Sample viewer

vx.netlux.org/Virus.DOS.Sirius.Annihilator.314

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T23:15:37.79298604Z 26 PC: 15185 | Set disk transfer address
2018-12-17T23:15:37.795104073Z 78 PC: 15199 | Find first file
2018-12-17T23:15:37.79930323Z 61 PC: 151a6 | Open file (Filename = 'SLEEP.COM')
2018-12-17T23:15:37.803702394Z 66 PC: 15260 | Move file pointer
2018-12-17T23:15:37.805569852Z 62 PC: 151cd | Close file
2018-12-17T23:15:37.806829068Z 79 PC: 15199 | Find next file
2018-12-17T23:15:37.808763872Z 61 PC: 151a6 | Open file (Filename = 'PRINT.COM')
2018-12-17T23:15:37.813694935Z 66 PC: 15260 | Move file pointer
2018-12-17T23:15:37.81502107Z 62 PC: 151cd | Close file
2018-12-17T23:15:37.816888135Z 79 PC: 15199 | Find next file
2018-12-17T23:15:37.819153961Z 61 PC: 151a6 | Open file (Filename = 'HELLO.COM')
2018-12-17T23:15:37.823787085Z 66 PC: 15260 | Move file pointer
2018-12-17T23:15:37.825083639Z 62 PC: 151cd | Close file
2018-12-17T23:15:37.826485003Z 79 PC: 15199 | Find next file
2018-12-17T23:15:37.828868358Z 61 PC: 151a6 | Open file (Filename = 'PHANG.COM')
2018-12-17T23:15:37.836204283Z 66 PC: 15260 | Move file pointer
2018-12-17T23:15:37.837215821Z 62 PC: 151cd | Close file
2018-12-17T23:15:37.839153889Z 79 PC: 15199 | Find next file
2018-12-17T23:15:37.840923256Z 61 PC: 151a6 | Open file (Filename = 'PRINTA~1.COM')
2018-12-17T23:15:37.848746413Z 66 PC: 15260 | Move file pointer
2018-12-17T23:15:37.850448726Z 62 PC: 151cd | Close file
2018-12-17T23:15:37.852359211Z 79 PC: 15199 | Find next file
2018-12-17T23:15:37.854691414Z 61 PC: 151a6 | Open file (Filename = 'MANDEL.COM')
2018-12-17T23:15:37.867038216Z 66 PC: 15260 | Move file pointer
2018-12-17T23:15:37.869275336Z 62 PC: 151cd | Close file
2018-12-17T23:15:37.872347761Z 79 PC: 15199 | Find next file
2018-12-17T23:15:37.875641152Z 61 PC: 151a6 | Open file (Filename = 'PAH.COM')
2018-12-17T23:15:37.880680868Z 66 PC: 15260 | Move file pointer
2018-12-17T23:15:37.88205258Z 62 PC: 151cd | Close file
2018-12-17T23:15:37.884909772Z 79 PC: 15199 | Find next file
2018-12-17T23:15:37.887192245Z 61 PC: 151a6 | Open file (Filename = 'TEST.COM')
2018-12-17T23:15:37.893692387Z 66 PC: 15260 | Move file pointer
2018-12-17T23:15:37.89567558Z 87 PC: 151bd | Get or set file date and time
2018-12-17T23:15:37.897028597Z 44 PC: 151dd | Get time 0x151dd: or dx, dx
0x151df: je 0x151d9
0x151e1: mov word ptr ds:[bp + 0x23b], dx
0x151e6: mov ax, 0x4200
0x151e9: call 0x1525a
0x151ec: mov ah, 0x3f
0x151ee: lea dx, word ptr [bp + 0x218]
0x151f2: mov cx, 3
0x151f5: int 0x21
0x151f7: cmp byte ptr ds:[bp + 0x218], 0x4d
0x151fd: je 0x151c9
0x151ff: cmp byte ptr ds:[bp + 0x218], 0x5a
0x15205: je 0x151c9
0x15207: mov ax, 0x4202
0x1520a: call 0x1525a
0x1520d: sub ax, 3
0x15210: mov word ptr cs:[bp + 0x216], ax
0x15215: lea si, word ptr [bp + 0x104]
0x15219: mov di, 0xfb90
0x1521c: mov cx, 0x13a
2018-12-17T23:15:37.899027606Z 66 PC: 15260 | Move file pointer
2018-12-17T23:15:37.900717789Z 63 PC: 151f7 | Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:15:37.907370897Z 66 PC: 15260 | Move file pointer
2018-12-17T23:15:37.908783939Z 64 PC: 15232 | Write file or device (Write 314 bytes on handle 5)
2018-12-17T23:15:37.916905176Z 66 PC: 15260 | Move file pointer
2018-12-17T23:15:37.918378689Z 64 PC: 15243 | Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:15:37.921002129Z 87 PC: 1524a | Get or set file date and time
2018-12-17T23:15:37.922971686Z 62 PC: 1524e | Close file
2018-12-17T23:15:40.376921245Z 26 PC: 15255 | Set disk transfer address
2018-12-17T23:15:40.380379254Z 9 PC: 12bb5 | Display string (String= '')
2018-12-17T23:15:40.384122Z 9 PC: 12bbc | Display string (Could not find end pointer)
2018-12-17T23:15:40.395404588Z 76 PC: 12bd2 | Terminate with return code (Return code = '0')