Sample viewer

vx.netlux.org/Virus.DOS.HLLP.2312

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:32:06.620058198Z	53	PC: 1346a \| Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:32:06.622285866Z	53	PC: 1346a \| Get interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:32:06.623379058Z	53	PC: 1346a \| Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:32:06.624430412Z	53	PC: 1346a \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:32:06.627067711Z	53	PC: 1346a \| Get interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:32:06.628331169Z	53	PC: 1346a \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:32:06.629503329Z	53	PC: 1346a \| Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:32:06.630730115Z	53	PC: 1346a \| Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:32:06.632179866Z	53	PC: 1346a \| Get interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:32:06.633187285Z	53	PC: 1346a \| Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:32:06.634400797Z	53	PC: 1346a \| Get interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:32:06.635933012Z	53	PC: 1346a \| Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:32:06.636979626Z	53	PC: 1346a \| Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:32:06.638038423Z	53	PC: 1346a \| Get interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:32:06.639924873Z	53	PC: 1346a \| Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:32:06.642097155Z	53	PC: 1346a \| Get interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:32:06.643896514Z	53	PC: 1346a \| Get interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:32:06.64634053Z	53	PC: 1346a \| Get interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:32:06.647878638Z	53	PC: 1346a \| Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:32:06.649468139Z	37	PC: 1347f \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:32:06.652144228Z	37	PC: 13487 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:32:06.653311183Z	37	PC: 1348f \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:32:06.654450504Z	37	PC: 13497 \| Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:32:06.656929534Z	68	PC: 13ef5 \| I/O control for devices (Set for = '')
2018-12-17T22:32:06.658898167Z	44	PC: 1402c \| Get time 0x1402c: mov word ptr [0x15a], cx 0x14030: mov word ptr [0x15c], dx 0x14034: retf 0x14035: call 0x1407c 0x14038: jb 0x14049 0x1403a: mov cx, word ptr es:[di + 4] 0x1403e: cmp cx, 1 0x14041: je 0x14049 0x14043: xor bx, bx 0x14045: push cs 0x14046: call 0x23bb8 0x14049: retf 4 0x1404c: call 0x1407c 0x1404f: jb 0x14064 0x14051: mov ax, cx 0x14053: mov dx, bx 0x14055: mov cx, word ptr es:[di + 4] 0x14059: cmp cx, 1 0x1405c: je 0x14064 0x1405e: xor bx, bx
2018-12-17T22:32:06.662136423Z	67	PC: 13163 \| Get or set file attributes
2018-12-17T22:32:06.669573295Z	87	PC: 131a4 \| Get or set file date and time
2018-12-17T22:32:06.671242203Z	67	PC: 1318a \| Get or set file attributes
2018-12-17T22:32:06.689937092Z	61	PC: 138d2 \| Open file (Filename = 'A:\TEST.EXE')
2018-12-17T22:32:06.696959587Z	66	PC: 13a04 \| Move file pointer
2018-12-17T22:32:06.698780181Z	63	PC: 139a5 \| Read file or device (Read 4643 bytes on handle 5)
2018-12-17T22:32:06.706158396Z	25	PC: 13aad \| Get default drive
2018-12-17T22:32:06.707110906Z	71	PC: 13ac0 \| Get current directory
2018-12-17T22:32:06.710666347Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.716469153Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.722688882Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.7343396Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.74410162Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.749409646Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.753959012Z	25	PC: 13aad \| Get default drive
2018-12-17T22:32:06.755080552Z	71	PC: 13ac0 \| Get current directory
2018-12-17T22:32:06.758100997Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.7646419Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.770933236Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.776658335Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.784029899Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.789584449Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.793885398Z	25	PC: 13aad \| Get default drive
2018-12-17T22:32:06.795555425Z	71	PC: 13ac0 \| Get current directory
2018-12-17T22:32:06.798539836Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.804825109Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.811439159Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.81700147Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.823544432Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.82938556Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.833353968Z	25	PC: 13aad \| Get default drive
2018-12-17T22:32:06.834354794Z	71	PC: 13ac0 \| Get current directory
2018-12-17T22:32:06.83778735Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.843739756Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.849619088Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.856344901Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.863808264Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.869396576Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.874860181Z	25	PC: 13aad \| Get default drive
2018-12-17T22:32:06.876329266Z	71	PC: 13ac0 \| Get current directory
2018-12-17T22:32:06.879633157Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.886636128Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.892740314Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.898382033Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.905738112Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.911355758Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.915931915Z	25	PC: 13aad \| Get default drive
2018-12-17T22:32:06.917991183Z	71	PC: 13ac0 \| Get current directory
2018-12-17T22:32:06.920975405Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.926884267Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.934874097Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.941474308Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.948698021Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.955352401Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.959189308Z	25	PC: 13aad \| Get default drive
2018-12-17T22:32:06.96072239Z	71	PC: 13ac0 \| Get current directory
2018-12-17T22:32:06.964832336Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.9712431Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.977462849Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.983439291Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.990823301Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:06.996969605Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:07.001100468Z	25	PC: 13aad \| Get default drive
2018-12-17T22:32:07.002848072Z	71	PC: 13ac0 \| Get current directory
2018-12-17T22:32:07.005799446Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:07.011658926Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:07.018707898Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:07.02488083Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:07.03208036Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:07.038601684Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:07.04305586Z	25	PC: 13aad \| Get default drive
2018-12-17T22:32:07.04447599Z	71	PC: 13ac0 \| Get current directory
2018-12-17T22:32:07.048798008Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:07.055031224Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:07.062169544Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:07.069084595Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:07.07619779Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:07.081738276Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:07.087028803Z	25	PC: 13aad \| Get default drive
2018-12-17T22:32:07.088146749Z	71	PC: 13ac0 \| Get current directory
2018-12-17T22:32:07.091014008Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:07.097937136Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:07.104038026Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:07.109773838Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:07.117500722Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:07.122976514Z	67	PC: 13284 \| Get or set file attributes
2018-12-17T22:32:07.1277264Z	26	PC: 13201 \| Set disk transfer address
2018-12-17T22:32:07.129516592Z	78	PC: 1320d \| Find first file
2018-12-17T22:32:07.136015567Z	67	PC: 13163 \| Get or set file attributes
2018-12-17T22:32:07.143037567Z	87	PC: 131a4 \| Get or set file date and time
2018-12-17T22:32:07.145944363Z	67	PC: 1318a \| Get or set file attributes
2018-12-17T22:32:07.15849808Z	61	PC: 138d2 \| Open file (Filename = 'TEST.EXE')
2018-12-17T22:32:07.165201924Z	66	PC: 14096 \| Move file pointer
2018-12-17T22:32:07.16738747Z	66	PC: 140a4 \| Move file pointer
2018-12-17T22:32:07.169623775Z	66	PC: 140b2 \| Move file pointer
2018-12-17T22:32:07.171095819Z	54	PC: 1312a \| Get free disk space
2018-12-17T22:32:07.180479551Z	66	PC: 13a04 \| Move file pointer
2018-12-17T22:32:07.182497336Z	63	PC: 139a5 \| Read file or device (Read 4643 bytes on handle 6)
2018-12-17T22:32:07.190905851Z	87	PC: 131d1 \| Get or set file date and time
2018-12-17T22:32:07.193261906Z	62	PC: 13922 \| Close file
2018-12-17T22:32:07.200828054Z	67	PC: 1318a \| Get or set file attributes
2018-12-17T22:32:07.210594739Z	26	PC: 13225 \| Set disk transfer address
2018-12-17T22:32:07.212429402Z	79	PC: 1322a \| Find next file
2018-12-17T22:32:07.214863844Z	66	PC: 14096 \| Move file pointer
2018-12-17T22:32:07.216210014Z	66	PC: 140a4 \| Move file pointer
2018-12-17T22:32:07.21790628Z	66	PC: 140b2 \| Move file pointer
2018-12-17T22:32:07.219493441Z	66	PC: 13a04 \| Move file pointer
2018-12-17T22:32:07.220886112Z	63	PC: 139a5 \| Read file or device (Read 4643 bytes on handle 5)
2018-12-17T22:32:07.229293322Z	66	PC: 13a04 \| Move file pointer
2018-12-17T22:32:07.230703968Z	64	PC: 139a5 \| Write file or device (Write 4643 bytes on handle 5)
2018-12-17T22:32:07.238255127Z	66	PC: 14096 \| Move file pointer
2018-12-17T22:32:07.239688961Z	66	PC: 140a4 \| Move file pointer
2018-12-17T22:32:07.240942576Z	66	PC: 140b2 \| Move file pointer
2018-12-17T22:32:07.242227926Z	66	PC: 13a04 \| Move file pointer
2018-12-17T22:32:07.243527266Z	64	PC: 13903 \| Write file or device (Write 0 bytes on handle 5)
2018-12-17T22:32:07.251376154Z	87	PC: 131d1 \| Get or set file date and time
2018-12-17T22:32:07.252805701Z	62	PC: 13922 \| Close file
2018-12-17T22:32:07.259701901Z	67	PC: 1318a \| Get or set file attributes
2018-12-17T22:32:07.269814848Z	53	PC: 133d9 \| Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:32:07.27074578Z	37	PC: 133e2 \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:32:07.271839294Z	53	PC: 133d9 \| Get interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:32:07.273555319Z	37	PC: 133e2 \| Set interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:32:07.274754061Z	53	PC: 133d9 \| Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:32:07.276337797Z	37	PC: 133e2 \| Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:32:07.278529236Z	53	PC: 133d9 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:32:07.27974944Z	37	PC: 133e2 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:32:07.280924639Z	53	PC: 133d9 \| Get interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:32:07.283733486Z	37	PC: 133e2 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:32:07.284893243Z	53	PC: 133d9 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:32:07.28647043Z	37	PC: 133e2 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:32:07.287792464Z	53	PC: 133d9 \| Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:32:07.288809582Z	37	PC: 133e2 \| Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:32:07.289835536Z	53	PC: 133d9 \| Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:32:07.291415325Z	37	PC: 133e2 \| Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:32:07.292389971Z	53	PC: 133d9 \| Get interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:32:07.293590375Z	37	PC: 133e2 \| Set interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:32:07.294682803Z	53	PC: 133d9 \| Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:32:07.295683624Z	37	PC: 133e2 \| Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:32:07.296854479Z	53	PC: 133d9 \| Get interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:32:07.298181677Z	37	PC: 133e2 \| Set interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:32:07.299291186Z	53	PC: 133d9 \| Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:32:07.300918104Z	37	PC: 133e2 \| Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:32:07.302112355Z	53	PC: 133d9 \| Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:32:07.303407202Z	37	PC: 133e2 \| Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:32:07.305332889Z	53	PC: 133d9 \| Get interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:32:07.306456063Z	37	PC: 133e2 \| Set interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:32:07.30770821Z	53	PC: 133d9 \| Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:32:07.309765145Z	37	PC: 133e2 \| Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:32:07.311151342Z	53	PC: 133d9 \| Get interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:32:07.312561227Z	37	PC: 133e2 \| Set interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:32:07.314726552Z	53	PC: 133d9 \| Get interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:32:07.316061052Z	37	PC: 133e2 \| Set interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:32:07.31733194Z	53	PC: 133d9 \| Get interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:32:07.319594877Z	37	PC: 133e2 \| Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:32:07.320847049Z	53	PC: 133d9 \| Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:32:07.322152924Z	37	PC: 133e2 \| Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:32:07.324708345Z	41	PC: 13390 \| Parse filename
2018-12-17T22:32:07.326036235Z	41	PC: 1339e \| Parse filename
2018-12-17T22:32:07.327280534Z	75	PC: 133a9 \| Execute program