Sample viewer

vx.netlux.org/Virus.DOS.HLLP.6146

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:35:33.403322796Z	48	PC: 12a4c \| Get DOS version
2018-12-17T22:35:33.40503168Z	53	PC: 12bab \| Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:35:33.406173684Z	53	PC: 12bb8 \| Get interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-17T22:35:33.407287358Z	53	PC: 12bc5 \| Get interrupt vector (Interrupt = '5' AKA 'Printer output')
2018-12-17T22:35:33.408912149Z	53	PC: 12bd2 \| Get interrupt vector (Interrupt = '6' AKA 'Direct console I/O')
2018-12-17T22:35:33.410368429Z	37	PC: 12be6 \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:35:33.411976669Z	74	PC: 12af4 \| Reallocate memory
2018-12-17T22:35:33.415114104Z	68	PC: 139b9 \| I/O control for devices (Set for = '��')
2018-12-17T22:35:33.418058583Z	68	PC: 139b9 \| I/O control for devices (Set for = '��')
2018-12-17T22:35:33.420994063Z	47	PC: 1386c \| Get disk transfer address
2018-12-17T22:35:33.423503574Z	26	PC: 13875 \| Set disk transfer address
2018-12-17T22:35:33.425420402Z	78	PC: 1387f \| Find first file
2018-12-17T22:35:33.431204348Z	26	PC: 13887 \| Set disk transfer address
2018-12-17T22:35:33.439958737Z	61	PC: 13a31 \| Open file (Filename = '�Y�F�:�')
2018-12-17T22:35:33.446522201Z	63	PC: 13a65 \| Read file or device (Read 35 bytes on handle 5)
2018-12-17T22:35:33.44905818Z	62	PC: 137e0 \| Close file
2018-12-17T22:35:33.451011284Z	61	PC: 13a31 \| Open file (Filename = '')
2018-12-17T22:35:33.457919367Z	61	PC: 13a31 \| Open file (Filename = '�Y�F�:�')
2018-12-17T22:35:33.465124337Z	66	PC: 138d4 \| Move file pointer
2018-12-17T22:35:33.466826396Z	66	PC: 138e1 \| Move file pointer
2018-12-17T22:35:33.469628838Z	66	PC: 138f0 \| Move file pointer
2018-12-17T22:35:33.471734905Z	66	PC: 138d4 \| Move file pointer
2018-12-17T22:35:33.473840306Z	66	PC: 138e1 \| Move file pointer
2018-12-17T22:35:33.475867481Z	66	PC: 138f0 \| Move file pointer
2018-12-17T22:35:33.477884967Z	67	PC: 13708 \| Get or set file attributes
2018-12-17T22:35:33.483841424Z	87	PC: 1395c \| Get or set file date and time
2018-12-17T22:35:33.485612811Z	62	PC: 137e0 \| Close file
2018-12-17T22:35:33.487771327Z	67	PC: 13708 \| Get or set file attributes
2018-12-17T22:35:33.504495355Z	65	PC: 13ab4 \| Delete file (Filename = '�Y�F�:�')
2018-12-17T22:35:33.516639887Z	60	PC: 13803 \| Create or truncate file
2018-12-17T22:35:33.527611838Z	63	PC: 13a65 \| Read file or device (Read 6146 bytes on handle 5)
2018-12-17T22:35:33.534624212Z	81	PC: 122cc \| Get current PSP
2018-12-17T22:35:33.536646292Z	2	PC: 1268d \| Character output (Char = '0d')
2018-12-17T22:35:33.538684354Z	2	PC: 1268d \| Character output (Char = '0a')
2018-12-17T22:35:33.543419801Z	89	PC: 12459 \| Get extended error info
2018-12-17T22:35:33.5459976Z	2	PC: 1268d \| Character output (Char = '53')
2018-12-17T22:35:33.548222144Z	2	PC: 1268d \| Character output (Char = '65')
2018-12-17T22:35:33.550477384Z	2	PC: 1268d \| Character output (Char = '63')
2018-12-17T22:35:33.553063214Z	2	PC: 1268d \| Character output (Char = '74')
2018-12-17T22:35:33.555255644Z	2	PC: 1268d \| Character output (Char = '6f')
2018-12-17T22:35:33.557327886Z	2	PC: 1268d \| Character output (Char = '72')
2018-12-17T22:35:33.560152119Z	2	PC: 1268d \| Character output (Char = '20')
2018-12-17T22:35:33.563247338Z	2	PC: 1268d \| Character output (Char = '6e')
2018-12-17T22:35:33.565299595Z	2	PC: 1268d \| Character output (Char = '6f')
2018-12-17T22:35:33.567711559Z	2	PC: 1268d \| Character output (Char = '74')
2018-12-17T22:35:33.573204118Z	2	PC: 1268d \| Character output (Char = '20')
2018-12-17T22:35:33.575607694Z	2	PC: 1268d \| Character output (Char = '66')
2018-12-17T22:35:33.578354058Z	2	PC: 1268d \| Character output (Char = '6f')
2018-12-17T22:35:33.581504876Z	2	PC: 1268d \| Character output (Char = '75')
2018-12-17T22:35:33.583960136Z	2	PC: 1268d \| Character output (Char = '6e')
2018-12-17T22:35:33.586326689Z	2	PC: 1268d \| Character output (Char = '64')
2018-12-17T22:35:33.588758413Z	2	PC: 1268d \| Character output (Char = '20')
2018-12-17T22:35:33.590898422Z	2	PC: 126da \| Character output (Char = '72')
2018-12-17T22:35:33.593399638Z	2	PC: 126da \| Character output (Char = '65')
2018-12-17T22:35:33.595839369Z	2	PC: 126da \| Character output (Char = '61')
2018-12-17T22:35:33.597959625Z	2	PC: 126da \| Character output (Char = '64')
2018-12-17T22:35:33.600302333Z	2	PC: 126da \| Character output (Char = '69')
2018-12-17T22:35:33.603254897Z	2	PC: 126da \| Character output (Char = '6e')
2018-12-17T22:35:33.605371988Z	2	PC: 126da \| Character output (Char = '67')
2018-12-17T22:35:33.607537898Z	2	PC: 1268d \| Character output (Char = '20')
2018-12-17T22:35:33.612713601Z	2	PC: 1268d \| Character output (Char = '64')
2018-12-17T22:35:33.614702711Z	2	PC: 1268d \| Character output (Char = '72')
2018-12-17T22:35:33.616801042Z	2	PC: 1268d \| Character output (Char = '69')
2018-12-17T22:35:33.619677914Z	2	PC: 1268d \| Character output (Char = '76')
2018-12-17T22:35:33.621952053Z	2	PC: 1268d \| Character output (Char = '65')
2018-12-17T22:35:33.624267725Z	2	PC: 1268d \| Character output (Char = '20')
2018-12-17T22:35:33.62754403Z	2	PC: 126ce \| Character output (Char = '41')
2018-12-17T22:35:33.629696328Z	2	PC: 1268d \| Character output (Char = '0d')
2018-12-17T22:35:33.632377573Z	2	PC: 1268d \| Character output (Char = '0a')
2018-12-17T22:35:33.63956845Z	2	PC: 1268d \| Character output (Char = '41')
2018-12-17T22:35:33.64193884Z	2	PC: 1268d \| Character output (Char = '62')
2018-12-17T22:35:33.644269336Z	2	PC: 1268d \| Character output (Char = '6f')
2018-12-17T22:35:33.647752071Z	2	PC: 1268d \| Character output (Char = '72')
2018-12-17T22:35:33.650147073Z	2	PC: 1268d \| Character output (Char = '74')
2018-12-17T22:35:33.652594518Z	2	PC: 1268d \| Character output (Char = '2c')
2018-12-17T22:35:33.656000363Z	2	PC: 1268d \| Character output (Char = '20')
2018-12-17T22:35:33.658164118Z	2	PC: 1268d \| Character output (Char = '52')
2018-12-17T22:35:33.660275372Z	2	PC: 1268d \| Character output (Char = '65')
2018-12-17T22:35:33.663597306Z	2	PC: 1268d \| Character output (Char = '74')
2018-12-17T22:35:33.66579822Z	2	PC: 1268d \| Character output (Char = '72')
2018-12-17T22:35:33.6678606Z	2	PC: 1268d \| Character output (Char = '79')
2018-12-17T22:35:33.67166992Z	2	PC: 1268d \| Character output (Char = '2c')
2018-12-17T22:35:33.674131404Z	2	PC: 1268d \| Character output (Char = '20')
2018-12-17T22:35:33.676375894Z	2	PC: 1268d \| Character output (Char = '49')
2018-12-17T22:35:33.679762591Z	2	PC: 1268d \| Character output (Char = '67')
2018-12-17T22:35:33.681900756Z	2	PC: 1268d \| Character output (Char = '6e')
2018-12-17T22:35:33.684439823Z	2	PC: 1268d \| Character output (Char = '6f')
2018-12-17T22:35:33.687415705Z	2	PC: 1268d \| Character output (Char = '72')
2018-12-17T22:35:33.689799187Z	2	PC: 1268d \| Character output (Char = '65')
2018-12-17T22:35:33.691969643Z	2	PC: 1268d \| Character output (Char = '2c')
2018-12-17T22:35:33.696055537Z	2	PC: 1268d \| Character output (Char = '20')
2018-12-17T22:35:33.698478919Z	2	PC: 1268d \| Character output (Char = '46')
2018-12-17T22:35:33.703254936Z	2	PC: 1268d \| Character output (Char = '61')
2018-12-17T22:35:33.706312769Z	2	PC: 1268d \| Character output (Char = '69')
2018-12-17T22:35:33.708717837Z	2	PC: 1268d \| Character output (Char = '6c')
2018-12-17T22:35:33.710818396Z	2	PC: 1268d \| Character output (Char = '3f')
2018-12-17T22:35:33.715366315Z	12	PC: 12581 \| Flush input buffer and input