Sample viewer

vx.netlux.org/Virus.DOS.V.1376

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:35:13.619664974Z	192	PC: 16ef4 \| UNKNOWN!
2018-12-17T22:35:13.622385656Z	74	PC: 12b3f \| Reallocate memory
2018-12-17T22:35:13.624480976Z	53	PC: 12b44 \| Get interrupt vector (Interrupt = '19' AKA 'Delete file')
2018-12-17T22:35:13.62645575Z	53	PC: 12b51 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:35:13.62950032Z	67	PC: 12c84 \| Get or set file attributes
2018-12-17T22:35:13.643878495Z	67	PC: 12c92 \| Get or set file attributes
2018-12-17T22:35:13.659778435Z	61	PC: 12c9b \| Open file (Filename = '& ')
2018-12-17T22:35:13.669872335Z	68	PC: 12cf3 \| I/O control for devices (Set for = '& ')
2018-12-17T22:35:13.672297434Z	62	PC: 12ca4 \| Close file
2018-12-17T22:35:13.674430795Z	67	PC: 12cb0 \| Get or set file attributes
2018-12-17T22:35:13.692033237Z	75	PC: 12b9e \| Execute program
2018-12-17T22:35:13.710717499Z	88	PC: 14258 \| case 0xGet or set allocation strateg:
2018-12-17T22:35:13.712318431Z	88	PC: 14258 \| case 0xGet or set allocation strateg:
2018-12-17T22:35:13.714074785Z	64	PC: 141b0 \| Write file or device (Write 76 bytes on handle 1)
2018-12-17T22:35:13.723074874Z	64	PC: 141b0 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T22:35:13.730526209Z	64	PC: 141b0 \| Write file or device (Write 777 bytes on handle 1)
2018-12-17T22:35:13.782945479Z	64	PC: 141b0 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T22:35:13.793163102Z	88	PC: 14258 \| case 0xGet or set allocation strateg:
2018-12-17T22:35:13.795520212Z	88	PC: 13d54 \| case 0xGet or set allocation strateg:
2018-12-17T22:35:13.797420877Z	76	PC: 13d82 \| Terminate with return code (Return code = '1')
2018-12-17T22:35:13.804014753Z	49	PC: 12bad \| Terminate and stay resident (Return code = '0' \| Memory size = '101')
2018-12-17T22:35:13.806659574Z	77	PC: 11fe0 \| Get program return code
2018-12-17T22:35:13.810306814Z	72	PC: 12174 \| Allocate memory
2018-12-17T22:35:13.815258961Z	72	PC: 1218d \| Allocate memory
2018-12-17T22:35:13.817728863Z	37	PC: 123c4 \| Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T22:35:13.819273991Z	37	PC: 123cb \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:35:13.821099986Z	37	PC: 123d2 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:35:13.823303018Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:35:13.82607182Z	62	PC: 122ab \| Close file
2018-12-17T22:35:13.828138897Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:35:13.8344534Z	62	PC: 122ab \| Close file
2018-12-17T22:35:13.836214032Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:35:13.837915192Z	62	PC: 122ab \| Close file
2018-12-17T22:35:13.841802553Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:35:13.844413449Z	62	PC: 122ab \| Close file
2018-12-17T22:35:13.84642919Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:35:13.849175029Z	62	PC: 122ab \| Close file
2018-12-17T22:35:13.851138662Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:35:13.853146097Z	62	PC: 122ab \| Close file
2018-12-17T22:35:13.856279573Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:35:13.858182743Z	62	PC: 122ab \| Close file
2018-12-17T22:35:13.859976677Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:35:13.862861407Z	62	PC: 122ab \| Close file
2018-12-17T22:35:13.872425254Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:35:13.8751049Z	62	PC: 122ab \| Close file
2018-12-17T22:35:13.887047187Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:35:13.889006882Z	62	PC: 122ab \| Close file
2018-12-17T22:35:13.890942342Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:35:13.893950303Z	62	PC: 122ab \| Close file
2018-12-17T22:35:13.895897695Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:35:13.897210708Z	62	PC: 122ab \| Close file
2018-12-17T22:35:13.899009401Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:35:13.901608245Z	62	PC: 122ab \| Close file
2018-12-17T22:35:13.903545158Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:35:13.905273169Z	62	PC: 122ab \| Close file
2018-12-17T22:35:13.908004611Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:35:13.90975302Z	62	PC: 122ab \| Close file
2018-12-17T22:35:13.912325826Z	99	PC: 9a5d7 \| Get DBCS lead byte table pointer
2018-12-17T22:35:13.914810946Z	56	PC: 94df9 \| Get or set country info
2018-12-17T22:35:13.916684149Z	64	PC: 9a848 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T22:35:13.919925799Z	25	PC: 94e62 \| Get default drive
2018-12-17T22:35:13.921935047Z	71	PC: 970dd \| Get current directory
2018-12-17T22:35:13.925472952Z	64	PC: 9a848 \| Write file or device (Write 3 bytes on handle 1)
2018-12-17T22:35:13.92883085Z	2	PC: 970b2 \| Character output (Char = '3e')
2018-12-17T22:35:13.931378648Z	93	PC: 94f20 \| File sharing functions
2018-12-17T22:35:13.932759207Z	93	PC: 94f27 \| File sharing functions
2018-12-17T22:35:13.93432803Z	10	PC: 94f39 \| Buffered keyboard input
2018-12-17T22:35:28.591735266Z	0	PC: 0 \| Program terminate
2018-12-17T22:35:29.946789557Z	0	PC: 0 \| Program terminate
2018-12-17T22:35:30.050599828Z	64	PC: 9a848 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T22:35:30.056959516Z	41	PC: 94fae \| Parse filename
2018-12-17T22:35:30.059049625Z	41	PC: 9502f \| Parse filename
2018-12-17T22:35:30.061094961Z	41	PC: 9504c \| Parse filename
2018-12-17T22:35:30.065604449Z	26	PC: 984f7 \| Set disk transfer address
2018-12-17T22:35:30.067994752Z	71	PC: 986f3 \| Get current directory
2018-12-17T22:35:30.080574675Z	78	PC: 986fe \| Find first file
2018-12-17T22:35:30.093815437Z	71	PC: 9856c \| Get current directory
2018-12-17T22:35:30.097526026Z	73	PC: 97c09 \| Release memory
2018-12-17T22:35:30.099218761Z	67	PC: 12c84 \| Get or set file attributes
2018-12-17T22:35:30.106169216Z	67	PC: 12c92 \| Get or set file attributes
2018-12-17T22:35:30.120007198Z	61	PC: 12c9b \| Open file (Filename = 'A:\PRINT.COM')
2018-12-17T22:35:30.128145481Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'A:\PRINT.COM')
2018-12-17T22:35:30.131048115Z	62	PC: 12ca4 \| Close file
2018-12-17T22:35:30.133127144Z	67	PC: 12cb0 \| Get or set file attributes
2018-12-17T22:35:30.145329479Z	75	PC: 11821 \| Execute program
2018-12-17T22:35:30.161071933Z	9	PC: 130f7 \| Display string (String= 'Hello, World! ')
2018-12-17T22:35:30.166885837Z	76	PC: 130fb \| Terminate with return code (Return code = '36')
2018-12-17T22:35:30.170583582Z	77	PC: 11fe0 \| Get program return code
2018-12-17T22:35:30.172542055Z	72	PC: 12174 \| Allocate memory
2018-12-17T22:35:30.17585581Z	72	PC: 1218d \| Allocate memory
2018-12-17T22:35:30.178072447Z	37	PC: 123c4 \| Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T22:35:30.180449906Z	37	PC: 123cb \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:35:30.182031993Z	37	PC: 123d2 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:35:30.183459651Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:35:30.1862856Z	62	PC: 122ab \| Close file
2018-12-17T22:35:30.188142243Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:35:30.192450122Z	62	PC: 122ab \| Close file
2018-12-17T22:35:30.195389064Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:35:30.198050665Z	62	PC: 122ab \| Close file
2018-12-17T22:35:30.19997271Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:35:30.201902219Z	62	PC: 122ab \| Close file
2018-12-17T22:35:30.205025436Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:35:30.206983388Z	62	PC: 122ab \| Close file
2018-12-17T22:35:30.208898129Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:35:30.213317457Z	62	PC: 122ab \| Close file
2018-12-17T22:35:30.215111933Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:35:30.218663614Z	62	PC: 122ab \| Close file
2018-12-17T22:35:30.222078338Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:35:30.224336904Z	62	PC: 122ab \| Close file
2018-12-17T22:35:30.226469524Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:35:30.229166622Z	62	PC: 122ab \| Close file
2018-12-17T22:35:30.23117032Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:35:30.233374704Z	62	PC: 122ab \| Close file
2018-12-17T22:35:30.236996226Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:35:30.250775729Z	62	PC: 122ab \| Close file
2018-12-17T22:35:30.252842845Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:35:30.255958599Z	62	PC: 122ab \| Close file
2018-12-17T22:35:30.25822547Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:35:30.260238135Z	62	PC: 122ab \| Close file
2018-12-17T22:35:30.263041302Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:35:30.264757902Z	62	PC: 122ab \| Close file
2018-12-17T22:35:30.266673394Z	68	PC: 12cf3 \| I/O control for devices (Set for = 'mfyW�Wv W�Wj W� WcW�W�W W5W')
2018-12-17T22:35:30.26908147Z	62	PC: 122ab \| Close file
2018-12-17T22:35:30.272964282Z	99	PC: 9a5d7 \| Get DBCS lead byte table pointer
2018-12-17T22:35:30.274783805Z	56	PC: 94df9 \| Get or set country info
2018-12-17T22:35:30.278203578Z	64	PC: 9a848 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T22:35:30.283787481Z	25	PC: 94e62 \| Get default drive
2018-12-17T22:35:30.285809092Z	71	PC: 970dd \| Get current directory
2018-12-17T22:35:30.290092035Z	64	PC: 9a848 \| Write file or device (Write 3 bytes on handle 1)
2018-12-17T22:35:30.294388272Z	2	PC: 970b2 \| Character output (Char = '3e')
2018-12-17T22:35:30.297125736Z	93	PC: 94f20 \| File sharing functions
2018-12-17T22:35:30.299509807Z	93	PC: 94f27 \| File sharing functions
2018-12-17T22:35:30.302414194Z	10	PC: 94f39 \| Buffered keyboard input