Sample viewer

vx.netlux.org/Virus.DOS.VCL.652

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:42:15.974453347Z	47	PC: 12a61 \| Get disk transfer address
2018-12-17T22:42:15.977377327Z	26	PC: 12a69 \| Set disk transfer address
2018-12-17T22:42:15.98661102Z	37	PC: 12a7e \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T22:42:15.988257285Z	37	PC: 12a82 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T22:42:16.003002465Z	71	PC: 12ad6 \| Get current directory
2018-12-17T22:42:16.006680436Z	59	PC: 12ade \| Change current directory
2018-12-17T22:42:16.011588499Z	47	PC: 12af3 \| Get disk transfer address
2018-12-17T22:42:16.013209567Z	26	PC: 12b01 \| Set disk transfer address
2018-12-17T22:42:16.034885086Z	78	PC: 12b0c \| Find first file
2018-12-17T22:42:16.041963392Z	79	PC: 12b34 \| Find next file
2018-12-17T22:42:16.045120307Z	79	PC: 12b34 \| Find next file
2018-12-17T22:42:16.048856621Z	79	PC: 12b34 \| Find next file
2018-12-17T22:42:16.051743398Z	79	PC: 12b34 \| Find next file
2018-12-17T22:42:16.054632656Z	79	PC: 12b34 \| Find next file
2018-12-17T22:42:16.064507865Z	79	PC: 12b34 \| Find next file
2018-12-17T22:42:16.067413433Z	79	PC: 12b34 \| Find next file
2018-12-17T22:42:16.070264418Z	79	PC: 12b34 \| Find next file
2018-12-17T22:42:16.073562028Z	79	PC: 12b34 \| Find next file
2018-12-17T22:42:16.076378349Z	47	PC: 12b5d \| Get disk transfer address
2018-12-17T22:42:16.078003677Z	26	PC: 12b6c \| Set disk transfer address
2018-12-17T22:42:16.08013107Z	78	PC: 12b74 \| Find first file
2018-12-17T22:42:16.087481249Z	47	PC: 12b91 \| Get disk transfer address
2018-12-17T22:42:16.089034686Z	61	PC: 12ba9 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:42:16.097000256Z	63	PC: 12bb5 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:42:16.104260555Z	66	PC: 12bbd \| Move file pointer
2018-12-17T22:42:16.106149902Z	62	PC: 12bc2 \| Close file
2018-12-17T22:42:16.108718748Z	67	PC: 12be2 \| Get or set file attributes
2018-12-17T22:42:16.140894694Z	61	PC: 12be7 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:42:16.14894295Z	64	PC: 12bf3 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:42:16.153268042Z	66	PC: 12bfb \| Move file pointer
2018-12-17T22:42:16.156378835Z	64	PC: 12ce0 \| Write file or device (Write 652 bytes on handle 5)
2018-12-17T22:42:16.172614784Z	87	PC: 12c0b \| Get or set file date and time
2018-12-17T22:42:16.175649078Z	62	PC: 12c0f \| Close file
2018-12-17T22:42:16.185492011Z	67	PC: 12c1c \| Get or set file attributes
2018-12-17T22:42:16.196727833Z	26	PC: 12b86 \| Set disk transfer address
2018-12-17T22:42:16.198365063Z	26	PC: 12b44 \| Set disk transfer address
2018-12-17T22:42:16.201022097Z	59	PC: 12ae8 \| Change current directory
2018-12-17T22:42:16.20343469Z	26	PC: 12ab1 \| Set disk transfer address
2018-12-17T22:42:16.205006978Z	47	PC: 12a61 \| Get disk transfer address
2018-12-17T22:42:16.20761894Z	26	PC: 12a69 \| Set disk transfer address
2018-12-17T22:42:16.218513021Z	37	PC: 12a7e \| Set interrupt vector (Interrupt = '3' AKA 'Auxiliary input')
2018-12-17T22:42:16.220129327Z	37	PC: 12a82 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T22:42:16.222567392Z	26	PC: 12ab1 \| Set disk transfer address