Sample viewer

vx.netlux.org/Virus.DOS.Hammer.512

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:15:29.610106442Z	74	PC: 12a98 \| Reallocate memory
2018-12-17T23:15:29.611778895Z	72	PC: 12a9f \| Allocate memory
2018-12-17T23:15:29.613552789Z	26	PC: 12aaa \| Set disk transfer address
2018-12-17T23:15:29.614806446Z	78	PC: 12ab9 \| Find first file
2018-12-17T23:15:29.620728989Z	61	PC: 12ac4 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T23:15:29.626881393Z	66	PC: 12ad2 \| Move file pointer
2018-12-17T23:15:29.628052915Z	63	PC: 12adc \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:15:29.63365752Z	66	PC: 12aee \| Move file pointer
2018-12-17T23:15:29.635235265Z	63	PC: 12afd \| Read file or device (Read 512 bytes on handle 5)
2018-12-17T23:15:29.637410033Z	66	PC: 12b06 \| Move file pointer
2018-12-17T23:15:29.638649473Z	64	PC: 12b13 \| Write file or device (Write 512 bytes on handle 5)
2018-12-17T23:15:31.833759073Z	66	PC: 12b1c \| Move file pointer
2018-12-17T23:15:31.836696374Z	64	PC: 12b28 \| Write file or device (Write 512 bytes on handle 5)
2018-12-17T23:15:32.03073642Z	62	PC: 12b2c \| Close file
2018-12-17T23:15:32.450252441Z	79	PC: 12b30 \| Find next file
2018-12-17T23:15:32.456250455Z	61	PC: 12ac4 \| Open file (Filename = 'PRINT.COM')
2018-12-17T23:15:32.463771463Z	66	PC: 12ad2 \| Move file pointer
2018-12-17T23:15:32.465856662Z	63	PC: 12adc \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:15:32.47317622Z	66	PC: 12aee \| Move file pointer
2018-12-17T23:15:32.4754211Z	63	PC: 12afd \| Read file or device (Read 512 bytes on handle 5)
2018-12-17T23:15:32.477850767Z	66	PC: 12b06 \| Move file pointer
2018-12-17T23:15:32.479893195Z	64	PC: 12b13 \| Write file or device (Write 512 bytes on handle 5)
2018-12-17T23:15:32.85877036Z	66	PC: 12b1c \| Move file pointer
2018-12-17T23:15:32.861244651Z	64	PC: 12b28 \| Write file or device (Write 512 bytes on handle 5)
2018-12-17T23:15:32.895185778Z	62	PC: 12b2c \| Close file
2018-12-17T23:15:33.090991412Z	79	PC: 12b30 \| Find next file
2018-12-17T23:15:33.09444813Z	61	PC: 12ac4 \| Open file (Filename = 'HELLO.COM')
2018-12-17T23:15:33.102542344Z	66	PC: 12ad2 \| Move file pointer
2018-12-17T23:15:33.104282325Z	63	PC: 12adc \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:15:33.111163619Z	66	PC: 12aee \| Move file pointer
2018-12-17T23:15:33.113830342Z	63	PC: 12afd \| Read file or device (Read 512 bytes on handle 5)
2018-12-17T23:15:33.116511261Z	66	PC: 12b06 \| Move file pointer
2018-12-17T23:15:33.118583747Z	64	PC: 12b13 \| Write file or device (Write 512 bytes on handle 5)
2018-12-17T23:15:33.312613693Z	66	PC: 12b1c \| Move file pointer
2018-12-17T23:15:33.31516567Z	64	PC: 12b28 \| Write file or device (Write 512 bytes on handle 5)
2018-12-17T23:15:33.465984907Z	62	PC: 12b2c \| Close file
2018-12-17T23:15:33.487355706Z	79	PC: 12b30 \| Find next file
2018-12-17T23:15:33.490982293Z	61	PC: 12ac4 \| Open file (Filename = 'PHANG.COM')
2018-12-17T23:15:33.498149595Z	66	PC: 12ad2 \| Move file pointer
2018-12-17T23:15:33.500042753Z	63	PC: 12adc \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:15:33.508079099Z	66	PC: 12aee \| Move file pointer
2018-12-17T23:15:33.509891576Z	63	PC: 12afd \| Read file or device (Read 512 bytes on handle 5)
2018-12-17T23:15:33.512963459Z	66	PC: 12b06 \| Move file pointer
2018-12-17T23:15:33.515935065Z	64	PC: 12b13 \| Write file or device (Write 512 bytes on handle 5)
2018-12-17T23:15:33.571338644Z	66	PC: 12b1c \| Move file pointer
2018-12-17T23:15:33.573186818Z	64	PC: 12b28 \| Write file or device (Write 512 bytes on handle 5)
2018-12-17T23:15:33.613352064Z	62	PC: 12b2c \| Close file
2018-12-17T23:15:33.627542908Z	79	PC: 12b30 \| Find next file
2018-12-17T23:15:33.63118303Z	61	PC: 12ac4 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T23:15:33.642851894Z	66	PC: 12ad2 \| Move file pointer
2018-12-17T23:15:33.646048412Z	63	PC: 12adc \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:15:33.658681958Z	66	PC: 12aee \| Move file pointer
2018-12-17T23:15:33.661742982Z	63	PC: 12afd \| Read file or device (Read 512 bytes on handle 5)
2018-12-17T23:15:33.665588731Z	66	PC: 12b06 \| Move file pointer
2018-12-17T23:15:33.668272164Z	64	PC: 12b13 \| Write file or device (Write 512 bytes on handle 5)
2018-12-17T23:15:33.684444954Z	66	PC: 12b1c \| Move file pointer
2018-12-17T23:15:33.687067173Z	64	PC: 12b28 \| Write file or device (Write 512 bytes on handle 5)
2018-12-17T23:15:33.719915866Z	62	PC: 12b2c \| Close file
2018-12-17T23:15:33.755444778Z	79	PC: 12b30 \| Find next file
2018-12-17T23:15:33.75894623Z	61	PC: 12ac4 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T23:15:33.765820411Z	66	PC: 12ad2 \| Move file pointer
2018-12-17T23:15:33.770941606Z	63	PC: 12adc \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:15:33.778287725Z	66	PC: 12aee \| Move file pointer
2018-12-17T23:15:33.780480245Z	63	PC: 12afd \| Read file or device (Read 512 bytes on handle 5)
2018-12-17T23:15:33.783792301Z	66	PC: 12b06 \| Move file pointer
2018-12-17T23:15:33.786365648Z	64	PC: 12b13 \| Write file or device (Write 512 bytes on handle 5)
2018-12-17T23:15:33.817298581Z	66	PC: 12b1c \| Move file pointer
2018-12-17T23:15:33.819225162Z	64	PC: 12b28 \| Write file or device (Write 512 bytes on handle 5)
2018-12-17T23:15:33.849401583Z	62	PC: 12b2c \| Close file
2018-12-17T23:15:33.87455885Z	79	PC: 12b30 \| Find next file
2018-12-17T23:15:33.87809667Z	61	PC: 12ac4 \| Open file (Filename = 'PAH.COM')
2018-12-17T23:15:33.885424734Z	66	PC: 12ad2 \| Move file pointer
2018-12-17T23:15:33.888475919Z	63	PC: 12adc \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:15:33.895531661Z	66	PC: 12aee \| Move file pointer
2018-12-17T23:15:33.897761523Z	63	PC: 12afd \| Read file or device (Read 512 bytes on handle 5)
2018-12-17T23:15:33.901754709Z	66	PC: 12b06 \| Move file pointer
2018-12-17T23:15:33.904267982Z	64	PC: 12b13 \| Write file or device (Write 512 bytes on handle 5)
2018-12-17T23:15:33.946372564Z	66	PC: 12b1c \| Move file pointer
2018-12-17T23:15:33.949205048Z	64	PC: 12b28 \| Write file or device (Write 512 bytes on handle 5)
2018-12-17T23:15:34.002998721Z	62	PC: 12b2c \| Close file
2018-12-17T23:15:34.044602582Z	79	PC: 12b30 \| Find next file
2018-12-17T23:15:34.0483897Z	61	PC: 12ac4 \| Open file (Filename = 'TEST.COM')
2018-12-17T23:15:34.055646069Z	66	PC: 12ad2 \| Move file pointer
2018-12-17T23:15:34.05755076Z	63	PC: 12adc \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:15:34.060832277Z	62	PC: 12b2c \| Close file
2018-12-17T23:15:34.06395649Z	79	PC: 12b30 \| Find next file
2018-12-17T23:15:34.066906304Z	9	PC: 12b39 \| Display string (String= ' I am the hammer ! My device: DESTROY! Born in Bucharest! by RP! ')
2018-12-17T23:15:34.074041897Z	74	PC: 12a98 \| Reallocate memory
2018-12-17T23:15:34.07745387Z	72	PC: 12a9f \| Allocate memory
2018-12-17T23:15:34.079500126Z	26	PC: 12aaa \| Set disk transfer address
2018-12-17T23:15:34.081008651Z	78	PC: 12ab9 \| Find first file
2018-12-17T23:15:34.088454147Z	61	PC: 12ac4 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T23:15:34.095561506Z	66	PC: 12ad2 \| Move file pointer
2018-12-17T23:15:34.097316324Z	63	PC: 12adc \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:15:34.105779592Z	62	PC: 12b2c \| Close file
2018-12-17T23:15:34.107817934Z	79	PC: 12b30 \| Find next file
2018-12-17T23:15:34.111078933Z	61	PC: 12ac4 \| Open file (Filename = 'PRINT.COM')
2018-12-17T23:15:34.119717681Z	66	PC: 12ad2 \| Move file pointer
2018-12-17T23:15:34.121702392Z	63	PC: 12adc \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:15:34.128598093Z	62	PC: 12b2c \| Close file
2018-12-17T23:15:34.131549992Z	79	PC: 12b30 \| Find next file
2018-12-17T23:15:34.134800331Z	61	PC: 12ac4 \| Open file (Filename = 'HELLO.COM')
2018-12-17T23:15:34.141877874Z	66	PC: 12ad2 \| Move file pointer
2018-12-17T23:15:34.143856113Z	63	PC: 12adc \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:15:34.151130866Z	62	PC: 12b2c \| Close file
2018-12-17T23:15:34.153150873Z	79	PC: 12b30 \| Find next file
2018-12-17T23:15:34.155974881Z	61	PC: 12ac4 \| Open file (Filename = 'PHANG.COM')
2018-12-17T23:15:34.163419855Z	66	PC: 12ad2 \| Move file pointer
2018-12-17T23:15:34.164860964Z	63	PC: 12adc \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:15:34.171383534Z	62	PC: 12b2c \| Close file
2018-12-17T23:15:34.175088308Z	79	PC: 12b30 \| Find next file
2018-12-17T23:15:34.178198204Z	61	PC: 12ac4 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T23:15:34.184978648Z	66	PC: 12ad2 \| Move file pointer
2018-12-17T23:15:34.187385422Z	63	PC: 12adc \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:15:34.193978364Z	62	PC: 12b2c \| Close file
2018-12-17T23:15:34.195798245Z	79	PC: 12b30 \| Find next file
2018-12-17T23:15:34.199924982Z	61	PC: 12ac4 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T23:15:34.206690519Z	66	PC: 12ad2 \| Move file pointer
2018-12-17T23:15:34.208110798Z	63	PC: 12adc \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:15:34.215094795Z	62	PC: 12b2c \| Close file
2018-12-17T23:15:34.218622176Z	79	PC: 12b30 \| Find next file
2018-12-17T23:15:34.222078783Z	61	PC: 12ac4 \| Open file (Filename = 'PAH.COM')
2018-12-17T23:15:34.229431594Z	66	PC: 12ad2 \| Move file pointer
2018-12-17T23:15:34.232313571Z	63	PC: 12adc \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:15:34.244672541Z	62	PC: 12b2c \| Close file
2018-12-17T23:15:34.247104402Z	79	PC: 12b30 \| Find next file
2018-12-17T23:15:34.25142307Z	61	PC: 12ac4 \| Open file (Filename = 'TEST.COM')
2018-12-17T23:15:34.259322418Z	66	PC: 12ad2 \| Move file pointer
2018-12-17T23:15:34.261312348Z	63	PC: 12adc \| Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:15:34.264795836Z	62	PC: 12b2c \| Close file
2018-12-17T23:15:34.267065482Z	79	PC: 12b30 \| Find next file
2018-12-17T23:15:34.270321001Z	9	PC: 12b39 \| Display string (String= ' I am the hammer ! My device: DESTROY! Born in Bucharest! by RP! ')