Sample viewer

vx.netlux.org/Virus.DOS.Bash.3241

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:40:51.103711547Z 48 PC: 1515b | Get DOS version
2018-12-17T22:40:51.108039664Z 48 PC: 1519f | Get DOS version
2018-12-17T22:40:51.113406221Z 48 PC: 151c2 | Get DOS version
2018-12-17T22:40:51.115340441Z 75 PC: 159d3 | Execute program
2018-12-17T22:40:51.127339631Z 48 PC: 15aab | Get DOS version
2018-12-17T22:40:51.131011962Z 82 PC: 152b9 | Get DOS internal pointers (SYSVARS)
2018-12-17T22:40:51.133413039Z 67 PC: 15424 | Get or set file attributes
2018-12-17T22:40:51.140507181Z 67 PC: 15424 | Get or set file attributes
2018-12-17T22:40:51.150356228Z 67 PC: 15424 | Get or set file attributes
2018-12-17T22:40:51.156759333Z 67 PC: 15424 | Get or set file attributes
2018-12-17T22:40:51.169300765Z 67 PC: 15424 | Get or set file attributes
2018-12-17T22:40:51.176720874Z 67 PC: 15424 | Get or set file attributes
2018-12-17T22:40:51.18336991Z 67 PC: 15424 | Get or set file attributes
2018-12-17T22:40:51.189851624Z 67 PC: 15424 | Get or set file attributes
2018-12-17T22:40:51.197195735Z 67 PC: 15424 | Get or set file attributes
2018-12-17T22:40:51.203971437Z 67 PC: 15424 | Get or set file attributes
2018-12-17T22:40:51.210604256Z 67 PC: 15424 | Get or set file attributes
2018-12-17T22:40:51.217132027Z 67 PC: 15424 | Get or set file attributes
2018-12-17T22:40:51.223834956Z 67 PC: 15424 | Get or set file attributes
2018-12-17T22:40:51.230040938Z 67 PC: 15424 | Get or set file attributes
2018-12-17T22:40:51.236113235Z 67 PC: 15424 | Get or set file attributes
2018-12-17T22:40:51.242777312Z 67 PC: 15424 | Get or set file attributes
2018-12-17T22:40:51.249196396Z 67 PC: 15424 | Get or set file attributes
2018-12-17T22:40:51.256366448Z 67 PC: 15424 | Get or set file attributes
2018-12-17T22:40:51.263281915Z 67 PC: 15424 | Get or set file attributes
2018-12-17T22:40:51.269533046Z 67 PC: 15424 | Get or set file attributes
2018-12-17T22:40:51.275831784Z 67 PC: 15424 | Get or set file attributes
2018-12-17T22:40:51.282885285Z 67 PC: 15424 | Get or set file attributes
2018-12-17T22:40:51.289547538Z 67 PC: 15424 | Get or set file attributes
2018-12-17T22:40:51.296205765Z 67 PC: 15424 | Get or set file attributes
2018-12-17T22:40:51.303476377Z 67 PC: 15424 | Get or set file attributes
2018-12-17T22:40:51.30971942Z 67 PC: 15424 | Get or set file attributes
2018-12-17T22:40:51.317278679Z 98 PC: 15939 | Get current PSP
2018-12-17T22:40:51.319136449Z 78 PC: 158d5 | Find first file
2018-12-17T22:40:51.325082914Z 47 PC: 158dd | Get disk transfer address
2018-12-17T22:40:51.326371854Z 79 PC: 15917 | Find next file
2018-12-17T22:40:51.329354489Z 47 PC: 158dd | Get disk transfer address
2018-12-17T22:40:51.331442333Z 79 PC: 15917 | Find next file
2018-12-17T22:40:51.335001707Z 47 PC: 158dd | Get disk transfer address
2018-12-17T22:40:51.337075564Z 79 PC: 15917 | Find next file
2018-12-17T22:40:51.352694664Z 47 PC: 158dd | Get disk transfer address
2018-12-17T22:40:51.354742077Z 79 PC: 15917 | Find next file
2018-12-17T22:40:51.357551764Z 47 PC: 158dd | Get disk transfer address
2018-12-17T22:40:51.358904529Z 79 PC: 15917 | Find next file
2018-12-17T22:40:51.362406755Z 78 PC: 158d5 | Find first file
2018-12-17T22:40:51.365218585Z 42 PC: 155f9 | Get date 0x155f9: cmp cx, 0x1980
0x155fd: je 0x158ad
0x15601: cmp dx, 0x911
0x15605: jb 0x158b2
0x15609: cmp dh, 0x10
0x1560c: ja 0x158b2
0x15610: in al, 0x40
0x15612: cmp al, dl
0x15614: jne 0x158b2
0x15618: push dx
0x15619: push bx
0x1561a: push cx
0x1561b: push ax
0x1561c: push bp
0x1561d: mov ax, 0xd
0x15620: int 0x21
0x15622: mov ah, 0x19
0x15624: int 0x21
0x15626: xor dx, dx
0x15628: call 0x1565a

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":7084,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:00:50.152297299Z 48 PC: 1515b | Get DOS version
2018-12-25T12:00:50.156519341Z 48 PC: 1519f | Get DOS version
2018-12-25T12:00:50.159881403Z 48 PC: 151c2 | Get DOS version
2018-12-25T12:00:50.16237169Z 75 PC: 159d3 | Execute program
2018-12-25T12:00:50.178449366Z 48 PC: 15aab | Get DOS version
2018-12-25T12:00:50.181737222Z 82 PC: 152b9 | Get DOS internal pointers (SYSVARS)
2018-12-25T12:00:50.184349038Z 67 PC: 15424 | Get or set file attributes
2018-12-25T12:00:50.19123831Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.19930263Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.206425216Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.214460982Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.221350665Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.227675568Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.233925252Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.240985741Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.247172968Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.253195376Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.260319082Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.267342776Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.273966336Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.280987866Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.287580268Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.294119916Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.300704488Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.307931905Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.314648929Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.320922347Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.328672584Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.334838526Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.340907075Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.347699789Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.354210421Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.36137901Z 98 PC: 15939 | Get current PSP
2018-12-25T12:00:50.363511182Z 78 PC: 158d5 | Find first file
2018-12-25T12:00:50.369435931Z 47 PC: 158dd | Get disk transfer address
2018-12-25T12:00:50.371069715Z 79 PC: 15917 | Find next file
2018-12-25T12:00:50.374673244Z 47 PC: 158dd | Get disk transfer address (See above)
2018-12-25T12:00:50.375861983Z 79 PC: 15917 | Find next file (See above)
2018-12-25T12:00:50.378669088Z 47 PC: 158dd | Get disk transfer address (See above)
2018-12-25T12:00:50.38079677Z 79 PC: 15917 | Find next file (See above)
2018-12-25T12:00:50.383597296Z 47 PC: 158dd | Get disk transfer address (See above)
2018-12-25T12:00:50.385250542Z 79 PC: 15917 | Find next file (See above)
2018-12-25T12:00:50.388706137Z 47 PC: 158dd | Get disk transfer address (See above)
2018-12-25T12:00:50.390193928Z 79 PC: 15917 | Find next file (See above)
2018-12-25T12:00:50.392899737Z 78 PC: 158d5 | Find first file (See above)
2018-12-25T12:00:50.396803123Z 42 PC: 155f9 | Get date 0x155f9: cmp cx, 0x1980
0x155fd: je 0x158ad
0x15601: cmp dx, 0x911
0x15605: jb 0x158b2
0x15609: cmp dh, 0x10
0x1560c: ja 0x158b2
0x15610: in al, 0x40
0x15612: cmp al, dl
0x15614: jne 0x158b2
0x15618: push dx
0x15619: push bx
0x1561a: push cx
0x1561b: push ax
0x1561c: push bp
0x1561d: mov ax, 0xd
0x15620: int 0x21
0x15622: mov ah, 0x19
0x15624: int 0x21
0x15626: xor dx, dx
0x15628: call 0x1565a

{"DateBased":true,"Day":17,"Month":9,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":7084,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:00:50.182199601Z 48 PC: 1515b | Get DOS version
2018-12-25T12:00:50.185330117Z 48 PC: 1519f | Get DOS version
2018-12-25T12:00:50.18927688Z 48 PC: 151c2 | Get DOS version
2018-12-25T12:00:50.190465806Z 75 PC: 159d3 | Execute program
2018-12-25T12:00:50.199966787Z 48 PC: 15aab | Get DOS version
2018-12-25T12:00:50.201742575Z 82 PC: 152b9 | Get DOS internal pointers (SYSVARS)
2018-12-25T12:00:50.204231383Z 67 PC: 15424 | Get or set file attributes
2018-12-25T12:00:50.210666783Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.216226132Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.221592952Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.232216642Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.242748886Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.248112513Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.253964202Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.259387005Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.264709789Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.27519475Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.285337216Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.295525298Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.3016505Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.307179634Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.312510366Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.317969155Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.323536333Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.329097381Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.334682485Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.340070262Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.345464069Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.351029488Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.356540535Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.362383777Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.36789Z 67 PC: 15424 | Get or set file attributes (See above)
2018-12-25T12:00:50.373950054Z 98 PC: 15939 | Get current PSP
2018-12-25T12:00:50.374925701Z 78 PC: 158d5 | Find first file
2018-12-25T12:00:50.38025955Z 47 PC: 158dd | Get disk transfer address
2018-12-25T12:00:50.381772824Z 79 PC: 15917 | Find next file
2018-12-25T12:00:50.38437897Z 47 PC: 158dd | Get disk transfer address (See above)
2018-12-25T12:00:50.389565006Z 79 PC: 15917 | Find next file (See above)
2018-12-25T12:00:50.391941827Z 47 PC: 158dd | Get disk transfer address (See above)
2018-12-25T12:00:50.392916037Z 79 PC: 15917 | Find next file (See above)
2018-12-25T12:00:50.395387147Z 47 PC: 158dd | Get disk transfer address (See above)
2018-12-25T12:00:50.396770045Z 79 PC: 15917 | Find next file (See above)
2018-12-25T12:00:50.399029314Z 47 PC: 158dd | Get disk transfer address (See above)
2018-12-25T12:00:50.400119193Z 79 PC: 15917 | Find next file (See above)
2018-12-25T12:00:50.402289784Z 78 PC: 158d5 | Find first file (See above)
2018-12-25T12:00:50.404575402Z 42 PC: 155f9 | Get date 0x155f9: cmp cx, 0x1980
0x155fd: je 0x158ad
0x15601: cmp dx, 0x911
0x15605: jb 0x158b2
0x15609: cmp dh, 0x10
0x1560c: ja 0x158b2
0x15610: in al, 0x40
0x15612: cmp al, dl
0x15614: jne 0x158b2
0x15618: push dx
0x15619: push bx
0x1561a: push cx
0x1561b: push ax
0x1561c: push bp
0x1561d: mov ax, 0xd
0x15620: int 0x21
0x15622: mov ah, 0x19
0x15624: int 0x21
0x15626: xor dx, dx
0x15628: call 0x1565a