Sample viewer

vx.netlux.org/Virus.DOS.HLLC.8086

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:29:36.484073827Z	53	PC: 1496a \| Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:29:36.486743571Z	53	PC: 1496a \| Get interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:29:36.488227573Z	53	PC: 1496a \| Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:29:36.489682413Z	53	PC: 1496a \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:29:36.492155042Z	53	PC: 1496a \| Get interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:29:36.500670392Z	53	PC: 1496a \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:29:36.502099822Z	53	PC: 1496a \| Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:29:36.503330816Z	53	PC: 1496a \| Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:29:36.507046699Z	53	PC: 1496a \| Get interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:29:36.508553046Z	53	PC: 1496a \| Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:29:36.509816607Z	53	PC: 1496a \| Get interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:29:36.514535659Z	53	PC: 1496a \| Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:29:36.516007382Z	53	PC: 1496a \| Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:29:36.517463185Z	53	PC: 1496a \| Get interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:29:36.519609621Z	53	PC: 1496a \| Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:29:36.521124421Z	53	PC: 1496a \| Get interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:29:36.522600407Z	53	PC: 1496a \| Get interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:29:36.531571776Z	53	PC: 1496a \| Get interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:29:36.532977355Z	53	PC: 1496a \| Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:29:36.534436525Z	37	PC: 1497f \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:29:36.536542887Z	37	PC: 14987 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:29:36.537811372Z	37	PC: 1498f \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:29:36.538887844Z	37	PC: 14997 \| Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:29:36.5407923Z	68	PC: 15766 \| I/O control for devices (Set for = 'ï¿½>ï¿½
2018-12-17T22:29:36.542692619Z	25	PC: 1530f \| Get default drive
2018-12-17T22:29:36.543816666Z	71	PC: 15322 \| Get current directory
2018-12-17T22:29:36.551352049Z	48	PC: 15282 \| Get DOS version
2018-12-17T22:29:36.553590783Z	67	PC: 1472e \| Get or set file attributes
2018-12-17T22:29:36.560084795Z	67	PC: 1472e \| Get or set file attributes
2018-12-17T22:29:36.571762994Z	14	PC: 15368 \| Set default drive (Drive = 'D')
2018-12-17T22:29:36.573516999Z	25	PC: 1536c \| Get default drive
2018-12-17T22:29:36.575335787Z	14	PC: 15368 \| Set default drive (Drive = 'E')
2018-12-17T22:29:36.577355992Z	25	PC: 1536c \| Get default drive
2018-12-17T22:29:36.57915232Z	14	PC: 15368 \| Set default drive (Drive = 'F')
2018-12-17T22:29:36.580503089Z	25	PC: 1536c \| Get default drive
2018-12-17T22:29:36.582056603Z	14	PC: 15368 \| Set default drive (Drive = 'G')
2018-12-17T22:29:36.585596472Z	25	PC: 1536c \| Get default drive
2018-12-17T22:29:36.587420317Z	14	PC: 15368 \| Set default drive (Drive = 'H')
2018-12-17T22:29:36.589083219Z	25	PC: 1536c \| Get default drive
2018-12-17T22:29:36.592536746Z	14	PC: 15368 \| Set default drive (Drive = 'I')
2018-12-17T22:29:36.594278447Z	25	PC: 1536c \| Get default drive
2018-12-17T22:29:36.596007938Z	14	PC: 15368 \| Set default drive (Drive = 'J')
2018-12-17T22:29:36.598716893Z	25	PC: 1536c \| Get default drive
2018-12-17T22:29:36.600419089Z	14	PC: 15368 \| Set default drive (Drive = 'K')
2018-12-17T22:29:36.602221094Z	25	PC: 1536c \| Get default drive
2018-12-17T22:29:36.605303156Z	14	PC: 15368 \| Set default drive (Drive = 'L')
2018-12-17T22:29:36.606983838Z	25	PC: 1536c \| Get default drive
2018-12-17T22:29:36.608741918Z	14	PC: 15368 \| Set default drive (Drive = 'M')
2018-12-17T22:29:36.611353665Z	25	PC: 1536c \| Get default drive
2018-12-17T22:29:36.613117716Z	14	PC: 15368 \| Set default drive (Drive = 'N')
2018-12-17T22:29:36.614701672Z	25	PC: 1536c \| Get default drive
2018-12-17T22:29:36.617562389Z	14	PC: 15368 \| Set default drive (Drive = 'O')
2018-12-17T22:29:36.6190542Z	25	PC: 1536c \| Get default drive
2018-12-17T22:29:36.620748836Z	14	PC: 15368 \| Set default drive (Drive = 'P')
2018-12-17T22:29:36.622434478Z	25	PC: 1536c \| Get default drive
2018-12-17T22:29:36.62438986Z	14	PC: 15368 \| Set default drive (Drive = 'Q')
2018-12-17T22:29:36.625920587Z	25	PC: 1536c \| Get default drive
2018-12-17T22:29:36.627710283Z	14	PC: 15368 \| Set default drive (Drive = 'R')
2018-12-17T22:29:36.629495623Z	25	PC: 1536c \| Get default drive
2018-12-17T22:29:36.631097377Z	14	PC: 15368 \| Set default drive (Drive = 'S')
2018-12-17T22:29:36.63270767Z	25	PC: 1536c \| Get default drive
2018-12-17T22:29:36.634726337Z	14	PC: 15368 \| Set default drive (Drive = 'T')
2018-12-17T22:29:36.635873075Z	25	PC: 1536c \| Get default drive
2018-12-17T22:29:36.637094641Z	14	PC: 15368 \| Set default drive (Drive = 'U')
2018-12-17T22:29:36.638799826Z	25	PC: 1536c \| Get default drive
2018-12-17T22:29:36.640026617Z	14	PC: 15368 \| Set default drive (Drive = 'V')
2018-12-17T22:29:36.641592112Z	25	PC: 1536c \| Get default drive
2018-12-17T22:29:36.643716912Z	14	PC: 15368 \| Set default drive (Drive = 'W')
2018-12-17T22:29:36.645270163Z	25	PC: 1536c \| Get default drive
2018-12-17T22:29:36.646541753Z	14	PC: 15368 \| Set default drive (Drive = 'X')
2018-12-17T22:29:36.648478779Z	25	PC: 1536c \| Get default drive
2018-12-17T22:29:36.649936869Z	14	PC: 15368 \| Set default drive (Drive = 'Y')
2018-12-17T22:29:36.651268132Z	25	PC: 1536c \| Get default drive
2018-12-17T22:29:36.653101052Z	14	PC: 15368 \| Set default drive (Drive = 'Z')
2018-12-17T22:29:36.654234844Z	25	PC: 1536c \| Get default drive
2018-12-17T22:29:36.655418183Z	14	PC: 15368 \| Set default drive (Drive = 'C')
2018-12-17T22:29:36.657373595Z	25	PC: 1536c \| Get default drive
2018-12-17T22:29:36.658629692Z	59	PC: 153d6 \| Change current directory
2018-12-17T22:29:36.662377645Z	25	PC: 1530f \| Get default drive
2018-12-17T22:29:36.664458895Z	71	PC: 15322 \| Get current directory
2018-12-17T22:29:36.667284552Z	67	PC: 1472e \| Get or set file attributes
2018-12-17T22:29:36.673673419Z	67	PC: 1472e \| Get or set file attributes
2018-12-17T22:29:36.680198725Z	60	PC: 150c0 \| Create or truncate file
2018-12-17T22:29:37.028864403Z	64	PC: 15152 \| Write file or device (Write 1 bytes on handle 5)
2018-12-17T22:29:37.037295661Z	62	PC: 15110 \| Close file
2018-12-17T22:29:37.046556502Z	65	PC: 15209 \| Delete file (Filename = 'delme.zzz')
2018-12-17T22:29:37.056681527Z	25	PC: 1530f \| Get default drive
2018-12-17T22:29:37.057781141Z	71	PC: 15322 \| Get current directory
2018-12-17T22:29:37.060885288Z	25	PC: 1530f \| Get default drive
2018-12-17T22:29:37.061928018Z	71	PC: 15322 \| Get current directory
2018-12-17T22:29:37.064466452Z	14	PC: 15368 \| Set default drive (Drive = 'C')
2018-12-17T22:29:37.066694664Z	25	PC: 1536c \| Get default drive
2018-12-17T22:29:37.067735442Z	59	PC: 153d6 \| Change current directory
2018-12-17T22:29:37.071365246Z	26	PC: 1462f \| Set disk transfer address
2018-12-17T22:29:37.072694788Z	78	PC: 1463b \| Find first file
2018-12-17T22:29:37.079507718Z	26	PC: 14653 \| Set disk transfer address
2018-12-17T22:29:37.080804499Z	79	PC: 14658 \| Find next file
2018-12-17T22:29:37.083846069Z	26	PC: 14653 \| Set disk transfer address
2018-12-17T22:29:37.085579013Z	79	PC: 14658 \| Find next file
2018-12-17T22:29:37.088740409Z	26	PC: 14653 \| Set disk transfer address
2018-12-17T22:29:37.090351078Z	79	PC: 14658 \| Find next file
2018-12-17T22:29:37.093380226Z	26	PC: 14653 \| Set disk transfer address
2018-12-17T22:29:37.094401223Z	79	PC: 14658 \| Find next file
2018-12-17T22:29:37.097342123Z	26	PC: 14653 \| Set disk transfer address
2018-12-17T22:29:37.098540729Z	79	PC: 14658 \| Find next file
2018-12-17T22:29:37.101115023Z	26	PC: 1462f \| Set disk transfer address
2018-12-17T22:29:37.102591083Z	78	PC: 1463b \| Find first file
2018-12-17T22:29:37.109472343Z	26	PC: 14653 \| Set disk transfer address
2018-12-17T22:29:37.110710189Z	79	PC: 14658 \| Find next file
2018-12-17T22:29:37.113658202Z	26	PC: 14653 \| Set disk transfer address
2018-12-17T22:29:37.115804623Z	79	PC: 14658 \| Find next file
2018-12-17T22:29:37.119143623Z	25	PC: 1530f \| Get default drive
2018-12-17T22:29:37.120449672Z	71	PC: 15322 \| Get current directory
2018-12-17T22:29:37.123858204Z	59	PC: 153d6 \| Change current directory
2018-12-17T22:29:37.132325013Z	26	PC: 1462f \| Set disk transfer address
2018-12-17T22:29:37.133462431Z	78	PC: 1463b \| Find first file
2018-12-17T22:29:37.140831397Z	67	PC: 145b8 \| Get or set file attributes
2018-12-17T22:29:37.150869732Z	61	PC: 150c0 \| Open file (Filename = 'ATTRIB.EXE')
2018-12-17T22:29:37.157710694Z	63	PC: 15152 \| Read file or device (Read 1 bytes on handle 5)
2018-12-17T22:29:37.164356522Z	63	PC: 15152 \| Read file or device (Read 1 bytes on handle 5)
2018-12-17T22:29:37.167172141Z	66	PC: 151f2 \| Move file pointer
2018-12-17T22:29:37.168860762Z	63	PC: 15152 \| Read file or device (Read 1 bytes on handle 5)
2018-12-17T22:29:37.172512609Z	63	PC: 15152 \| Read file or device (Read 1 bytes on handle 5)
2018-12-17T22:29:37.175370159Z	66	PC: 151f2 \| Move file pointer
2018-12-17T22:29:37.177039253Z	63	PC: 15152 \| Read file or device (Read 1 bytes on handle 5)
2018-12-17T22:29:37.179941878Z	63	PC: 15152 \| Read file or device (Read 1 bytes on handle 5)
2018-12-17T22:29:37.182372944Z	62	PC: 15110 \| Close file
2018-12-17T22:29:37.185336949Z	61	PC: 150c0 \| Open file (Filename = 'ATTRIB.EXE')
2018-12-17T22:29:37.192755357Z	66	PC: 15948 \| Move file pointer
2018-12-17T22:29:37.194163918Z	66	PC: 15956 \| Move file pointer
2018-12-17T22:29:37.195499001Z	66	PC: 15964 \| Move file pointer
2018-12-17T22:29:37.197489796Z	62	PC: 15110 \| Close file
2018-12-17T22:29:37.199406323Z	65	PC: 15209 \| Delete file (Filename = 'ATTRIB.EXL')
2018-12-17T22:29:37.205335782Z	86	PC: 1524d \| Rename file
2018-12-17T22:29:37.217938983Z	67	PC: 145b8 \| Get or set file attributes
2018-12-17T22:29:37.22782941Z	67	PC: 14591 \| Get or set file attributes
2018-12-17T22:29:37.233705205Z	67	PC: 145b8 \| Get or set file attributes
2018-12-17T22:29:37.25112248Z	61	PC: 150c0 \| Open file (Filename = 'A:\TEST.EXE')
2018-12-17T22:29:37.25913594Z	60	PC: 150c0 \| Create or truncate file
2018-12-17T22:29:37.270043881Z	63	PC: 15193 \| Read file or device (Read 8192 bytes on handle 5)
2018-12-17T22:29:37.278882313Z	64	PC: 15193 \| Write file or device (Write 8086 bytes on handle 6)
2018-12-17T22:29:37.293041564Z	63	PC: 15193 \| Read file or device (Read 8192 bytes on handle 5)
2018-12-17T22:29:37.29534183Z	62	PC: 15110 \| Close file
2018-12-17T22:29:37.304497772Z	67	PC: 145b8 \| Get or set file attributes
2018-12-17T22:29:37.314929879Z	62	PC: 15110 \| Close file
2018-12-17T22:29:37.317102316Z	61	PC: 150c0 \| Open file (Filename = 'ATTRIB.EXL')
2018-12-17T22:29:37.324762475Z	63	PC: 15152 \| Read file or device (Read 1 bytes on handle 5)
2018-12-17T22:29:37.328083706Z	63	PC: 15152 \| Read file or device (Read 1 bytes on handle 5)
2018-12-17T22:29:37.335024086Z	63	PC: 15152 \| Read file or device (Read 1 bytes on handle 5)
2018-12-17T22:29:37.338416294Z	63	PC: 15152 \| Read file or device (Read 1 bytes on handle 5)
2018-12-17T22:29:37.341350804Z	63	PC: 15152 \| Read file or device (Read 1 bytes on handle 5)
2018-12-17T22:29:37.344325222Z	63	PC: 15152 \| Read file or device (Read 1 bytes on handle 5)
2018-12-17T22:29:37.348399305Z	63	PC: 15152 \| Read file or device (Read 1 bytes on handle 5)
2018-12-17T22:29:37.351574087Z	62	PC: 15110 \| Close file
2018-12-17T22:29:37.354601216Z	61	PC: 150c0 \| Open file (Filename = 'ATTRIB.EXL')
2018-12-17T22:29:37.363036995Z	64	PC: 15152 \| Write file or device (Write 1 bytes on handle 5)
2018-12-17T22:29:37.366473792Z	64	PC: 15152 \| Write file or device (Write 1 bytes on handle 5)
2018-12-17T22:29:37.369690618Z	64	PC: 15152 \| Write file or device (Write 1 bytes on handle 5)
2018-12-17T22:29:37.374524028Z	64	PC: 15152 \| Write file or device (Write 1 bytes on handle 5)
2018-12-17T22:29:37.377764976Z	64	PC: 15152 \| Write file or device (Write 1 bytes on handle 5)
2018-12-17T22:29:37.381009073Z	64	PC: 15152 \| Write file or device (Write 1 bytes on handle 5)
2018-12-17T22:29:37.385386644Z	64	PC: 15152 \| Write file or device (Write 1 bytes on handle 5)
2018-12-17T22:29:37.388537312Z	62	PC: 15110 \| Close file
2018-12-17T22:29:37.396114986Z	14	PC: 15368 \| Set default drive (Drive = 'C')
2018-12-17T22:29:37.397771741Z	25	PC: 1536c \| Get default drive
2018-12-17T22:29:37.400424508Z	59	PC: 153d6 \| Change current directory
2018-12-17T22:29:37.404419802Z	14	PC: 15368 \| Set default drive (Drive = 'C')
2018-12-17T22:29:37.407125686Z	25	PC: 1536c \| Get default drive
2018-12-17T22:29:37.408612793Z	59	PC: 153d6 \| Change current directory
2018-12-17T22:29:37.412625282Z	14	PC: 15368 \| Set default drive (Drive = 'A')
2018-12-17T22:29:37.414268704Z	25	PC: 1536c \| Get default drive
2018-12-17T22:29:37.416840631Z	59	PC: 153d6 \| Change current directory
2018-12-17T22:29:37.422001573Z	61	PC: 150c0 \| Open file (Filename = 'A:\TEST.EXL')
2018-12-17T22:29:37.428969011Z	64	PC: 14d88 \| Write file or device (Write 24 bytes on handle 1)
2018-12-17T22:29:37.435860703Z	64	PC: 14d88 \| Write file or device (Write 0 bytes on handle 1)
2018-12-17T22:29:37.437934995Z	37	PC: 14ac1 \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:29:37.439396748Z	37	PC: 14ac1 \| Set interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:29:37.441853345Z	37	PC: 14ac1 \| Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:29:37.443256117Z	37	PC: 14ac1 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:29:37.444623795Z	37	PC: 14ac1 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:29:37.446851233Z	37	PC: 14ac1 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:29:37.448268978Z	37	PC: 14ac1 \| Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:29:37.449652395Z	37	PC: 14ac1 \| Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:29:37.451630174Z	37	PC: 14ac1 \| Set interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:29:37.452971588Z	37	PC: 14ac1 \| Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:29:37.45442724Z	37	PC: 14ac1 \| Set interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:29:37.456670234Z	37	PC: 14ac1 \| Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:29:37.458018445Z	37	PC: 14ac1 \| Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:29:37.459377852Z	37	PC: 14ac1 \| Set interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:29:37.46114805Z	37	PC: 14ac1 \| Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:29:37.462344112Z	37	PC: 14ac1 \| Set interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:29:37.463277003Z	37	PC: 14ac1 \| Set interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:29:37.464768816Z	37	PC: 14ac1 \| Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:29:37.465859112Z	37	PC: 14ac1 \| Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:29:37.466919255Z	76	PC: 14b00 \| Terminate with return code (Return code = '0')