Sample viewer

vx.netlux.org/Virus.DOS.Rash.1737

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:32:58.788115354Z	51	PC: 12c53 \| Get or set Ctrl-Break
2018-12-17T22:32:58.790056086Z	74	PC: 12f74 \| Reallocate memory
2018-12-17T22:32:58.805002135Z	74	PC: 12f7b \| Reallocate memory
2018-12-17T22:32:58.807006292Z	72	PC: 12f84 \| Allocate memory
2018-12-17T22:32:58.808935413Z	74	PC: 12fa3 \| Reallocate memory
2018-12-17T22:32:58.812224188Z	9	PC: 12a82 \| Display string (String= 'Goat file (EXE). Size=000003E8h/0000001000d bytes. ')
2018-12-17T22:32:58.817164227Z	76	PC: 12a86 \| Terminate with return code (Return code = '36')
2018-12-17T22:32:58.820921868Z	77	PC: 11fe0 \| Get program return code
2018-12-17T22:32:58.823475728Z	72	PC: 12174 \| Allocate memory
2018-12-17T22:32:58.825686472Z	72	PC: 1218d \| Allocate memory
2018-12-17T22:32:58.82875823Z	37	PC: 123c4 \| Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T22:32:58.831163131Z	37	PC: 123cb \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:32:58.832661424Z	37	PC: 123d2 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:32:58.834395803Z	68	PC: 9fbb1 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:32:58.83649593Z	62	PC: 122ab \| Close file
2018-12-17T22:32:58.839999683Z	68	PC: 9fbb1 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:32:58.842419614Z	62	PC: 122ab \| Close file
2018-12-17T22:32:58.845266621Z	68	PC: 9fbb1 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:32:58.848483242Z	62	PC: 122ab \| Close file
2018-12-17T22:32:58.851088889Z	68	PC: 9fbb1 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:32:58.854073114Z	62	PC: 122ab \| Close file
2018-12-17T22:32:58.857117682Z	68	PC: 9fbb1 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:32:58.85913826Z	62	PC: 122ab \| Close file
2018-12-17T22:32:58.860921587Z	68	PC: 9fbb1 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:32:58.862954609Z	62	PC: 122ab \| Close file
2018-12-17T22:32:58.864868688Z	68	PC: 9fbb1 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:32:58.866619794Z	62	PC: 122ab \| Close file
2018-12-17T22:32:58.869515915Z	68	PC: 9fbb1 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:32:58.872132567Z	62	PC: 122ab \| Close file
2018-12-17T22:32:58.873881492Z	68	PC: 9fbb1 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:32:58.87706389Z	62	PC: 122ab \| Close file
2018-12-17T22:32:58.878991453Z	68	PC: 9fbb1 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:32:58.880787507Z	62	PC: 122ab \| Close file
2018-12-17T22:32:58.882771948Z	68	PC: 9fbb1 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:32:58.888939754Z	62	PC: 122ab \| Close file
2018-12-17T22:32:58.890892423Z	68	PC: 9fbb1 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:32:58.892919677Z	62	PC: 122ab \| Close file
2018-12-17T22:32:58.89870485Z	68	PC: 9fbb1 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:32:58.900412624Z	62	PC: 122ab \| Close file
2018-12-17T22:32:58.902109813Z	68	PC: 9fbb1 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:32:58.904102119Z	62	PC: 122ab \| Close file
2018-12-17T22:32:58.906308338Z	68	PC: 9fbb1 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:32:58.908577729Z	62	PC: 122ab \| Close file
2018-12-17T22:32:58.912582483Z	99	PC: 99ec7 \| Get DBCS lead byte table pointer
2018-12-17T22:32:58.91555823Z	56	PC: 946e9 \| Get or set country info
2018-12-17T22:32:58.917918289Z	64	PC: 9a138 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T22:32:58.923111531Z	25	PC: 94752 \| Get default drive
2018-12-17T22:32:58.926144075Z	71	PC: 969cd \| Get current directory
2018-12-17T22:32:58.934614397Z	64	PC: 9a138 \| Write file or device (Write 3 bytes on handle 1)
2018-12-17T22:32:58.939730024Z	2	PC: 969a2 \| Character output (Char = '3e')
2018-12-17T22:32:58.942791905Z	93	PC: 94810 \| File sharing functions
2018-12-17T22:32:58.944852356Z	93	PC: 94817 \| File sharing functions
2018-12-17T22:32:58.946959524Z	10	PC: 94829 \| Buffered keyboard input
2018-12-17T22:33:13.762536337Z	0	PC: 0 \| Program terminate
2018-12-17T22:33:15.11794217Z	0	PC: 0 \| Program terminate
2018-12-17T22:33:15.222349264Z	64	PC: 9a138 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T22:33:15.229458635Z	41	PC: 9489e \| Parse filename
2018-12-17T22:33:15.233622178Z	41	PC: 9491f \| Parse filename
2018-12-17T22:33:15.237033466Z	41	PC: 9493c \| Parse filename
2018-12-17T22:33:15.239688777Z	26	PC: 97de7 \| Set disk transfer address
2018-12-17T22:33:15.241886291Z	71	PC: 97fe3 \| Get current directory
2018-12-17T22:33:15.251424551Z	78	PC: 9fbb1 \| Find first file
2018-12-17T22:33:15.263040732Z	47	PC: 9fbb1 \| Get disk transfer address
2018-12-17T22:33:15.265385342Z	71	PC: 97e5c \| Get current directory
2018-12-17T22:33:15.270253921Z	73	PC: 974f9 \| Release memory
2018-12-17T22:33:15.272433825Z	75	PC: 11821 \| Execute program
2018-12-17T22:33:15.289431872Z	9	PC: 12a47 \| Display string (String= 'Hello, World! ')
2018-12-17T22:33:15.295046133Z	76	PC: 12a4b \| Terminate with return code (Return code = '36')
2018-12-17T22:33:15.299277188Z	77	PC: 11fe0 \| Get program return code
2018-12-17T22:33:15.30106273Z	72	PC: 12174 \| Allocate memory
2018-12-17T22:33:15.30358886Z	72	PC: 1218d \| Allocate memory
2018-12-17T22:33:15.306644874Z	37	PC: 123c4 \| Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T22:33:15.308580973Z	37	PC: 123cb \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:33:15.310370065Z	37	PC: 123d2 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:33:15.312507196Z	68	PC: 9fbb1 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:33:15.316890788Z	62	PC: 122ab \| Close file
2018-12-17T22:33:15.319580494Z	68	PC: 9fbb1 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:33:15.322702699Z	62	PC: 122ab \| Close file
2018-12-17T22:33:15.325223406Z	68	PC: 9fbb1 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:33:15.328391919Z	62	PC: 122ab \| Close file
2018-12-17T22:33:15.331600322Z	68	PC: 9fbb1 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:33:15.333460776Z	62	PC: 122ab \| Close file
2018-12-17T22:33:15.335646968Z	68	PC: 9fbb1 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:33:15.338558525Z	62	PC: 122ab \| Close file
2018-12-17T22:33:15.341017393Z	68	PC: 9fbb1 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:33:15.343191057Z	62	PC: 122ab \| Close file
2018-12-17T22:33:15.345435869Z	68	PC: 9fbb1 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:33:15.352971571Z	62	PC: 122ab \| Close file
2018-12-17T22:33:15.355202568Z	68	PC: 9fbb1 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:33:15.357353085Z	62	PC: 122ab \| Close file
2018-12-17T22:33:15.360373406Z	68	PC: 9fbb1 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:33:15.362249291Z	62	PC: 122ab \| Close file
2018-12-17T22:33:15.364356941Z	68	PC: 9fbb1 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:33:15.367169148Z	62	PC: 122ab \| Close file
2018-12-17T22:33:15.369108624Z	68	PC: 9fbb1 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:33:15.370933001Z	62	PC: 122ab \| Close file
2018-12-17T22:33:15.37348852Z	68	PC: 9fbb1 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:33:15.375338668Z	62	PC: 122ab \| Close file
2018-12-17T22:33:15.377259608Z	68	PC: 9fbb1 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:33:15.379816236Z	62	PC: 122ab \| Close file
2018-12-17T22:33:15.381752984Z	68	PC: 9fbb1 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:33:15.383570467Z	62	PC: 122ab \| Close file
2018-12-17T22:33:15.385498319Z	68	PC: 9fbb1 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:33:15.388703223Z	62	PC: 122ab \| Close file
2018-12-17T22:33:15.392628942Z	99	PC: 99ec7 \| Get DBCS lead byte table pointer
2018-12-17T22:33:15.394713399Z	56	PC: 946e9 \| Get or set country info
2018-12-17T22:33:15.398499325Z	64	PC: 9a138 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T22:33:15.404224262Z	25	PC: 94752 \| Get default drive
2018-12-17T22:33:15.40672779Z	71	PC: 969cd \| Get current directory
2018-12-17T22:33:15.412756165Z	64	PC: 9a138 \| Write file or device (Write 3 bytes on handle 1)
2018-12-17T22:33:15.418127471Z	2	PC: 969a2 \| Character output (Char = '3e')
2018-12-17T22:33:15.421204298Z	93	PC: 94810 \| File sharing functions
2018-12-17T22:33:15.424248757Z	93	PC: 94817 \| File sharing functions
2018-12-17T22:33:15.426776905Z	10	PC: 94829 \| Buffered keyboard input