Sample viewer

vx.netlux.org/Virus.DOS.QQ.1239

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T21:55:12.739640934Z 53 PC: 1420d | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T21:55:12.741375205Z 25 PC: 13ee3 | Get default drive
2018-12-17T21:55:12.742659079Z 74 PC: 12ae3 | Reallocate memory
2018-12-17T21:55:12.74440995Z 37 PC: 12ae3 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T21:55:12.746231678Z 67 PC: 12ae3 | Get or set file attributes
2018-12-17T21:55:12.75264043Z 67 PC: 12ae3 | Get or set file attributes
2018-12-17T21:55:12.768471077Z 61 PC: 12ae3 | Open file (Filename = 'A:\TEST.COM')
2018-12-17T21:55:12.779177019Z 66 PC: 12ae3 | Move file pointer
2018-12-17T21:55:12.780634063Z 87 PC: 12ae3 | Get or set file date and time
2018-12-17T21:55:12.782019613Z 66 PC: 12ae3 | Move file pointer
2018-12-17T21:55:12.784255215Z 63 PC: 12ae3 | Read file or device (Read 32 bytes on handle 5)
2018-12-17T21:55:12.786890995Z 66 PC: 12ae3 | Move file pointer
2018-12-17T21:55:12.788167557Z 64 PC: 12ae3 | Write file or device (Write 3 bytes on handle 5)
2018-12-17T21:55:12.791341432Z 66 PC: 12ae3 | Move file pointer
2018-12-17T21:55:12.793167817Z 64 PC: 12ae3 | Write file or device (Write 1239 bytes on handle 5)
2018-12-17T21:55:12.801705693Z 87 PC: 12ae3 | Get or set file date and time
2018-12-17T21:55:12.804097149Z 62 PC: 12ae3 | Close file
2018-12-17T21:55:12.811811107Z 67 PC: 12ae3 | Get or set file attributes
2018-12-17T21:55:12.821980351Z 75 PC: 12eaf | Execute program
2018-12-17T21:55:12.836664912Z 53 PC: 14de4 | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T21:55:12.838221476Z 53 PC: 1490d | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T21:55:12.839676606Z 9 PC: 13185 | Display string (String= ' COM goat 1400H bytes long ')
2018-12-17T21:55:12.845198142Z 0 PC: 13189 | Program terminate
2018-12-17T21:55:12.848702576Z 49 PC: 12ae3 | Terminate and stay resident (Return code = '1' | Memory size = '94')