Sample viewer

vx.netlux.org/Virus.DOS.King.581

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:40:28.037237469Z	26	PC: 12ae2 \| Set disk transfer address
2018-12-17T22:40:28.039677029Z	78	PC: 12aed \| Find first file
2018-12-17T22:40:28.045559259Z	67	PC: 12b33 \| Get or set file attributes
2018-12-17T22:40:28.060974414Z	61	PC: 12b50 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:40:28.072955635Z	66	PC: 12b63 \| Move file pointer
2018-12-17T22:40:28.074805779Z	63	PC: 12b70 \| Read file or device (Read 6 bytes on handle 5)
2018-12-17T22:40:28.081494221Z	66	PC: 12b97 \| Move file pointer
2018-12-17T22:40:28.082963299Z	64	PC: 12ba4 \| Write file or device (Write 6 bytes on handle 5)
2018-12-17T22:40:28.086762458Z	66	PC: 12bb1 \| Move file pointer
2018-12-17T22:40:28.089149684Z	64	PC: 12bc5 \| Write file or device (Write 581 bytes on handle 5)
2018-12-17T22:40:28.09765412Z	87	PC: 12bde \| Get or set file date and time
2018-12-17T22:40:28.100163798Z	62	PC: 12be6 \| Close file
2018-12-17T22:40:28.10827676Z	67	PC: 12bff \| Get or set file attributes
2018-12-17T22:40:28.118364752Z	79	PC: 12af6 \| Find next file
2018-12-17T22:40:28.122033215Z	79	PC: 12af6 \| Find next file
2018-12-17T22:40:28.124966419Z	67	PC: 12b33 \| Get or set file attributes
2018-12-17T22:40:28.135284281Z	61	PC: 12b50 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:40:28.143163922Z	66	PC: 12b63 \| Move file pointer
2018-12-17T22:40:28.144809415Z	63	PC: 12b70 \| Read file or device (Read 6 bytes on handle 5)
2018-12-17T22:40:28.15143942Z	66	PC: 12b97 \| Move file pointer
2018-12-17T22:40:28.154281462Z	64	PC: 12ba4 \| Write file or device (Write 6 bytes on handle 5)
2018-12-17T22:40:28.157089295Z	66	PC: 12bb1 \| Move file pointer
2018-12-17T22:40:28.158298906Z	64	PC: 12bc5 \| Write file or device (Write 581 bytes on handle 5)
2018-12-17T22:40:28.165702226Z	87	PC: 12bde \| Get or set file date and time
2018-12-17T22:40:28.166971994Z	62	PC: 12be6 \| Close file
2018-12-17T22:40:28.172201675Z	67	PC: 12bff \| Get or set file attributes
2018-12-17T22:40:28.178998283Z	79	PC: 12af6 \| Find next file
2018-12-17T22:40:28.181380307Z	79	PC: 12af6 \| Find next file
2018-12-17T22:40:28.183195021Z	79	PC: 12af6 \| Find next file
2018-12-17T22:40:28.185081196Z	67	PC: 12b33 \| Get or set file attributes
2018-12-17T22:40:28.192438239Z	61	PC: 12b50 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:40:28.204703756Z	66	PC: 12b63 \| Move file pointer
2018-12-17T22:40:28.20646798Z	63	PC: 12b70 \| Read file or device (Read 6 bytes on handle 5)
2018-12-17T22:40:28.214645378Z	66	PC: 12b97 \| Move file pointer
2018-12-17T22:40:28.215960739Z	64	PC: 12ba4 \| Write file or device (Write 6 bytes on handle 5)
2018-12-17T22:40:28.218567331Z	66	PC: 12bb1 \| Move file pointer
2018-12-17T22:40:28.220890649Z	64	PC: 12bc5 \| Write file or device (Write 581 bytes on handle 5)
2018-12-17T22:40:28.229860073Z	87	PC: 12bde \| Get or set file date and time
2018-12-17T22:40:28.231456643Z	62	PC: 12be6 \| Close file
2018-12-17T22:40:28.239465687Z	67	PC: 12bff \| Get or set file attributes
2018-12-17T22:40:28.249395233Z	79	PC: 12af6 \| Find next file
2018-12-17T22:40:28.251876531Z	79	PC: 12af6 \| Find next file
2018-12-17T22:40:28.254902921Z	67	PC: 12b33 \| Get or set file attributes
2018-12-17T22:40:28.264389909Z	61	PC: 12b50 \| Open file (Filename = 'TEST.COM')
2018-12-17T22:40:28.2714813Z	66	PC: 12b63 \| Move file pointer
2018-12-17T22:40:28.273716223Z	63	PC: 12b70 \| Read file or device (Read 6 bytes on handle 5)
2018-12-17T22:40:28.283829006Z	87	PC: 12bde \| Get or set file date and time
2018-12-17T22:40:28.285364524Z	62	PC: 12be6 \| Close file
2018-12-17T22:40:28.292796411Z	67	PC: 12bff \| Get or set file attributes
2018-12-17T22:40:28.302409303Z	79	PC: 12af6 \| Find next file
2018-12-17T22:40:28.304690452Z	26	PC: 12c0e \| Set disk transfer address
2018-12-17T22:40:28.320571506Z	9	PC: 12a4c \| Display string (String= ' This file infected by King.581 ')