Sample viewer

vx.netlux.org/Virus.DOS.Vienna.Bloodspill.690

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:40:20.506250411Z	53	PC: 15827 \| Get interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T22:40:20.507896662Z	37	PC: 15834 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T22:40:20.509341326Z	53	PC: 15827 \| Get interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T22:40:20.51077963Z	37	PC: 15834 \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T22:40:20.516684976Z	53	PC: 15827 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:40:20.518194205Z	37	PC: 15834 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:40:20.519563695Z	47	PC: 15758 \| Get disk transfer address
2018-12-17T22:40:20.520941984Z	26	PC: 15766 \| Set disk transfer address
2018-12-17T22:40:20.523381906Z	78	PC: 158d8 \| Find first file
2018-12-17T22:40:20.530099516Z	79	PC: 158de \| Find next file
2018-12-17T22:40:20.532816878Z	79	PC: 158de \| Find next file
2018-12-17T22:40:20.536283897Z	79	PC: 158de \| Find next file
2018-12-17T22:40:20.539063629Z	79	PC: 158de \| Find next file
2018-12-17T22:40:20.542178093Z	79	PC: 158de \| Find next file
2018-12-17T22:40:20.54597455Z	79	PC: 158de \| Find next file
2018-12-17T22:40:20.549187935Z	79	PC: 158de \| Find next file
2018-12-17T22:40:20.552021951Z	67	PC: 1590f \| Get or set file attributes
2018-12-17T22:40:20.558802399Z	67	PC: 1591d \| Get or set file attributes
2018-12-17T22:40:20.586522886Z	61	PC: 15925 \| Open file (Filename = 'TEST.COM')
2018-12-17T22:40:20.596200374Z	87	PC: 15931 \| Get or set file date and time
2018-12-17T22:40:20.599172439Z	63	PC: 15941 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:40:20.602319196Z	66	PC: 15951 \| Move file pointer
2018-12-17T22:40:20.604227374Z	64	PC: 15974 \| Write file or device (Write 690 bytes on handle 5)
2018-12-17T22:40:20.615239029Z	66	PC: 1597f \| Move file pointer
2018-12-17T22:40:20.616854069Z	64	PC: 15995 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:40:20.620181972Z	87	PC: 159a6 \| Get or set file date and time
2018-12-17T22:40:20.622843117Z	62	PC: 159aa \| Close file
2018-12-17T22:40:20.631929845Z	67	PC: 159b5 \| Get or set file attributes
2018-12-17T22:40:20.643957734Z	78	PC: 158d8 \| Find first file
2018-12-17T22:40:20.652162752Z	79	PC: 158de \| Find next file
2018-12-17T22:40:20.655190567Z	79	PC: 158de \| Find next file
2018-12-17T22:40:20.658188711Z	79	PC: 158de \| Find next file
2018-12-17T22:40:20.661515846Z	79	PC: 158de \| Find next file
2018-12-17T22:40:20.666632467Z	79	PC: 158de \| Find next file
2018-12-17T22:40:20.669661943Z	79	PC: 158de \| Find next file
2018-12-17T22:40:20.672699899Z	79	PC: 158de \| Find next file
2018-12-17T22:40:20.678065511Z	79	PC: 158de \| Find next file
2018-12-17T22:40:20.680989209Z	78	PC: 158d8 \| Find first file
2018-12-17T22:40:20.690983822Z	79	PC: 158de \| Find next file
2018-12-17T22:40:20.696432028Z	67	PC: 1590f \| Get or set file attributes
2018-12-17T22:40:20.703885543Z	67	PC: 1591d \| Get or set file attributes
2018-12-17T22:40:21.046804284Z	61	PC: 15925 \| Open file (Filename = 'C:\DOS\FORMAT.COM')
2018-12-17T22:40:21.066951498Z	87	PC: 15931 \| Get or set file date and time
2018-12-17T22:40:21.07138106Z	63	PC: 15941 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:40:21.077727757Z	66	PC: 15951 \| Move file pointer
2018-12-17T22:40:21.079986253Z	64	PC: 15974 \| Write file or device (Write 690 bytes on handle 5)
2018-12-17T22:40:21.088855484Z	66	PC: 1597f \| Move file pointer
2018-12-17T22:40:21.0908268Z	64	PC: 15995 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:40:21.094955725Z	87	PC: 159a6 \| Get or set file date and time
2018-12-17T22:40:21.097794336Z	62	PC: 159aa \| Close file
2018-12-17T22:40:21.106861889Z	67	PC: 159b5 \| Get or set file attributes
2018-12-17T22:40:21.127787858Z	78	PC: 158d8 \| Find first file
2018-12-17T22:40:21.13493805Z	79	PC: 158de \| Find next file
2018-12-17T22:40:21.137795266Z	79	PC: 158de \| Find next file
2018-12-17T22:40:21.14060221Z	79	PC: 158de \| Find next file
2018-12-17T22:40:21.14539123Z	79	PC: 158de \| Find next file
2018-12-17T22:40:21.148619492Z	79	PC: 158de \| Find next file
2018-12-17T22:40:21.151795958Z	79	PC: 158de \| Find next file
2018-12-17T22:40:21.155481429Z	79	PC: 158de \| Find next file
2018-12-17T22:40:21.158552005Z	79	PC: 158de \| Find next file
2018-12-17T22:40:21.161233525Z	78	PC: 158d8 \| Find first file
2018-12-17T22:40:21.169159938Z	79	PC: 158de \| Find next file
2018-12-17T22:40:21.17360643Z	79	PC: 158de \| Find next file
2018-12-17T22:40:21.17784746Z	67	PC: 1590f \| Get or set file attributes
2018-12-17T22:40:21.191533284Z	67	PC: 1591d \| Get or set file attributes
2018-12-17T22:40:21.204118077Z	61	PC: 15925 \| Open file (Filename = 'C:\DOS\KEYB.COM')
2018-12-17T22:40:21.213595044Z	87	PC: 15931 \| Get or set file date and time
2018-12-17T22:40:21.215889977Z	63	PC: 15941 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:40:21.222712825Z	66	PC: 15951 \| Move file pointer
2018-12-17T22:40:21.224402887Z	64	PC: 15974 \| Write file or device (Write 690 bytes on handle 5)
2018-12-17T22:40:21.235279633Z	66	PC: 1597f \| Move file pointer
2018-12-17T22:40:21.23711589Z	64	PC: 15995 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:40:21.239274785Z	87	PC: 159a6 \| Get or set file date and time
2018-12-17T22:40:21.240609592Z	62	PC: 159aa \| Close file
2018-12-17T22:40:21.246859927Z	67	PC: 159b5 \| Get or set file attributes
2018-12-17T22:40:21.25343279Z	78	PC: 158d8 \| Find first file
2018-12-17T22:40:21.257537786Z	79	PC: 158de \| Find next file
2018-12-17T22:40:21.260931636Z	79	PC: 158de \| Find next file
2018-12-17T22:40:21.262853786Z	79	PC: 158de \| Find next file
2018-12-17T22:40:21.264741234Z	79	PC: 158de \| Find next file
2018-12-17T22:40:21.268662273Z	79	PC: 158de \| Find next file
2018-12-17T22:40:21.270768609Z	79	PC: 158de \| Find next file
2018-12-17T22:40:21.272812557Z	79	PC: 158de \| Find next file
2018-12-17T22:40:21.275453535Z	79	PC: 158de \| Find next file
2018-12-17T22:40:21.277284426Z	78	PC: 158d8 \| Find first file
2018-12-17T22:40:21.281809877Z	79	PC: 158de \| Find next file
2018-12-17T22:40:21.284701198Z	79	PC: 158de \| Find next file
2018-12-17T22:40:21.287099317Z	79	PC: 158de \| Find next file
2018-12-17T22:40:21.291424653Z	67	PC: 1590f \| Get or set file attributes
2018-12-17T22:40:21.295704889Z	67	PC: 1591d \| Get or set file attributes
2018-12-17T22:40:21.302869647Z	61	PC: 15925 \| Open file (Filename = 'C:\DOS\SYS.COM')
2018-12-17T22:40:21.307581362Z	87	PC: 15931 \| Get or set file date and time
2018-12-17T22:40:21.309155675Z	63	PC: 15941 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:40:21.315944184Z	66	PC: 15951 \| Move file pointer
2018-12-17T22:40:21.317694569Z	64	PC: 15974 \| Write file or device (Write 690 bytes on handle 5)
2018-12-17T22:40:21.324657404Z	66	PC: 1597f \| Move file pointer
2018-12-17T22:40:21.326645251Z	64	PC: 15995 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:40:21.328656559Z	87	PC: 159a6 \| Get or set file date and time
2018-12-17T22:40:21.329923487Z	62	PC: 159aa \| Close file
2018-12-17T22:40:21.335544259Z	67	PC: 159b5 \| Get or set file attributes
2018-12-17T22:40:21.342208427Z	26	PC: 15788 \| Set disk transfer address
2018-12-17T22:40:21.34343773Z	37	PC: 15855 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T22:40:21.34560172Z	37	PC: 15855 \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T22:40:21.346639207Z	37	PC: 15855 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')