Sample viewer

vx.netlux.org/Virus.DOS.HLLO.4870

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:34:18.749377395Z	53	PC: 139b6 \| Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:34:18.750868557Z	53	PC: 139b6 \| Get interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:34:18.752042517Z	53	PC: 139b6 \| Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:34:18.753084581Z	53	PC: 139b6 \| Get interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:34:18.754384581Z	53	PC: 139b6 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:34:18.763135816Z	53	PC: 139b6 \| Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:34:18.764280627Z	53	PC: 139b6 \| Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:34:18.765353568Z	53	PC: 139b6 \| Get interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:34:18.778205761Z	53	PC: 139b6 \| Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:34:18.779169544Z	53	PC: 139b6 \| Get interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:34:18.780254005Z	53	PC: 139b6 \| Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:34:18.781757808Z	53	PC: 139b6 \| Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:34:18.782627594Z	53	PC: 139b6 \| Get interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:34:18.783646047Z	53	PC: 139b6 \| Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:34:18.78519814Z	53	PC: 139b6 \| Get interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:34:18.786213193Z	53	PC: 139b6 \| Get interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:34:18.787198345Z	53	PC: 139b6 \| Get interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:34:18.78931525Z	53	PC: 139b6 \| Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:34:18.790408794Z	37	PC: 139cb \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:34:18.79142315Z	37	PC: 139d3 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:34:18.793512234Z	37	PC: 139db \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:34:18.794663393Z	37	PC: 139e3 \| Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:34:18.796390392Z	68	PC: 14077 \| I/O control for devices (Set for = '')
2018-12-17T22:34:18.799013433Z	26	PC: 137cd \| Set disk transfer address
2018-12-17T22:34:18.8000779Z	78	PC: 137d9 \| Find first file
2018-12-17T22:34:18.805933403Z	25	PC: 138ce \| Get default drive
2018-12-17T22:34:18.807116801Z	71	PC: 138ed \| Get current directory
2018-12-17T22:34:18.810230232Z	67	PC: 1372f \| Get or set file attributes
2018-12-17T22:34:18.815735191Z	67	PC: 13756 \| Get or set file attributes
2018-12-17T22:34:18.832505154Z	61	PC: 14399 \| Open file (Filename = 'A:\TEST.EXE')
2018-12-17T22:34:18.83896053Z	87	PC: 13770 \| Get or set file date and time
2018-12-17T22:34:18.840432847Z	62	PC: 143e9 \| Close file
2018-12-17T22:34:18.842121747Z	67	PC: 13756 \| Get or set file attributes
2018-12-17T22:34:18.860668806Z	25	PC: 138ce \| Get default drive
2018-12-17T22:34:18.861586575Z	71	PC: 138ed \| Get current directory
2018-12-17T22:34:18.863909182Z	67	PC: 1372f \| Get or set file attributes
2018-12-17T22:34:18.868515361Z	67	PC: 13756 \| Get or set file attributes
2018-12-17T22:34:18.882898119Z	61	PC: 14399 \| Open file (Filename = 'A:\TEST.EXE')
2018-12-17T22:34:18.903595886Z	87	PC: 13770 \| Get or set file date and time
2018-12-17T22:34:18.905991632Z	62	PC: 143e9 \| Close file
2018-12-17T22:34:18.907851249Z	67	PC: 13756 \| Get or set file attributes
2018-12-17T22:34:18.917492404Z	25	PC: 138ce \| Get default drive
2018-12-17T22:34:18.919100373Z	71	PC: 138ed \| Get current directory
2018-12-17T22:34:18.92226905Z	67	PC: 1372f \| Get or set file attributes
2018-12-17T22:34:18.92820709Z	67	PC: 13756 \| Get or set file attributes
2018-12-17T22:34:18.938203986Z	61	PC: 14399 \| Open file (Filename = 'A:\TEST.EXE')
2018-12-17T22:34:18.949255755Z	87	PC: 13770 \| Get or set file date and time
2018-12-17T22:34:18.950925933Z	62	PC: 143e9 \| Close file
2018-12-17T22:34:18.953196606Z	67	PC: 13756 \| Get or set file attributes
2018-12-17T22:34:18.96556502Z	25	PC: 138ce \| Get default drive
2018-12-17T22:34:18.966712734Z	71	PC: 138ed \| Get current directory
2018-12-17T22:34:18.971195454Z	67	PC: 1372f \| Get or set file attributes
2018-12-17T22:34:18.976832764Z	67	PC: 13756 \| Get or set file attributes
2018-12-17T22:34:18.986452057Z	61	PC: 14399 \| Open file (Filename = 'A:\TEST.EXE')
2018-12-17T22:34:18.994393223Z	87	PC: 13770 \| Get or set file date and time
2018-12-17T22:34:18.996225835Z	62	PC: 143e9 \| Close file
2018-12-17T22:34:19.004983421Z	67	PC: 13756 \| Get or set file attributes
2018-12-17T22:34:19.018410388Z	25	PC: 138ce \| Get default drive
2018-12-17T22:34:19.019938656Z	71	PC: 138ed \| Get current directory
2018-12-17T22:34:19.028031445Z	67	PC: 1372f \| Get or set file attributes
2018-12-17T22:34:19.039893449Z	67	PC: 13756 \| Get or set file attributes
2018-12-17T22:34:19.049700205Z	61	PC: 14399 \| Open file (Filename = 'A:\TEST.EXE')
2018-12-17T22:34:19.056508542Z	87	PC: 13770 \| Get or set file date and time
2018-12-17T22:34:19.059410905Z	62	PC: 143e9 \| Close file
2018-12-17T22:34:19.061976081Z	67	PC: 13756 \| Get or set file attributes
2018-12-17T22:34:19.072575946Z	48	PC: 145d9 \| Get DOS version
2018-12-17T22:34:19.074761444Z	67	PC: 1372f \| Get or set file attributes
2018-12-17T22:34:19.080638063Z	67	PC: 1372f \| Get or set file attributes
2018-12-17T22:34:19.08621121Z	67	PC: 13756 \| Get or set file attributes
2018-12-17T22:34:19.098961447Z	67	PC: 13756 \| Get or set file attributes
2018-12-17T22:34:19.109254739Z	61	PC: 14399 \| Open file (Filename = 'A:\TEST.EXE')
2018-12-17T22:34:19.115769394Z	61	PC: 14399 \| Open file (Filename = 'A:\TEST.EXE')
2018-12-17T22:34:19.122218742Z	87	PC: 13770 \| Get or set file date and time
2018-12-17T22:34:19.124326323Z	87	PC: 13770 \| Get or set file date and time
2018-12-17T22:34:19.125751181Z	63	PC: 1446c \| Read file or device (Read 4870 bytes on handle 5)
2018-12-17T22:34:19.133163974Z	64	PC: 1446c \| Write file or device (Write 4870 bytes on handle 6)
2018-12-17T22:34:19.141322394Z	87	PC: 1379d \| Get or set file date and time
2018-12-17T22:34:19.142780863Z	87	PC: 1379d \| Get or set file date and time
2018-12-17T22:34:19.14422408Z	62	PC: 143e9 \| Close file
2018-12-17T22:34:19.152558622Z	62	PC: 143e9 \| Close file
2018-12-17T22:34:19.162497924Z	67	PC: 13756 \| Get or set file attributes
2018-12-17T22:34:19.172511971Z	67	PC: 13756 \| Get or set file attributes
2018-12-17T22:34:19.183425249Z	67	PC: 1372f \| Get or set file attributes
2018-12-17T22:34:19.189525439Z	67	PC: 13756 \| Get or set file attributes
2018-12-17T22:34:19.199806533Z	61	PC: 14399 \| Open file (Filename = 'A:\TEST.EXE')
2018-12-17T22:34:19.211815297Z	87	PC: 13770 \| Get or set file date and time
2018-12-17T22:34:19.213720667Z	87	PC: 1379d \| Get or set file date and time
2018-12-17T22:34:19.215441917Z	62	PC: 143e9 \| Close file
2018-12-17T22:34:19.225801459Z	67	PC: 13756 \| Get or set file attributes
2018-12-17T22:34:19.236937447Z	64	PC: 1417a \| Write file or device (Write 0 bytes on handle 1)
2018-12-17T22:34:19.238685979Z	37	PC: 13ac5 \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:34:19.240400529Z	37	PC: 13ac5 \| Set interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:34:19.242106595Z	37	PC: 13ac5 \| Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:34:19.243213684Z	37	PC: 13ac5 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:34:19.244874191Z	37	PC: 13ac5 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:34:19.246105835Z	37	PC: 13ac5 \| Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:34:19.24737275Z	37	PC: 13ac5 \| Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:34:19.249664309Z	37	PC: 13ac5 \| Set interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:34:19.251018348Z	37	PC: 13ac5 \| Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:34:19.252367734Z	37	PC: 13ac5 \| Set interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:34:19.254671544Z	37	PC: 13ac5 \| Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:34:19.25603705Z	37	PC: 13ac5 \| Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:34:19.257428011Z	37	PC: 13ac5 \| Set interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:34:19.259522136Z	37	PC: 13ac5 \| Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:34:19.2610071Z	37	PC: 13ac5 \| Set interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:34:19.262074001Z	37	PC: 13ac5 \| Set interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:34:19.264032292Z	37	PC: 13ac5 \| Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:34:19.265068911Z	37	PC: 13ac5 \| Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:34:19.266085883Z	76	PC: 13b04 \| Terminate with return code (Return code = '0')