Sample viewer

vx.netlux.org/Virus.DOS.VCL.Gabber.529

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:35:43.707397183Z	71	PC: 12b1c \| Get current directory
2018-12-17T22:35:43.710687194Z	47	PC: 12b52 \| Get disk transfer address
2018-12-17T22:35:43.711982562Z	26	PC: 12b61 \| Set disk transfer address
2018-12-17T22:35:43.71303742Z	78	PC: 12b69 \| Find first file
2018-12-17T22:35:43.719562279Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:43.723837051Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:43.726554276Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:43.727731592Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:43.731346323Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:43.732748699Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:43.73791934Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:43.742990237Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:43.74622206Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:43.74800057Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:43.752407015Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:43.754795971Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:43.758934798Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:43.761134595Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:43.764398847Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:43.765747463Z	61	PC: 12ba4 \| Open file (Filename = 'TEST.COM')
2018-12-17T22:35:43.773880239Z	63	PC: 12baf \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:35:43.777093926Z	62	PC: 12bb3 \| Close file
2018-12-17T22:35:43.779567161Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:43.783331216Z	26	PC: 12b7b \| Set disk transfer address
2018-12-17T22:35:43.785168702Z	47	PC: 12b52 \| Get disk transfer address
2018-12-17T22:35:43.786672803Z	26	PC: 12b61 \| Set disk transfer address
2018-12-17T22:35:43.789037858Z	78	PC: 12b69 \| Find first file
2018-12-17T22:35:43.796081398Z	26	PC: 12b7b \| Set disk transfer address
2018-12-17T22:35:43.797193463Z	59	PC: 12b31 \| Change current directory
2018-12-17T22:35:43.801879071Z	59	PC: 12b3a \| Change current directory
2018-12-17T22:35:43.80793786Z	71	PC: 12b1c \| Get current directory
2018-12-17T22:35:43.811123978Z	47	PC: 12b52 \| Get disk transfer address
2018-12-17T22:35:43.812375805Z	26	PC: 12b61 \| Set disk transfer address
2018-12-17T22:35:43.814605148Z	78	PC: 12b69 \| Find first file
2018-12-17T22:35:43.821414683Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:43.823203281Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:43.827158111Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:43.828415131Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:43.83133347Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:43.833680217Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:43.836674565Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:43.838102625Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:43.841519131Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:43.843396402Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:43.847930358Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:43.849529153Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:43.852577046Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:43.853884535Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:43.856663568Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:43.858351727Z	61	PC: 12ba4 \| Open file (Filename = 'TEST.COM')
2018-12-17T22:35:43.865984121Z	63	PC: 12baf \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:35:43.869545017Z	62	PC: 12bb3 \| Close file
2018-12-17T22:35:43.87291647Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:43.876384295Z	26	PC: 12b7b \| Set disk transfer address
2018-12-17T22:35:43.877711095Z	47	PC: 12b52 \| Get disk transfer address
2018-12-17T22:35:43.880082893Z	26	PC: 12b61 \| Set disk transfer address
2018-12-17T22:35:43.881309718Z	78	PC: 12b69 \| Find first file
2018-12-17T22:35:43.887701354Z	26	PC: 12b7b \| Set disk transfer address
2018-12-17T22:35:43.89016207Z	59	PC: 12b31 \| Change current directory
2018-12-17T22:35:43.895282895Z	59	PC: 12b3a \| Change current directory
2018-12-17T22:35:43.898221182Z	71	PC: 12b1c \| Get current directory
2018-12-17T22:35:43.902144113Z	47	PC: 12b52 \| Get disk transfer address
2018-12-17T22:35:43.904283477Z	26	PC: 12b61 \| Set disk transfer address
2018-12-17T22:35:43.906019777Z	78	PC: 12b69 \| Find first file
2018-12-17T22:35:43.913056775Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:43.915680517Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:43.918774963Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:43.920587284Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:43.924570674Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:43.926311177Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:43.930014264Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:43.932409861Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:43.93565887Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:43.937488803Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:43.941254918Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:43.943300323Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:43.946359386Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:43.948755205Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:43.953112876Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:43.954503027Z	61	PC: 12ba4 \| Open file (Filename = 'TEST.COM')
2018-12-17T22:35:43.966415717Z	63	PC: 12baf \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:35:43.96974582Z	62	PC: 12bb3 \| Close file
2018-12-17T22:35:43.972155516Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:43.975197869Z	26	PC: 12b7b \| Set disk transfer address
2018-12-17T22:35:43.977031724Z	47	PC: 12b52 \| Get disk transfer address
2018-12-17T22:35:43.978267489Z	26	PC: 12b61 \| Set disk transfer address
2018-12-17T22:35:43.979429259Z	78	PC: 12b69 \| Find first file
2018-12-17T22:35:43.986610995Z	26	PC: 12b7b \| Set disk transfer address
2018-12-17T22:35:43.9878767Z	59	PC: 12b31 \| Change current directory
2018-12-17T22:35:43.992522426Z	59	PC: 12b3a \| Change current directory
2018-12-17T22:35:43.996095991Z	71	PC: 12b1c \| Get current directory
2018-12-17T22:35:43.999402677Z	47	PC: 12b52 \| Get disk transfer address
2018-12-17T22:35:44.000729754Z	26	PC: 12b61 \| Set disk transfer address
2018-12-17T22:35:44.003036533Z	78	PC: 12b69 \| Find first file
2018-12-17T22:35:44.009593884Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:44.011006775Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:44.014845029Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:44.016445924Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:44.019674125Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:44.021354914Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:44.024826752Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:44.026058725Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:44.028883829Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:44.031314019Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:44.035215367Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:44.036797195Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:44.04049468Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:44.041938518Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:44.044648958Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:44.046031175Z	61	PC: 12ba4 \| Open file (Filename = 'TEST.COM')
2018-12-17T22:35:44.053254918Z	63	PC: 12baf \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:35:44.056374648Z	62	PC: 12bb3 \| Close file
2018-12-17T22:35:44.05921513Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:44.061977288Z	26	PC: 12b7b \| Set disk transfer address
2018-12-17T22:35:44.063504546Z	47	PC: 12b52 \| Get disk transfer address
2018-12-17T22:35:44.065581367Z	26	PC: 12b61 \| Set disk transfer address
2018-12-17T22:35:44.066934697Z	78	PC: 12b69 \| Find first file
2018-12-17T22:35:44.073553605Z	26	PC: 12b7b \| Set disk transfer address
2018-12-17T22:35:44.076028787Z	59	PC: 12b31 \| Change current directory
2018-12-17T22:35:44.080749267Z	59	PC: 12b3a \| Change current directory
2018-12-17T22:35:44.082822067Z	71	PC: 12b1c \| Get current directory
2018-12-17T22:35:44.087412854Z	47	PC: 12b52 \| Get disk transfer address
2018-12-17T22:35:44.088925272Z	26	PC: 12b61 \| Set disk transfer address
2018-12-17T22:35:44.090510175Z	78	PC: 12b69 \| Find first file
2018-12-17T22:35:44.097551321Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:44.099848031Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:44.103029168Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:44.10490698Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:44.108247273Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:44.110709331Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:44.113952736Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:44.115923809Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:44.119102387Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:44.120762109Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:44.124940767Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:44.126617919Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:44.129766521Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:44.132515955Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:44.135357128Z	47	PC: 12b81 \| Get disk transfer address
2018-12-17T22:35:44.136673631Z	61	PC: 12ba4 \| Open file (Filename = 'TEST.COM')
2018-12-17T22:35:44.14486865Z	63	PC: 12baf \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:35:44.148008165Z	62	PC: 12bb3 \| Close file
2018-12-17T22:35:44.150337247Z	79	PC: 12b69 \| Find next file
2018-12-17T22:35:44.1540016Z	26	PC: 12b7b \| Set disk transfer address
2018-12-17T22:35:44.155534633Z	47	PC: 12b52 \| Get disk transfer address
2018-12-17T22:35:44.157137613Z	26	PC: 12b61 \| Set disk transfer address
2018-12-17T22:35:44.159637822Z	78	PC: 12b69 \| Find first file
2018-12-17T22:35:44.166172565Z	26	PC: 12b7b \| Set disk transfer address
2018-12-17T22:35:44.167505955Z	59	PC: 12b31 \| Change current directory
2018-12-17T22:35:44.172984159Z	59	PC: 12b3a \| Change current directory
2018-12-17T22:35:44.175658647Z	42	PC: 12c0c \| Get date 0x12c0c: mov al, dl 0x12c0e: cwde 0x12c0f: ret 0x12c10: mov ah, 0x2a 0x12c12: int 0x21 0x12c14: mov al, dh 0x12c16: cwde 0x12c17: ret 0x12c18: mov al, byte ptr [0x2c7] 0x12c1b: cwde 0x12c1c: ret 0x12c1d: pop bx 0x12c1e: inc di 0x12c1f: dec sp 0x12c20: outsw dx, word ptr [si] 0x12c21: inc dx 0x12c22: popaw 0x12c23: dec sp 0x12c24: and byte ptr [bp + di + 0x68], al 0x12c27: imul cx, word ptr [si + 0x4c], 0x4761
2018-12-17T22:35:44.17869666Z	47	PC: 12a8d \| Get disk transfer address
2018-12-17T22:35:44.181271133Z	78	PC: 12a96 \| Find first file
2018-12-17T22:35:44.188920572Z	67	PC: 12aa2 \| Get or set file attributes
2018-12-17T22:35:44.195783558Z	61	PC: 12aaa \| Open file (Filename = 'IO.SYS')
2018-12-17T22:35:44.20375416Z	63	PC: 12ab6 \| Read file or device (Read 4096 bytes on handle 2)