Sample viewer

vx.netlux.org/Virus.DOS.VS-II.1000.a

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:31:45.648353458Z	48	PC: 12c61 \| Get DOS version
2018-12-17T22:31:45.650640086Z	74	PC: 12c7a \| Reallocate memory
2018-12-17T22:31:45.657651353Z	74	PC: 12c81 \| Reallocate memory
2018-12-17T22:31:45.659273343Z	72	PC: 12c88 \| Allocate memory
2018-12-17T22:31:45.662189982Z	53	PC: 12c98 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:31:45.663611359Z	37	PC: 12cab \| Set interrupt vector (Interrupt = '126' AKA 'UNKNOWN!')
2018-12-17T22:31:45.665261868Z	9	PC: 12a82 \| Display string (String= 'Goat file (EXE). Size=000003E8h/0000001000d bytes. ')
2018-12-17T22:31:45.670762249Z	76	PC: 12a86 \| Terminate with return code (Return code = '36')
2018-12-17T22:31:45.674991693Z	77	PC: 11fe0 \| Get program return code
2018-12-17T22:31:45.676610468Z	72	PC: 12174 \| Allocate memory
2018-12-17T22:31:45.678770702Z	72	PC: 1218d \| Allocate memory
2018-12-17T22:31:45.682425221Z	37	PC: 123c4 \| Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T22:31:45.68392557Z	37	PC: 123cb \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:31:45.685412122Z	37	PC: 123d2 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:31:45.687502148Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:31:45.688675278Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:31:45.690113783Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 5)
2018-12-17T22:31:45.693563561Z	62	PC: 122ab \| Close file
2018-12-17T22:31:45.695200575Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:31:45.69645031Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:31:45.698644988Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 6)
2018-12-17T22:31:45.700902595Z	62	PC: 122ab \| Close file
2018-12-17T22:31:45.702700345Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:31:45.704544056Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:31:45.707357791Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 7)
2018-12-17T22:31:45.725707417Z	62	PC: 122ab \| Close file
2018-12-17T22:31:45.728491016Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:31:45.730567323Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:31:45.732363054Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 8)
2018-12-17T22:31:45.734698168Z	62	PC: 122ab \| Close file
2018-12-17T22:31:45.73722029Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:31:45.738435405Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:31:45.739941372Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 9)
2018-12-17T22:31:45.743149629Z	62	PC: 122ab \| Close file
2018-12-17T22:31:45.745906735Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:31:45.747382788Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:31:45.74957161Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 10)
2018-12-17T22:31:45.760019584Z	62	PC: 122ab \| Close file
2018-12-17T22:31:45.76193878Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:31:45.76407192Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:31:45.765871204Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 11)
2018-12-17T22:31:45.768184864Z	62	PC: 122ab \| Close file
2018-12-17T22:31:45.770938131Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:31:45.772588704Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:31:45.774317429Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 12)
2018-12-17T22:31:45.777490831Z	62	PC: 122ab \| Close file
2018-12-17T22:31:45.779686475Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:31:45.781116464Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:31:45.783433431Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 13)
2018-12-17T22:31:45.787413194Z	62	PC: 122ab \| Close file
2018-12-17T22:31:45.790758224Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:31:45.793983583Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:31:45.796438012Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 14)
2018-12-17T22:31:45.800269343Z	62	PC: 122ab \| Close file
2018-12-17T22:31:45.802455915Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:31:45.804352138Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:31:45.806038176Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 15)
2018-12-17T22:31:45.808282733Z	62	PC: 122ab \| Close file
2018-12-17T22:31:45.811173434Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:31:45.812541103Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:31:45.814220087Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 16)
2018-12-17T22:31:45.816965559Z	62	PC: 122ab \| Close file
2018-12-17T22:31:45.819027819Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:31:45.821228426Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:31:45.824640765Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 17)
2018-12-17T22:31:45.829816461Z	62	PC: 122ab \| Close file
2018-12-17T22:31:45.831686973Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:31:45.833439044Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:31:45.835093038Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 18)
2018-12-17T22:31:45.83729347Z	62	PC: 122ab \| Close file
2018-12-17T22:31:45.839433425Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:31:45.840784208Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:31:45.842394815Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 19)
2018-12-17T22:31:45.844987019Z	62	PC: 122ab \| Close file
2018-12-17T22:31:45.848156232Z	99	PC: 99f97 \| Get DBCS lead byte table pointer
2018-12-17T22:31:45.849788334Z	56	PC: 947b9 \| Get or set country info
2018-12-17T22:31:45.852377172Z	64	PC: 9a208 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T22:31:45.857048874Z	25	PC: 94822 \| Get default drive
2018-12-17T22:31:45.858958762Z	71	PC: 96a9d \| Get current directory
2018-12-17T22:31:45.863749329Z	64	PC: 9a208 \| Write file or device (Write 3 bytes on handle 1)
2018-12-17T22:31:45.868191104Z	2	PC: 96a72 \| Character output (Char = '3e')
2018-12-17T22:31:45.870401831Z	93	PC: 948e0 \| File sharing functions
2018-12-17T22:31:45.8729085Z	93	PC: 948e7 \| File sharing functions
2018-12-17T22:31:45.874706654Z	10	PC: 948f9 \| Buffered keyboard input
2018-12-17T22:32:00.617919929Z	0	PC: 0 \| Program terminate
2018-12-17T22:32:01.97203941Z	0	PC: 0 \| Program terminate
2018-12-17T22:32:02.0744071Z	64	PC: 9a208 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T22:32:02.080903038Z	41	PC: 9496e \| Parse filename
2018-12-17T22:32:02.082716479Z	41	PC: 949ef \| Parse filename
2018-12-17T22:32:02.084124849Z	41	PC: 94a0c \| Parse filename
2018-12-17T22:32:02.088042177Z	26	PC: 97eb7 \| Set disk transfer address
2018-12-17T22:32:02.089803953Z	71	PC: 980b3 \| Get current directory
2018-12-17T22:32:02.097343628Z	78	PC: 9f872 \| Find first file
2018-12-17T22:32:02.107408121Z	47	PC: 9f883 \| Get disk transfer address
2018-12-17T22:32:02.108931288Z	71	PC: 97f2c \| Get current directory
2018-12-17T22:32:02.112025487Z	73	PC: 975c9 \| Release memory
2018-12-17T22:32:02.115155403Z	61	PC: 9f6eb \| Open file (Filename = '')
2018-12-17T22:32:02.121433452Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:32:02.122572341Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:32:02.124600327Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 5)
2018-12-17T22:32:02.130838748Z	62	PC: 9f820 \| Close file
2018-12-17T22:32:02.132651861Z	75	PC: 11821 \| Execute program
2018-12-17T22:32:02.139637454Z	9	PC: 12a47 \| Display string (String= 'Hello, World! ')
2018-12-17T22:32:02.144022728Z	76	PC: 12a4b \| Terminate with return code (Return code = '36')
2018-12-17T22:32:02.147399368Z	77	PC: 11fe0 \| Get program return code
2018-12-17T22:32:02.149734071Z	72	PC: 12174 \| Allocate memory
2018-12-17T22:32:02.15180844Z	72	PC: 1218d \| Allocate memory
2018-12-17T22:32:02.153787236Z	37	PC: 123c4 \| Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T22:32:02.155592462Z	37	PC: 123cb \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:32:02.156835829Z	37	PC: 123d2 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:32:02.158036152Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:32:02.159582135Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:32:02.160933985Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 5)
2018-12-17T22:32:02.162957962Z	62	PC: 122ab \| Close file
2018-12-17T22:32:02.169468748Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:32:02.170536389Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:32:02.171851562Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 6)
2018-12-17T22:32:02.174465487Z	62	PC: 122ab \| Close file
2018-12-17T22:32:02.175948753Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:32:02.176974102Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:32:02.17896833Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 7)
2018-12-17T22:32:02.181983084Z	62	PC: 122ab \| Close file
2018-12-17T22:32:02.183670345Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:32:02.185445568Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:32:02.187101807Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 8)
2018-12-17T22:32:02.189072811Z	62	PC: 122ab \| Close file
2018-12-17T22:32:02.191538796Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:32:02.192701215Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:32:02.194246656Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 9)
2018-12-17T22:32:02.196685433Z	62	PC: 122ab \| Close file
2018-12-17T22:32:02.198113455Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:32:02.199008919Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:32:02.200803639Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 10)
2018-12-17T22:32:02.203139137Z	62	PC: 122ab \| Close file
2018-12-17T22:32:02.204467354Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:32:02.206135298Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:32:02.207446052Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 11)
2018-12-17T22:32:02.209248897Z	62	PC: 122ab \| Close file
2018-12-17T22:32:02.211215515Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:32:02.21251969Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:32:02.213949533Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 12)
2018-12-17T22:32:02.216824236Z	62	PC: 122ab \| Close file
2018-12-17T22:32:02.219972656Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:32:02.222049727Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:32:02.224902148Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 13)
2018-12-17T22:32:02.240848647Z	62	PC: 122ab \| Close file
2018-12-17T22:32:02.242561545Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:32:02.244542706Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:32:02.246014048Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 14)
2018-12-17T22:32:02.24839009Z	62	PC: 122ab \| Close file
2018-12-17T22:32:02.250772552Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:32:02.251865321Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:32:02.253168372Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 15)
2018-12-17T22:32:02.255660012Z	62	PC: 122ab \| Close file
2018-12-17T22:32:02.257282619Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:32:02.258423456Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:32:02.26082224Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 16)
2018-12-17T22:32:02.269961882Z	62	PC: 122ab \| Close file
2018-12-17T22:32:02.271380432Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:32:02.27293788Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:32:02.274334458Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 17)
2018-12-17T22:32:02.276275721Z	62	PC: 122ab \| Close file
2018-12-17T22:32:02.279459821Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:32:02.280574168Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:32:02.281854516Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 18)
2018-12-17T22:32:02.284375087Z	62	PC: 122ab \| Close file
2018-12-17T22:32:02.285811902Z	53	PC: 9f6f4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:32:02.286882256Z	66	PC: 9f719 \| Move file pointer
2018-12-17T22:32:02.289302924Z	63	PC: 9f725 \| Read file or device (Read 28 bytes on handle 19)
2018-12-17T22:32:02.29131399Z	62	PC: 122ab \| Close file
2018-12-17T22:32:02.294112011Z	99	PC: 99f97 \| Get DBCS lead byte table pointer
2018-12-17T22:32:02.296015751Z	56	PC: 947b9 \| Get or set country info
2018-12-17T22:32:02.297859104Z	64	PC: 9a208 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T22:32:02.302242196Z	25	PC: 94822 \| Get default drive
2018-12-17T22:32:02.30462369Z	71	PC: 96a9d \| Get current directory
2018-12-17T22:32:02.308981772Z	64	PC: 9a208 \| Write file or device (Write 3 bytes on handle 1)
2018-12-17T22:32:02.312493844Z	2	PC: 96a72 \| Character output (Char = '3e')
2018-12-17T22:32:02.321550582Z	93	PC: 948e0 \| File sharing functions
2018-12-17T22:32:02.323556544Z	93	PC: 948e7 \| File sharing functions
2018-12-17T22:32:02.326416702Z	10	PC: 948f9 \| Buffered keyboard input