Sample viewer

vx.netlux.org/Virus.DOS.HLLP.Fidonet.7200

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:30:08.693802095Z 53 PC: 1375a | Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:30:08.695451698Z 53 PC: 1375a | Get interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:30:08.710861642Z 53 PC: 1375a | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:30:08.712891179Z 53 PC: 1375a | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:30:08.715078763Z 53 PC: 1375a | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:30:08.719173168Z 53 PC: 1375a | Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:30:08.721809048Z 53 PC: 1375a | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:30:08.723845436Z 53 PC: 1375a | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:30:08.726412137Z 53 PC: 1375a | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:30:08.729698943Z 53 PC: 1375a | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:30:08.732180945Z 53 PC: 1375a | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:30:08.734566104Z 53 PC: 1375a | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:30:08.746838092Z 53 PC: 1375a | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:30:08.748421872Z 53 PC: 1375a | Get interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:30:08.750130928Z 53 PC: 1375a | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:30:08.753514619Z 53 PC: 1375a | Get interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:30:08.755158236Z 53 PC: 1375a | Get interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:30:08.75678395Z 53 PC: 1375a | Get interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:30:08.759421759Z 53 PC: 1375a | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:30:08.76125051Z 37 PC: 1376f | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:30:08.762928378Z 37 PC: 13777 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:30:08.765613986Z 37 PC: 1377f | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:30:08.767353215Z 37 PC: 13787 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:30:08.769407851Z 68 PC: 14715 | I/O control for devices (Set for = 'q��&n��ы�������8')
2018-12-17T22:30:08.772458921Z 48 PC: 14245 | Get DOS version
2018-12-17T22:30:08.774888399Z 61 PC: 14083 | Open file (Filename = 'A:\TEST.EXE')
2018-12-17T22:30:08.782390986Z 87 PC: 13490 | Get or set file date and time
2018-12-17T22:30:08.784562138Z 60 PC: 14083 | Create or truncate file
2018-12-17T22:30:08.806437678Z 66 PC: 141b5 | Move file pointer
2018-12-17T22:30:08.80861721Z 63 PC: 14156 | Read file or device (Read 8192 bytes on handle 5)
2018-12-17T22:30:08.817696222Z 64 PC: 14156 | Write file or device (Write 1232 bytes on handle 6)
2018-12-17T22:30:08.828234582Z 66 PC: 14814 | Move file pointer
2018-12-17T22:30:08.830206772Z 66 PC: 14822 | Move file pointer
2018-12-17T22:30:08.835244649Z 66 PC: 14830 | Move file pointer
2018-12-17T22:30:08.8395808Z 62 PC: 140d3 | Close file
2018-12-17T22:30:08.841887163Z 87 PC: 134bd | Get or set file date and time
2018-12-17T22:30:08.84375245Z 62 PC: 140d3 | Close file
2018-12-17T22:30:08.853359586Z 67 PC: 1344f | Get or set file attributes
2018-12-17T22:30:08.860218595Z 61 PC: 14083 | Open file (Filename = 'A:\TEST.EXE')
2018-12-17T22:30:08.867703516Z 87 PC: 13490 | Get or set file date and time
2018-12-17T22:30:08.869952097Z 63 PC: 14156 | Read file or device (Read 7200 bytes on handle 5)
2018-12-17T22:30:08.879412392Z 66 PC: 141b5 | Move file pointer
2018-12-17T22:30:08.881363135Z 64 PC: 14156 | Write file or device (Write 1 bytes on handle 5)
2018-12-17T22:30:08.884463583Z 87 PC: 134bd | Get or set file date and time
2018-12-17T22:30:08.886192301Z 62 PC: 140d3 | Close file
2018-12-17T22:30:08.895409396Z 67 PC: 13476 | Get or set file attributes
2018-12-17T22:30:08.911388248Z 26 PC: 134ed | Set disk transfer address
2018-12-17T22:30:08.913491396Z 78 PC: 134f9 | Find first file
2018-12-17T22:30:08.920347515Z 64 PC: 13ddb | Write file or device (Write 0 bytes on handle 1)
2018-12-17T22:30:08.922317264Z 37 PC: 138b1 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:30:08.924244993Z 37 PC: 138b1 | Set interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:30:08.925247692Z 37 PC: 138b1 | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:30:08.926502688Z 37 PC: 138b1 | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:30:08.928555007Z 37 PC: 138b1 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:30:08.930175488Z 37 PC: 138b1 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:30:08.931276174Z 37 PC: 138b1 | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:30:08.932975876Z 37 PC: 138b1 | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:30:08.934011985Z 37 PC: 138b1 | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:30:08.935008454Z 37 PC: 138b1 | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:30:08.936780586Z 37 PC: 138b1 | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:30:08.938591355Z 37 PC: 138b1 | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:30:08.940321291Z 37 PC: 138b1 | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:30:08.943239485Z 37 PC: 138b1 | Set interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:30:08.944945798Z 37 PC: 138b1 | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:30:08.946024739Z 37 PC: 138b1 | Set interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:30:08.947293938Z 37 PC: 138b1 | Set interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:30:08.948601051Z 37 PC: 138b1 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:30:08.949602197Z 37 PC: 138b1 | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:30:08.950623224Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:08.952654217Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:08.954537918Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:08.956101197Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:08.958225703Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:08.959785007Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:08.961457121Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:08.96414101Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:08.965825838Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:08.967480249Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:08.969679217Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:08.971380361Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:08.973004541Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:08.975290136Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:08.976884659Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:08.97855187Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:08.980840778Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:08.982580261Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:08.98421118Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:08.986033161Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:08.988506116Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:08.990138394Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:08.991669624Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:08.993998096Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:08.996582051Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:08.998834292Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:09.001101845Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:09.00335491Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:09.005689223Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:09.00747502Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:09.009535631Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:09.01109282Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:09.01256949Z 6 PC: 13938 | Direct console I/O
2018-12-17T22:30:09.015300824Z 76 PC: 138f0 | Terminate with return code (Return code = '202')