Sample viewer

vx.netlux.org/Virus.DOS.HLLC.Halv.10160

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:30:31.074238851Z 53 PC: 13daa | Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:30:31.076485093Z 53 PC: 13daa | Get interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:30:31.078012746Z 53 PC: 13daa | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:30:31.079406884Z 53 PC: 13daa | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:30:31.081987755Z 53 PC: 13daa | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:30:31.083379509Z 53 PC: 13daa | Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:30:31.084710015Z 53 PC: 13daa | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:30:31.086572916Z 53 PC: 13daa | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:30:31.088116348Z 53 PC: 13daa | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:30:31.089694784Z 53 PC: 13daa | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:30:31.091605747Z 53 PC: 13daa | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:30:31.093008092Z 53 PC: 13daa | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:30:31.094395991Z 53 PC: 13daa | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:30:31.101403312Z 53 PC: 13daa | Get interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:30:31.102853897Z 53 PC: 13daa | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:30:31.1042564Z 53 PC: 13daa | Get interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:30:31.10594538Z 53 PC: 13daa | Get interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:30:31.107455757Z 53 PC: 13daa | Get interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:30:31.108627679Z 53 PC: 13daa | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:30:31.109991552Z 37 PC: 13dbf | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:30:31.111238698Z 37 PC: 13dc7 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:30:31.112313345Z 37 PC: 13dcf | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:30:31.113395486Z 37 PC: 13dd7 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:30:31.115133566Z 68 PC: 14d10 | I/O control for devices (Set for = '�u����')
2018-12-17T22:30:31.255910082Z 37 PC: 137d1 | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:30:31.257851128Z 48 PC: 14926 | Get DOS version
2018-12-17T22:30:31.260374557Z 61 PC: 14764 | Open file (Filename = 'A:\TEST.EXE')
2018-12-17T22:30:31.267123067Z 66 PC: 14e0f | Move file pointer
2018-12-17T22:30:31.268544206Z 66 PC: 14e1d | Move file pointer
2018-12-17T22:30:31.271007528Z 66 PC: 14e2b | Move file pointer
2018-12-17T22:30:31.272932214Z 66 PC: 14e0f | Move file pointer
2018-12-17T22:30:31.274627407Z 66 PC: 14e1d | Move file pointer
2018-12-17T22:30:31.277473168Z 66 PC: 14e2b | Move file pointer
2018-12-17T22:30:31.279297626Z 63 PC: 14837 | Read file or device (Read 10160 bytes on handle 5)
2018-12-17T22:30:31.293624603Z 26 PC: 136d7 | Set disk transfer address
2018-12-17T22:30:31.296474045Z 78 PC: 136e3 | Find first file
2018-12-17T22:30:31.303027957Z 61 PC: 14764 | Open file (Filename = 'SLEEP.COM')
2018-12-17T22:30:31.310420098Z 86 PC: 148f1 | Rename file
2018-12-17T22:30:31.329187711Z 67 PC: 136a6 | Get or set file attributes
2018-12-17T22:30:31.339537066Z 62 PC: 147b4 | Close file
2018-12-17T22:30:31.34151721Z 60 PC: 14764 | Create or truncate file
2018-12-17T22:30:31.353386468Z 66 PC: 14e0f | Move file pointer
2018-12-17T22:30:31.355118177Z 66 PC: 14e1d | Move file pointer
2018-12-17T22:30:31.356858901Z 66 PC: 14e2b | Move file pointer
2018-12-17T22:30:31.359425419Z 64 PC: 14837 | Write file or device (Write 10160 bytes on handle 6)
2018-12-17T22:30:31.369552312Z 62 PC: 147b4 | Close file
2018-12-17T22:30:31.377749755Z 26 PC: 136fb | Set disk transfer address
2018-12-17T22:30:31.379368775Z 79 PC: 13700 | Find next file
2018-12-17T22:30:31.383364838Z 61 PC: 14764 | Open file (Filename = 'PRINT.COM')
2018-12-17T22:30:31.391025013Z 86 PC: 148f1 | Rename file
2018-12-17T22:30:31.405396706Z 67 PC: 136a6 | Get or set file attributes
2018-12-17T22:30:31.416088101Z 62 PC: 147b4 | Close file
2018-12-17T22:30:31.41795354Z 60 PC: 14764 | Create or truncate file
2018-12-17T22:30:31.428615678Z 66 PC: 14e0f | Move file pointer
2018-12-17T22:30:31.430442034Z 66 PC: 14e1d | Move file pointer
2018-12-17T22:30:31.431634106Z 66 PC: 14e2b | Move file pointer
2018-12-17T22:30:31.433257805Z 64 PC: 14837 | Write file or device (Write 10160 bytes on handle 6)
2018-12-17T22:30:31.443318199Z 62 PC: 147b4 | Close file
2018-12-17T22:30:31.451639922Z 26 PC: 136fb | Set disk transfer address
2018-12-17T22:30:31.452679587Z 79 PC: 13700 | Find next file
2018-12-17T22:30:31.464320875Z 61 PC: 14764 | Open file (Filename = 'HELLO.COM')
2018-12-17T22:30:31.473916085Z 86 PC: 148f1 | Rename file
2018-12-17T22:30:31.485304942Z 67 PC: 136a6 | Get or set file attributes
2018-12-17T22:30:31.495943161Z 62 PC: 147b4 | Close file
2018-12-17T22:30:31.498245228Z 60 PC: 14764 | Create or truncate file
2018-12-17T22:30:31.509389775Z 66 PC: 14e0f | Move file pointer
2018-12-17T22:30:31.511539104Z 66 PC: 14e1d | Move file pointer
2018-12-17T22:30:31.512908451Z 66 PC: 14e2b | Move file pointer
2018-12-17T22:30:31.514416285Z 64 PC: 14837 | Write file or device (Write 10160 bytes on handle 6)
2018-12-17T22:30:31.523855855Z 62 PC: 147b4 | Close file
2018-12-17T22:30:31.532855186Z 26 PC: 136fb | Set disk transfer address
2018-12-17T22:30:31.534271198Z 79 PC: 13700 | Find next file
2018-12-17T22:30:31.537961336Z 61 PC: 14764 | Open file (Filename = 'PHANG.COM')
2018-12-17T22:30:31.545771724Z 86 PC: 148f1 | Rename file
2018-12-17T22:30:31.559085669Z 67 PC: 136a6 | Get or set file attributes
2018-12-17T22:30:31.570220074Z 62 PC: 147b4 | Close file
2018-12-17T22:30:31.573295264Z 60 PC: 14764 | Create or truncate file
2018-12-17T22:30:31.586338867Z 66 PC: 14e0f | Move file pointer
2018-12-17T22:30:31.587711412Z 66 PC: 14e1d | Move file pointer
2018-12-17T22:30:31.589445839Z 66 PC: 14e2b | Move file pointer
2018-12-17T22:30:31.590716321Z 64 PC: 14837 | Write file or device (Write 10160 bytes on handle 6)
2018-12-17T22:30:31.597654503Z 62 PC: 147b4 | Close file
2018-12-17T22:30:31.60323618Z 26 PC: 136fb | Set disk transfer address
2018-12-17T22:30:31.604140484Z 79 PC: 13700 | Find next file
2018-12-17T22:30:31.60643021Z 61 PC: 14764 | Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:30:31.611386759Z 86 PC: 148f1 | Rename file
2018-12-17T22:30:31.618859728Z 67 PC: 136a6 | Get or set file attributes
2018-12-17T22:30:31.629483122Z 62 PC: 147b4 | Close file
2018-12-17T22:30:31.635783804Z 60 PC: 14764 | Create or truncate file
2018-12-17T22:30:31.651679589Z 66 PC: 14e0f | Move file pointer
2018-12-17T22:30:31.653204596Z 66 PC: 14e1d | Move file pointer
2018-12-17T22:30:31.656237187Z 66 PC: 14e2b | Move file pointer
2018-12-17T22:30:31.658373677Z 64 PC: 14837 | Write file or device (Write 10160 bytes on handle 6)
2018-12-17T22:30:31.668211566Z 62 PC: 147b4 | Close file
2018-12-17T22:30:31.677526771Z 26 PC: 136fb | Set disk transfer address
2018-12-17T22:30:31.679013664Z 79 PC: 13700 | Find next file
2018-12-17T22:30:31.682493551Z 61 PC: 14764 | Open file (Filename = 'MANDEL.COM')
2018-12-17T22:30:31.690863445Z 86 PC: 148f1 | Rename file
2018-12-17T22:30:31.702580719Z 67 PC: 136a6 | Get or set file attributes
2018-12-17T22:30:31.711487703Z 62 PC: 147b4 | Close file
2018-12-17T22:30:31.71403132Z 60 PC: 14764 | Create or truncate file
2018-12-17T22:30:31.722850464Z 66 PC: 14e0f | Move file pointer
2018-12-17T22:30:31.724960192Z 66 PC: 14e1d | Move file pointer
2018-12-17T22:30:31.726950291Z 66 PC: 14e2b | Move file pointer
2018-12-17T22:30:31.729026079Z 64 PC: 14837 | Write file or device (Write 10160 bytes on handle 6)
2018-12-17T22:30:31.737469297Z 62 PC: 147b4 | Close file
2018-12-17T22:30:31.746224884Z 26 PC: 136fb | Set disk transfer address
2018-12-17T22:30:31.747658095Z 79 PC: 13700 | Find next file
2018-12-17T22:30:31.751086434Z 61 PC: 14764 | Open file (Filename = 'PAH.COM')
2018-12-17T22:30:31.760040121Z 86 PC: 148f1 | Rename file
2018-12-17T22:30:31.771969048Z 67 PC: 136a6 | Get or set file attributes
2018-12-17T22:30:31.784608235Z 62 PC: 147b4 | Close file
2018-12-17T22:30:31.787438954Z 60 PC: 14764 | Create or truncate file
2018-12-17T22:30:31.801797551Z 66 PC: 14e0f | Move file pointer
2018-12-17T22:30:31.803827256Z 66 PC: 14e1d | Move file pointer
2018-12-17T22:30:31.805989173Z 66 PC: 14e2b | Move file pointer
2018-12-17T22:30:31.807887527Z 64 PC: 14837 | Write file or device (Write 10160 bytes on handle 6)
2018-12-17T22:30:31.817901765Z 62 PC: 147b4 | Close file
2018-12-17T22:30:31.828190664Z 26 PC: 136fb | Set disk transfer address
2018-12-17T22:30:31.830064318Z 79 PC: 13700 | Find next file
2018-12-17T22:30:31.833487113Z 66 PC: 14e0f | Move file pointer
2018-12-17T22:30:31.835645608Z 66 PC: 14e1d | Move file pointer
2018-12-17T22:30:31.837336106Z 66 PC: 14e2b | Move file pointer
2018-12-17T22:30:31.839251044Z 62 PC: 147b4 | Close file