or set file date and time
2018-12-17T22:28:48.147397104Z	62	PC: 12be1 \| Close file
2018-12-17T22:28:48.156614276Z	67	PC: 12bee \| Get or set file attributes
2018-12-17T22:28:48.167250151Z	26	PC: 12b5b \| Set disk transfer address
2018-12-17T22:28:48.168618918Z	26	PC: 12b1a \| Set disk transfer address
2018-12-17T22:28:48.170786254Z	59	PC: 12ac1 \| Change current directory
2018-12-17T22:28:48.172543066Z	26	PC: 12a90 \| Set disk transfer address