Sample viewer

vx.netlux.org/Virus.DOS.Birgit.185

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:42:30.046429981Z	78	PC: 12aa3 \| Find first file
2018-12-17T22:42:30.052876994Z	61	PC: 12aad \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:42:30.059079124Z	64	PC: 12ab9 \| Write file or device (Write 49 bytes on handle 5)
2018-12-17T22:42:30.06546533Z	64	PC: 12ac2 \| Write file or device (Write 136 bytes on handle 5)
2018-12-17T22:42:30.068865289Z	62	PC: 12ac6 \| Close file
2018-12-17T22:42:30.083528036Z	79	PC: 12aa3 \| Find next file
2018-12-17T22:42:30.08609219Z	61	PC: 12aad \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:42:30.098599506Z	64	PC: 12ab9 \| Write file or device (Write 49 bytes on handle 5)
2018-12-17T22:42:30.105205274Z	64	PC: 12ac2 \| Write file or device (Write 136 bytes on handle 5)
2018-12-17T22:42:30.107784817Z	62	PC: 12ac6 \| Close file
2018-12-17T22:42:30.120810447Z	79	PC: 12aa3 \| Find next file
2018-12-17T22:42:30.128752913Z	61	PC: 12aad \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:42:30.134967118Z	64	PC: 12ab9 \| Write file or device (Write 49 bytes on handle 5)
2018-12-17T22:42:30.14136204Z	64	PC: 12ac2 \| Write file or device (Write 136 bytes on handle 5)
2018-12-17T22:42:30.144494208Z	62	PC: 12ac6 \| Close file
2018-12-17T22:42:30.153440723Z	79	PC: 12aa3 \| Find next file
2018-12-17T22:42:30.15654691Z	61	PC: 12aad \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:42:30.164852539Z	64	PC: 12ab9 \| Write file or device (Write 49 bytes on handle 5)
2018-12-17T22:42:30.172702333Z	64	PC: 12ac2 \| Write file or device (Write 136 bytes on handle 5)
2018-12-17T22:42:30.175541806Z	62	PC: 12ac6 \| Close file
2018-12-17T22:42:30.184932274Z	79	PC: 12aa3 \| Find next file
2018-12-17T22:42:30.187888555Z	61	PC: 12aad \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:42:30.194951831Z	64	PC: 12ab9 \| Write file or device (Write 49 bytes on handle 5)
2018-12-17T22:42:30.200972731Z	64	PC: 12ac2 \| Write file or device (Write 136 bytes on handle 5)
2018-12-17T22:42:30.202802477Z	62	PC: 12ac6 \| Close file
2018-12-17T22:42:30.211830971Z	79	PC: 12aa3 \| Find next file
2018-12-17T22:42:30.214794614Z	61	PC: 12aad \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:42:30.218869544Z	64	PC: 12ab9 \| Write file or device (Write 49 bytes on handle 5)
2018-12-17T22:42:30.225388917Z	64	PC: 12ac2 \| Write file or device (Write 136 bytes on handle 5)
2018-12-17T22:42:30.228855475Z	62	PC: 12ac6 \| Close file
2018-12-17T22:42:30.245577481Z	79	PC: 12aa3 \| Find next file
2018-12-17T22:42:30.255082378Z	61	PC: 12aad \| Open file (Filename = 'PAH.COM')
2018-12-17T22:42:30.273213938Z	64	PC: 12ab9 \| Write file or device (Write 49 bytes on handle 5)
2018-12-17T22:42:30.285998497Z	64	PC: 12ac2 \| Write file or device (Write 136 bytes on handle 5)
2018-12-17T22:42:30.288588073Z	62	PC: 12ac6 \| Close file
2018-12-17T22:42:30.301126638Z	79	PC: 12aa3 \| Find next file
2018-12-17T22:42:30.315323343Z	9	PC: 12ad4 \| Display string (String= ' -=[ Birgit ]=- ')