Sample viewer

vx.netlux.org/Virus.DOS.HLLP.6089

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:28:55.04711795Z 48 PC: 14092 | Get DOS version
2018-12-17T22:28:55.054088077Z 53 PC: 1377a | Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:28:55.055427209Z 53 PC: 1377a | Get interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:28:55.056533614Z 53 PC: 1377a | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:28:55.058026427Z 53 PC: 1377a | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:28:55.059025324Z 53 PC: 1377a | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:28:55.060093123Z 53 PC: 1377a | Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:28:55.061529015Z 53 PC: 1377a | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:28:55.062690616Z 53 PC: 1377a | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:28:55.063806305Z 53 PC: 1377a | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:28:55.065890032Z 53 PC: 1377a | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:28:55.066864869Z 53 PC: 1377a | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:28:55.067819614Z 53 PC: 1377a | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:28:55.06976817Z 53 PC: 1377a | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:28:55.070992651Z 53 PC: 1377a | Get interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:28:55.07188371Z 53 PC: 1377a | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:28:55.072939031Z 53 PC: 1377a | Get interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:28:55.089688492Z 53 PC: 1377a | Get interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:28:55.090498027Z 53 PC: 1377a | Get interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:28:55.091682133Z 53 PC: 1377a | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:28:55.09322602Z 37 PC: 1378f | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:28:55.094130166Z 37 PC: 13797 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:28:55.094992129Z 37 PC: 1379f | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:28:55.096549042Z 37 PC: 137a7 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:28:55.097869322Z 68 PC: 146c6 | I/O control for devices (Set for = '')
2018-12-17T22:28:55.099171883Z 48 PC: 141f1 | Get DOS version
2018-12-17T22:28:55.100546129Z 48 PC: 141f1 | Get DOS version
2018-12-17T22:28:55.102478068Z 26 PC: 1351d | Set disk transfer address
2018-12-17T22:28:55.103324514Z 78 PC: 13529 | Find first file
2018-12-17T22:28:55.114818663Z 67 PC: 134a6 | Get or set file attributes
2018-12-17T22:28:55.119084762Z 87 PC: 134ed | Get or set file date and time
2018-12-17T22:28:55.120489859Z 26 PC: 13541 | Set disk transfer address
2018-12-17T22:28:55.121681954Z 79 PC: 13546 | Find next file
2018-12-17T22:28:55.12375936Z 67 PC: 134a6 | Get or set file attributes
2018-12-17T22:28:55.137964439Z 87 PC: 134ed | Get or set file date and time
2018-12-17T22:28:55.139822779Z 26 PC: 13541 | Set disk transfer address
2018-12-17T22:28:55.141493038Z 79 PC: 13546 | Find next file
2018-12-17T22:28:55.144696474Z 67 PC: 134a6 | Get or set file attributes
2018-12-17T22:28:55.154368006Z 87 PC: 134ed | Get or set file date and time
2018-12-17T22:28:55.155862475Z 26 PC: 13541 | Set disk transfer address
2018-12-17T22:28:55.156835247Z 79 PC: 13546 | Find next file
2018-12-17T22:28:55.160525898Z 67 PC: 134a6 | Get or set file attributes
2018-12-17T22:28:55.165287421Z 87 PC: 134ed | Get or set file date and time
2018-12-17T22:28:55.166722971Z 26 PC: 13541 | Set disk transfer address
2018-12-17T22:28:55.169724981Z 79 PC: 13546 | Find next file
2018-12-17T22:28:55.173257376Z 67 PC: 134a6 | Get or set file attributes
2018-12-17T22:28:55.182949973Z 87 PC: 134ed | Get or set file date and time
2018-12-17T22:28:55.185689167Z 26 PC: 13541 | Set disk transfer address
2018-12-17T22:28:55.187113103Z 79 PC: 13546 | Find next file
2018-12-17T22:28:55.190676799Z 67 PC: 134a6 | Get or set file attributes
2018-12-17T22:28:55.195846883Z 87 PC: 134ed | Get or set file date and time
2018-12-17T22:28:55.197409734Z 26 PC: 13541 | Set disk transfer address
2018-12-17T22:28:55.198490387Z 79 PC: 13546 | Find next file
2018-12-17T22:28:55.202486364Z 67 PC: 134a6 | Get or set file attributes
2018-12-17T22:28:55.21293842Z 87 PC: 134ed | Get or set file date and time
2018-12-17T22:28:55.215068898Z 26 PC: 13541 | Set disk transfer address
2018-12-17T22:28:55.217534027Z 79 PC: 13546 | Find next file
2018-12-17T22:28:55.221870571Z 67 PC: 134a6 | Get or set file attributes
2018-12-17T22:28:55.226749942Z 87 PC: 134ed | Get or set file date and time
2018-12-17T22:28:55.229892083Z 26 PC: 13541 | Set disk transfer address
2018-12-17T22:28:55.231052055Z 79 PC: 13546 | Find next file
2018-12-17T22:28:55.235030857Z 67 PC: 134a6 | Get or set file attributes
2018-12-17T22:28:55.250279542Z 87 PC: 134ed | Get or set file date and time
2018-12-17T22:28:55.251968904Z 26 PC: 13541 | Set disk transfer address
2018-12-17T22:28:55.253139644Z 79 PC: 13546 | Find next file
2018-12-17T22:28:55.257509636Z 67 PC: 134a6 | Get or set file attributes
2018-12-17T22:28:55.262075968Z 87 PC: 134ed | Get or set file date and time
2018-12-17T22:28:55.263705275Z 26 PC: 13541 | Set disk transfer address
2018-12-17T22:28:55.266854297Z 79 PC: 13546 | Find next file
2018-12-17T22:28:55.270817918Z 67 PC: 134a6 | Get or set file attributes
2018-12-17T22:28:55.275181965Z 87 PC: 134ed | Get or set file date and time
2018-12-17T22:28:55.277812808Z 26 PC: 13541 | Set disk transfer address
2018-12-17T22:28:55.279168224Z 79 PC: 13546 | Find next file
2018-12-17T22:28:55.282844482Z 67 PC: 134a6 | Get or set file attributes
2018-12-17T22:28:55.293921119Z 87 PC: 134ed | Get or set file date and time
2018-12-17T22:28:55.295562866Z 26 PC: 13541 | Set disk transfer address
2018-12-17T22:28:55.296614993Z 79 PC: 13546 | Find next file
2018-12-17T22:28:55.30112227Z 67 PC: 134a6 | Get or set file attributes
2018-12-17T22:28:55.316066685Z 87 PC: 134ed | Get or set file date and time
2018-12-17T22:28:55.317655486Z 26 PC: 13541 | Set disk transfer address
2018-12-17T22:28:55.318893366Z 79 PC: 13546 | Find next file
2018-12-17T22:28:55.323720039Z 67 PC: 134a6 | Get or set file attributes
2018-12-17T22:28:55.333301657Z 87 PC: 134ed | Get or set file date and time
2018-12-17T22:28:55.335182381Z 26 PC: 13541 | Set disk transfer address
2018-12-17T22:28:55.33720544Z 79 PC: 13546 | Find next file
2018-12-17T22:28:55.34087679Z 67 PC: 134a6 | Get or set file attributes
2018-12-17T22:28:55.350797634Z 61 PC: 140a3 | Open file (Filename = '\TEST.EXE')
2018-12-17T22:28:55.358507303Z 66 PC: 147c5 | Move file pointer
2018-12-17T22:28:55.35992515Z 66 PC: 147d3 | Move file pointer
2018-12-17T22:28:55.36134122Z 66 PC: 147e1 | Move file pointer
2018-12-17T22:28:55.3634198Z 66 PC: 141d5 | Move file pointer
2018-12-17T22:28:55.365041582Z 63 PC: 14176 | Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:28:55.371678069Z 62 PC: 140f3 | Close file
2018-12-17T22:28:55.373836803Z 67 PC: 134a6 | Get or set file attributes
2018-12-17T22:28:55.383502613Z 87 PC: 134ed | Get or set file date and time
2018-12-17T22:28:55.384971348Z 26 PC: 13541 | Set disk transfer address
2018-12-17T22:28:55.386442728Z 79 PC: 13546 | Find next file
2018-12-17T22:28:55.388983503Z 26 PC: 1351d | Set disk transfer address
2018-12-17T22:28:55.390130255Z 78 PC: 13529 | Find first file
2018-12-17T22:28:55.39607688Z 26 PC: 13541 | Set disk transfer address
2018-12-17T22:28:55.397150958Z 79 PC: 13546 | Find next file
2018-12-17T22:28:55.399693082Z 26 PC: 13541 | Set disk transfer address
2018-12-17T22:28:55.401119286Z 79 PC: 13546 | Find next file
2018-12-17T22:28:55.404521938Z 26 PC: 13541 | Set disk transfer address
2018-12-17T22:28:55.405769667Z 79 PC: 13546 | Find next file
2018-12-17T22:28:55.409324586Z 26 PC: 13541 | Set disk transfer address
2018-12-17T22:28:55.410297253Z 79 PC: 13546 | Find next file
2018-12-17T22:28:55.412855058Z 26 PC: 13541 | Set disk transfer address
2018-12-17T22:28:55.414346693Z 79 PC: 13546 | Find next file
2018-12-17T22:28:55.417281796Z 26 PC: 13541 | Set disk transfer address
2018-12-17T22:28:55.419946154Z 79 PC: 13546 | Find next file
2018-12-17T22:28:55.423654139Z 26 PC: 13541 | Set disk transfer address
2018-12-17T22:28:55.42476244Z 79 PC: 13546 | Find next file
2018-12-17T22:28:55.427269729Z 26 PC: 13541 | Set disk transfer address
2018-12-17T22:28:55.428716041Z 79 PC: 13546 | Find next file
2018-12-17T22:28:55.431009004Z 26 PC: 13541 | Set disk transfer address
2018-12-17T22:28:55.431833776Z 79 PC: 13546 | Find next file
2018-12-17T22:28:55.434684589Z 48 PC: 141f1 | Get DOS version
2018-12-17T22:28:55.43598606Z 67 PC: 1347f | Get or set file attributes
2018-12-17T22:28:55.441278552Z 87 PC: 134c0 | Get or set file date and time
2018-12-17T22:28:55.443015126Z 67 PC: 134a6 | Get or set file attributes
2018-12-17T22:28:55.452425013Z 61 PC: 140a3 | Open file (Filename = 'A:\TEST.EXE')
2018-12-17T22:28:55.458709152Z 63 PC: 14176 | Read file or device (Read 6087 bytes on handle 5)
2018-12-17T22:28:55.46647269Z 62 PC: 140f3 | Close file
2018-12-17T22:28:55.468299607Z 48 PC: 141f1 | Get DOS version
2018-12-17T22:28:55.469743175Z 61 PC: 140a3 | Open file (Filename = 'A:\TEST.EXE')
2018-12-17T22:28:55.476800379Z 66 PC: 147c5 | Move file pointer
2018-12-17T22:28:55.478319665Z 66 PC: 147d3 | Move file pointer
2018-12-17T22:28:55.479813402Z 66 PC: 147e1 | Move file pointer
2018-12-17T22:28:55.482090115Z 66 PC: 141d5 | Move file pointer
2018-12-17T22:28:55.48339214Z 63 PC: 14176 | Read file or device (Read 6087 bytes on handle 5)
2018-12-17T22:28:55.491123296Z 66 PC: 141d5 | Move file pointer
2018-12-17T22:28:55.493270212Z 64 PC: 14176 | Write file or device (Write 6087 bytes on handle 5)
2018-12-17T22:28:55.501508751Z 62 PC: 140f3 | Close file
2018-12-17T22:28:55.509172658Z 53 PC: 136f0 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:28:55.51048572Z 37 PC: 136f9 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:28:55.511499962Z 53 PC: 136f0 | Get interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:28:55.51272133Z 37 PC: 136f9 | Set interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:28:55.514399345Z 53 PC: 136f0 | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:28:55.520500853Z 37 PC: 136f9 | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:28:55.521983129Z 53 PC: 136f0 | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:28:55.523437145Z 37 PC: 136f9 | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:28:55.524437229Z 53 PC: 136f0 | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:28:55.534340239Z 37 PC: 136f9 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:28:55.535328341Z 53 PC: 136f0 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:28:55.536309968Z 37 PC: 136f9 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:28:55.537695229Z 53 PC: 136f0 | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:28:55.539394943Z 37 PC: 136f9 | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:28:55.540634691Z 53 PC: 136f0 | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:28:55.543044379Z 37 PC: 136f9 | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:28:55.544249343Z 53 PC: 136f0 | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:28:55.54551585Z 37 PC: 136f9 | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:28:55.547724906Z 53 PC: 136f0 | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:28:55.549005259Z 37 PC: 136f9 | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:28:55.550260565Z 53 PC: 136f0 | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:28:55.552414498Z 37 PC: 136f9 | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:28:55.553669325Z 53 PC: 136f0 | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:28:55.554896122Z 37 PC: 136f9 | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:28:55.557016555Z 53 PC: 136f0 | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:28:55.558741323Z 37 PC: 136f9 | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:28:55.560005534Z 53 PC: 136f0 | Get interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:28:55.561886167Z 37 PC: 136f9 | Set interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:28:55.562948234Z 53 PC: 136f0 | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:28:55.564246693Z 37 PC: 136f9 | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:28:55.566119486Z 53 PC: 136f0 | Get interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:28:55.567420259Z 37 PC: 136f9 | Set interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:28:55.568642219Z 53 PC: 136f0 | Get interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:28:55.570304052Z 37 PC: 136f9 | Set interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:28:55.571340858Z 53 PC: 136f0 | Get interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:28:55.572560791Z 37 PC: 136f9 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:28:55.575391507Z 53 PC: 136f0 | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:28:55.576325171Z 37 PC: 136f9 | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:28:55.577725801Z 48 PC: 141f1 | Get DOS version
2018-12-17T22:28:55.579886Z 41 PC: 136a7 | Parse filename
2018-12-17T22:28:55.58141469Z 41 PC: 136b5 | Parse filename
2018-12-17T22:28:55.583023731Z 75 PC: 136c0 | Execute program
2018-12-17T22:28:55.606249637Z 80 PC: 200f9 | Set current PSP
2018-12-17T22:28:55.607291184Z 48 PC: 200fe | Get DOS version
2018-12-17T22:28:55.608919678Z 99 PC: 268e0 | Get DBCS lead byte table pointer
2018-12-17T22:28:55.611908457Z 101 PC: 20184 | Get extended country info
2018-12-17T22:28:55.613335279Z 99 PC: 2018a | Get DBCS lead byte table pointer
2018-12-17T22:28:55.614715901Z 74 PC: 201ec | Reallocate memory
2018-12-17T22:28:55.616640594Z 25 PC: 20223 | Get default drive
2018-12-17T22:28:55.617846492Z 37 PC: 1fce3 | Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T22:28:55.619041943Z 37 PC: 1fcea | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:28:55.621236057Z 37 PC: 1fcf1 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:28:55.625401301Z 74 PC: 1ee8c | Reallocate memory
2018-12-17T22:28:55.626904736Z 72 PC: 1eecd | Allocate memory
2018-12-17T22:28:55.629513167Z 72 PC: 1ef05 | Allocate memory
2018-12-17T22:28:55.631249212Z 72 PC: 1ef0d | Allocate memory