Sample viewer

vx.netlux.org/Virus.DOS.Virion.245

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:42:06.062922351Z	26	PC: 12a5a \| Set disk transfer address
2018-12-17T22:42:06.064246134Z	78	PC: 12a67 \| Find first file
2018-12-17T22:42:06.072919898Z	61	PC: 12a76 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:42:06.077644619Z	63	PC: 12a87 \| Read file or device (Read 16384 bytes on handle 5)
2018-12-17T22:42:06.082280777Z	62	PC: 12b06 \| Close file
2018-12-17T22:42:06.083582658Z	79	PC: 12b0a \| Find next file
2018-12-17T22:42:06.085543544Z	61	PC: 12a76 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:42:06.089828882Z	63	PC: 12a87 \| Read file or device (Read 16384 bytes on handle 5)
2018-12-17T22:42:06.097575171Z	62	PC: 12b06 \| Close file
2018-12-17T22:42:06.098755343Z	79	PC: 12b0a \| Find next file
2018-12-17T22:42:06.100527797Z	61	PC: 12a76 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:42:06.105894148Z	63	PC: 12a87 \| Read file or device (Read 16384 bytes on handle 5)
2018-12-17T22:42:06.110291612Z	62	PC: 12b06 \| Close file
2018-12-17T22:42:06.111669703Z	79	PC: 12b0a \| Find next file
2018-12-17T22:42:06.113911822Z	61	PC: 12a76 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:42:06.117861428Z	63	PC: 12a87 \| Read file or device (Read 16384 bytes on handle 5)
2018-12-17T22:42:06.121830806Z	62	PC: 12b06 \| Close file
2018-12-17T22:42:06.126912672Z	79	PC: 12b0a \| Find next file
2018-12-17T22:42:06.129774188Z	61	PC: 12a76 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:42:06.136509325Z	63	PC: 12a87 \| Read file or device (Read 16384 bytes on handle 5)
2018-12-17T22:42:06.144619137Z	62	PC: 12b06 \| Close file
2018-12-17T22:42:06.149620198Z	79	PC: 12b0a \| Find next file
2018-12-17T22:42:06.155975379Z	61	PC: 12a76 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:42:06.170972277Z	63	PC: 12a87 \| Read file or device (Read 16384 bytes on handle 5)
2018-12-17T22:42:06.177314431Z	62	PC: 12b06 \| Close file
2018-12-17T22:42:06.178998924Z	79	PC: 12b0a \| Find next file
2018-12-17T22:42:06.181794066Z	61	PC: 12a76 \| Open file (Filename = 'PAH.COM')
2018-12-17T22:42:06.190208253Z	63	PC: 12a87 \| Read file or device (Read 16384 bytes on handle 5)
2018-12-17T22:42:06.196715075Z	62	PC: 12b06 \| Close file
2018-12-17T22:42:06.198685701Z	79	PC: 12b0a \| Find next file
2018-12-17T22:42:06.202228008Z	61	PC: 12a76 \| Open file (Filename = 'TEST.COM')
2018-12-17T22:42:06.208581746Z	63	PC: 12a87 \| Read file or device (Read 16384 bytes on handle 5)
2018-12-17T22:42:06.215320234Z	62	PC: 12b06 \| Close file
2018-12-17T22:42:06.217669609Z	79	PC: 12b0a \| Find next file
2018-12-17T22:42:06.231207307Z	26	PC: 12b1c \| Set disk transfer address
2018-12-17T22:42:06.232691544Z	9	PC: 12d68 \| Display string (String= 'Goat file (COM/bi..). Size=00000400h/0000001024d bytes. ')
2018-12-17T22:42:06.238636376Z	48	PC: 12d71 \| Get DOS version
2018-12-17T22:42:06.239871168Z	61	PC: 12e3e \| Open file (Filename = '')
2018-12-17T22:42:06.259670347Z	93	PC: 12de0 \| File sharing functions
2018-12-17T22:42:06.262415784Z	76	PC: 12dc5 \| Terminate with return code (Return code = '0')