Sample viewer

vx.netlux.org/Virus.DOS.Steryd.399

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:42:48.5465196Z 53 PC: 12a4d | Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:42:48.547790799Z 37 PC: 12a5f | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:42:48.550350816Z 26 PC: 12a7b | Set disk transfer address
2018-12-17T22:42:48.551489569Z 78 PC: 12a82 | Find first file
2018-12-17T22:42:48.557198289Z 67 PC: 12a8f | Get or set file attributes
2018-12-17T22:42:48.564506085Z 67 PC: 12a9b | Get or set file attributes
2018-12-17T22:42:48.583289809Z 61 PC: 12abe | Open file (Filename = '')
2018-12-17T22:42:48.591403687Z 63 PC: 12ac9 | Read file or device (Read 399 bytes on handle 5)
2018-12-17T22:42:48.598380318Z 66 PC: 12ade | Move file pointer
2018-12-17T22:42:48.600212541Z 64 PC: 12ae8 | Write file or device (Write 399 bytes on handle 5)
2018-12-17T22:42:48.604004032Z 66 PC: 12af1 | Move file pointer
2018-12-17T22:42:48.605830778Z 64 PC: 12afb | Write file or device (Write 399 bytes on handle 5)
2018-12-17T22:42:48.615081742Z 87 PC: 12b0a | Get or set file date and time
2018-12-17T22:42:48.617034004Z 62 PC: 12b0e | Close file
2018-12-17T22:42:48.626257861Z 67 PC: 12b1b | Get or set file attributes
2018-12-17T22:42:48.636628567Z 79 PC: 12b1f | Find next file
2018-12-17T22:42:48.639722442Z 67 PC: 12a8f | Get or set file attributes
2018-12-17T22:42:48.645840183Z 67 PC: 12a9b | Get or set file attributes
2018-12-17T22:42:48.661176927Z 67 PC: 12b1b | Get or set file attributes
2018-12-17T22:42:48.67053184Z 79 PC: 12b1f | Find next file
2018-12-17T22:42:48.673926229Z 67 PC: 12a8f | Get or set file attributes
2018-12-17T22:42:48.68450289Z 67 PC: 12a9b | Get or set file attributes
2018-12-17T22:42:48.696780126Z 67 PC: 12b1b | Get or set file attributes
2018-12-17T22:42:48.705978819Z 79 PC: 12b1f | Find next file
2018-12-17T22:42:48.708963283Z 67 PC: 12a8f | Get or set file attributes
2018-12-17T22:42:48.716010816Z 67 PC: 12a9b | Get or set file attributes
2018-12-17T22:42:48.72518122Z 67 PC: 12b1b | Get or set file attributes
2018-12-17T22:42:48.734370738Z 79 PC: 12b1f | Find next file
2018-12-17T22:42:48.738042014Z 67 PC: 12a8f | Get or set file attributes
2018-12-17T22:42:48.749952205Z 67 PC: 12a9b | Get or set file attributes
2018-12-17T22:42:48.762415749Z 67 PC: 12b1b | Get or set file attributes
2018-12-17T22:42:48.773253597Z 79 PC: 12b1f | Find next file
2018-12-17T22:42:48.77618587Z 67 PC: 12a8f | Get or set file attributes
2018-12-17T22:42:48.781754913Z 67 PC: 12a9b | Get or set file attributes
2018-12-17T22:42:48.791346699Z 61 PC: 12abe | Open file (Filename = '')
2018-12-17T22:42:48.798905993Z 63 PC: 12ac9 | Read file or device (Read 399 bytes on handle 5)
2018-12-17T22:42:48.805029427Z 66 PC: 12ade | Move file pointer
2018-12-17T22:42:48.806762489Z 64 PC: 12ae8 | Write file or device (Write 399 bytes on handle 5)
2018-12-17T22:42:48.810552641Z 66 PC: 12af1 | Move file pointer
2018-12-17T22:42:48.812301391Z 64 PC: 12afb | Write file or device (Write 399 bytes on handle 5)
2018-12-17T22:42:48.819809041Z 87 PC: 12b0a | Get or set file date and time
2018-12-17T22:42:48.822836784Z 62 PC: 12b0e | Close file
2018-12-17T22:42:48.830577463Z 67 PC: 12b1b | Get or set file attributes
2018-12-17T22:42:48.839988121Z 79 PC: 12b1f | Find next file
2018-12-17T22:42:48.843382267Z 67 PC: 12a8f | Get or set file attributes
2018-12-17T22:42:48.848880184Z 67 PC: 12a9b | Get or set file attributes
2018-12-17T22:42:48.860027401Z 67 PC: 12b1b | Get or set file attributes
2018-12-17T22:42:48.872123855Z 79 PC: 12b1f | Find next file
2018-12-17T22:42:48.875266768Z 67 PC: 12a8f | Get or set file attributes
2018-12-17T22:42:48.890399558Z 67 PC: 12a9b | Get or set file attributes
2018-12-17T22:42:48.902920648Z 61 PC: 12abe | Open file (Filename = '')
2018-12-17T22:42:48.910798156Z 63 PC: 12ac9 | Read file or device (Read 399 bytes on handle 5)
2018-12-17T22:42:48.918207993Z 62 PC: 12b0e | Close file
2018-12-17T22:42:48.922193229Z 67 PC: 12b1b | Get or set file attributes
2018-12-17T22:42:48.929810508Z 79 PC: 12b1f | Find next file
2018-12-17T22:42:48.93181894Z 37 PC: 12b33 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:42:48.933527388Z 42 PC: 12b3b | Get date 0x12b3b: cmp dx, 0xc18
0x12b3f: jne 0x12b4c
0x12b41: mov ah, 9
0x12b43: mov dx, 0xfd8a
0x12b46: int 0x21
0x12b48: xor ax, ax
0x12b4a: int 0x16
0x12b4c: mov ah, 0x1a
0x12b4e: mov dx, 0x80
0x12b51: int 0x21
0x12b53: mov si, 0x221
0x12b56: mov di, 0xfde8
0x12b59: mov cx, 0x20
0x12b5c: cld
0x12b5d: push di
0x12b5e: rep movsb byte ptr es:[di], byte ptr [si]
0x12b60: ret
0x12b61: mov si, word ptr cs:[0x248]
0x12b66: add si, 0x100
0x12b6a: mov di, 0x100
2018-12-17T22:42:48.937398475Z 26 PC: 12b53 | Set disk transfer address
2018-12-17T22:42:48.939231536Z 9 PC: 12e26 | Display string (String= 'BCDEF- This is a 1000 byte COM test, 1994 ')

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":7668,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:02:20.527910971Z 53 PC: 12a4d | Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-25T12:02:20.530071394Z 37 PC: 12a5f | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-25T12:02:20.531408983Z 26 PC: 12a7b | Set disk transfer address
2018-12-25T12:02:20.532748688Z 78 PC: 12a82 | Find first file
2018-12-25T12:02:20.540028313Z 67 PC: 12a8f | Get or set file attributes
2018-12-25T12:02:20.546579297Z 67 PC: 12a9b | Get or set file attributes
2018-12-25T12:02:20.567771445Z 61 PC: 12abe | Open file (Filename = '')
2018-12-25T12:02:20.581297824Z 63 PC: 12ac9 | Read file or device (Read 399 bytes on handle 5)
2018-12-25T12:02:20.588715477Z 66 PC: 12ade | Move file pointer
2018-12-25T12:02:20.5903456Z 64 PC: 12ae8 | Write file or device (Write 399 bytes on handle 5)
2018-12-25T12:02:20.593480946Z 66 PC: 12af1 | Move file pointer
2018-12-25T12:02:20.594950538Z 64 PC: 12afb | Write file or device (Write 399 bytes on handle 5)
2018-12-25T12:02:20.603746625Z 87 PC: 12b0a | Get or set file date and time
2018-12-25T12:02:20.605273581Z 62 PC: 12b0e | Close file
2018-12-25T12:02:20.616550693Z 67 PC: 12b1b | Get or set file attributes
2018-12-25T12:02:20.630934639Z 79 PC: 12b1f | Find next file
2018-12-25T12:02:20.6338566Z 67 PC: 12a8f | Get or set file attributes (See above)
2018-12-25T12:02:20.642460593Z 67 PC: 12a9b | Get or set file attributes (See above)
2018-12-25T12:02:20.649611306Z 67 PC: 12b1b | Get or set file attributes (See above)
2018-12-25T12:02:20.658273521Z 79 PC: 12b1f | Find next file (See above)
2018-12-25T12:02:20.662491654Z 67 PC: 12a8f | Get or set file attributes (See above)
2018-12-25T12:02:20.669184681Z 67 PC: 12a9b | Get or set file attributes (See above)
2018-12-25T12:02:20.682464987Z 67 PC: 12b1b | Get or set file attributes (See above)
2018-12-25T12:02:20.693768327Z 79 PC: 12b1f | Find next file (See above)
2018-12-25T12:02:20.69745602Z 67 PC: 12a8f | Get or set file attributes (See above)
2018-12-25T12:02:20.710398311Z 67 PC: 12a9b | Get or set file attributes (See above)
2018-12-25T12:02:20.717782079Z 67 PC: 12b1b | Get or set file attributes (See above)
2018-12-25T12:02:20.729072135Z 79 PC: 12b1f | Find next file (See above)
2018-12-25T12:02:20.747629955Z 67 PC: 12a8f | Get or set file attributes (See above)
2018-12-25T12:02:20.754188003Z 67 PC: 12a9b | Get or set file attributes (See above)
2018-12-25T12:02:20.767081188Z 67 PC: 12b1b | Get or set file attributes (See above)
2018-12-25T12:02:20.778357529Z 79 PC: 12b1f | Find next file (See above)
2018-12-25T12:02:20.781778321Z 67 PC: 12a8f | Get or set file attributes (See above)
2018-12-25T12:02:20.78884541Z 67 PC: 12a9b | Get or set file attributes (See above)
2018-12-25T12:02:20.800063472Z 61 PC: 12abe | Open file (See above)
2018-12-25T12:02:20.808067434Z 63 PC: 12ac9 | Read file or device (See above)
2018-12-25T12:02:20.817234193Z 66 PC: 12ade | Move file pointer (See above)
2018-12-25T12:02:20.819765723Z 64 PC: 12ae8 | Write file or device (See above)
2018-12-25T12:02:20.823264063Z 66 PC: 12af1 | Move file pointer (See above)
2018-12-25T12:02:20.826105451Z 64 PC: 12afb | Write file or device (See above)
2018-12-25T12:02:20.836193114Z 87 PC: 12b0a | Get or set file date and time (See above)
2018-12-25T12:02:20.838336605Z 62 PC: 12b0e | Close file (See above)
2018-12-25T12:02:20.847467261Z 67 PC: 12b1b | Get or set file attributes (See above)
2018-12-25T12:02:20.859415062Z 79 PC: 12b1f | Find next file (See above)
2018-12-25T12:02:20.862705721Z 67 PC: 12a8f | Get or set file attributes (See above)
2018-12-25T12:02:20.869475468Z 67 PC: 12a9b | Get or set file attributes (See above)
2018-12-25T12:02:20.881415332Z 67 PC: 12b1b | Get or set file attributes (See above)
2018-12-25T12:02:20.896002097Z 79 PC: 12b1f | Find next file (See above)
2018-12-25T12:02:20.899892067Z 67 PC: 12a8f | Get or set file attributes (See above)
2018-12-25T12:02:20.908110685Z 67 PC: 12a9b | Get or set file attributes (See above)
2018-12-25T12:02:20.916573648Z 61 PC: 12abe | Open file (See above)
2018-12-25T12:02:20.921558349Z 63 PC: 12ac9 | Read file or device (See above)
2018-12-25T12:02:20.926686361Z 62 PC: 12b0e | Close file (See above)
2018-12-25T12:02:20.928477743Z 67 PC: 12b1b | Get or set file attributes (See above)
2018-12-25T12:02:20.935781348Z 79 PC: 12b1f | Find next file (See above)
2018-12-25T12:02:20.942422084Z 37 PC: 12b33 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-25T12:02:20.943969692Z 42 PC: 12b3b | Get date 0x12b3b: cmp dx, 0xc18
0x12b3f: jne 0x12b4c
0x12b41: mov ah, 9
0x12b43: mov dx, 0xfd8a
0x12b46: int 0x21
0x12b48: xor ax, ax
0x12b4a: int 0x16
0x12b4c: mov ah, 0x1a
0x12b4e: mov dx, 0x80
0x12b51: int 0x21
0x12b53: mov si, 0x221
0x12b56: mov di, 0xfde8
0x12b59: mov cx, 0x20
0x12b5c: cld
0x12b5d: push di
0x12b5e: rep movsb byte ptr es:[di], byte ptr [si]
0x12b60: ret
0x12b61: mov si, word ptr cs:[0x248]
0x12b66: add si, 0x100
0x12b6a: mov di, 0x100
2018-12-25T12:02:20.946138014Z 26 PC: 12b53 | Set disk transfer address
2018-12-25T12:02:20.948913319Z 9 PC: 12e26 | Display string (String= 'BCDEF- This is a 1000 byte COM test, 1994 ')

{"DateBased":true,"Day":24,"Month":12,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":7668,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:02:20.558334733Z 53 PC: 12a4d | Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-25T12:02:20.560716966Z 37 PC: 12a5f | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-25T12:02:20.562022062Z 26 PC: 12a7b | Set disk transfer address
2018-12-25T12:02:20.563105928Z 78 PC: 12a82 | Find first file
2018-12-25T12:02:20.569556757Z 67 PC: 12a8f | Get or set file attributes
2018-12-25T12:02:20.576376442Z 67 PC: 12a9b | Get or set file attributes
2018-12-25T12:02:20.599186645Z 61 PC: 12abe | Open file (Filename = '')
2018-12-25T12:02:20.610799055Z 63 PC: 12ac9 | Read file or device (Read 399 bytes on handle 5)
2018-12-25T12:02:20.618287076Z 66 PC: 12ade | Move file pointer
2018-12-25T12:02:20.61997625Z 64 PC: 12ae8 | Write file or device (Write 399 bytes on handle 5)
2018-12-25T12:02:20.623238527Z 66 PC: 12af1 | Move file pointer
2018-12-25T12:02:20.6253827Z 64 PC: 12afb | Write file or device (Write 399 bytes on handle 5)
2018-12-25T12:02:20.635809687Z 87 PC: 12b0a | Get or set file date and time
2018-12-25T12:02:20.638508927Z 62 PC: 12b0e | Close file
2018-12-25T12:02:20.648945992Z 67 PC: 12b1b | Get or set file attributes
2018-12-25T12:02:20.660030758Z 79 PC: 12b1f | Find next file
2018-12-25T12:02:20.663290603Z 67 PC: 12a8f | Get or set file attributes (See above)
2018-12-25T12:02:20.670138414Z 67 PC: 12a9b | Get or set file attributes (See above)
2018-12-25T12:02:20.682266758Z 67 PC: 12b1b | Get or set file attributes (See above)
2018-12-25T12:02:20.693624962Z 79 PC: 12b1f | Find next file (See above)
2018-12-25T12:02:20.696644068Z 67 PC: 12a8f | Get or set file attributes (See above)
2018-12-25T12:02:20.704250834Z 67 PC: 12a9b | Get or set file attributes (See above)
2018-12-25T12:02:20.717391466Z 67 PC: 12b1b | Get or set file attributes (See above)
2018-12-25T12:02:20.730296632Z 79 PC: 12b1f | Find next file (See above)
2018-12-25T12:02:20.735009934Z 67 PC: 12a8f | Get or set file attributes (See above)
2018-12-25T12:02:20.743048013Z 67 PC: 12a9b | Get or set file attributes (See above)
2018-12-25T12:02:20.754551183Z 67 PC: 12b1b | Get or set file attributes (See above)
2018-12-25T12:02:20.767223671Z 79 PC: 12b1f | Find next file (See above)
2018-12-25T12:02:20.770715965Z 67 PC: 12a8f | Get or set file attributes (See above)
2018-12-25T12:02:20.777587572Z 67 PC: 12a9b | Get or set file attributes (See above)
2018-12-25T12:02:20.78964308Z 67 PC: 12b1b | Get or set file attributes (See above)
2018-12-25T12:02:20.803003343Z 79 PC: 12b1f | Find next file (See above)
2018-12-25T12:02:20.806119002Z 67 PC: 12a8f | Get or set file attributes (See above)
2018-12-25T12:02:20.813195546Z 67 PC: 12a9b | Get or set file attributes (See above)
2018-12-25T12:02:20.825519295Z 61 PC: 12abe | Open file (See above)
2018-12-25T12:02:20.833486603Z 63 PC: 12ac9 | Read file or device (See above)
2018-12-25T12:02:20.841125067Z 66 PC: 12ade | Move file pointer (See above)
2018-12-25T12:02:20.844107787Z 64 PC: 12ae8 | Write file or device (See above)
2018-12-25T12:02:20.848119718Z 66 PC: 12af1 | Move file pointer (See above)
2018-12-25T12:02:20.850198545Z 64 PC: 12afb | Write file or device (See above)
2018-12-25T12:02:20.860485574Z 87 PC: 12b0a | Get or set file date and time (See above)
2018-12-25T12:02:20.862939228Z 62 PC: 12b0e | Close file (See above)
2018-12-25T12:02:20.872316645Z 67 PC: 12b1b | Get or set file attributes (See above)
2018-12-25T12:02:20.883937012Z 79 PC: 12b1f | Find next file (See above)
2018-12-25T12:02:20.889043309Z 67 PC: 12a8f | Get or set file attributes (See above)
2018-12-25T12:02:20.895784472Z 67 PC: 12a9b | Get or set file attributes (See above)
2018-12-25T12:02:20.907118955Z 67 PC: 12b1b | Get or set file attributes (See above)
2018-12-25T12:02:20.919588776Z 79 PC: 12b1f | Find next file (See above)
2018-12-25T12:02:20.922955913Z 67 PC: 12a8f | Get or set file attributes (See above)
2018-12-25T12:02:20.935463105Z 67 PC: 12a9b | Get or set file attributes (See above)
2018-12-25T12:02:20.954795652Z 61 PC: 12abe | Open file (See above)
2018-12-25T12:02:20.963047226Z 63 PC: 12ac9 | Read file or device (See above)
2018-12-25T12:02:20.970902744Z 62 PC: 12b0e | Close file (See above)
2018-12-25T12:02:20.974230182Z 67 PC: 12b1b | Get or set file attributes (See above)
2018-12-25T12:02:20.986966019Z 79 PC: 12b1f | Find next file (See above)
2018-12-25T12:02:20.990555335Z 37 PC: 12b33 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-25T12:02:20.99319798Z 42 PC: 12b3b | Get date 0x12b3b: cmp dx, 0xc18
0x12b3f: jne 0x12b4c
0x12b41: mov ah, 9
0x12b43: mov dx, 0xfd8a
0x12b46: int 0x21
0x12b48: xor ax, ax
0x12b4a: int 0x16
0x12b4c: mov ah, 0x1a
0x12b4e: mov dx, 0x80
0x12b51: int 0x21
0x12b53: mov si, 0x221
0x12b56: mov di, 0xfde8
0x12b59: mov cx, 0x20
0x12b5c: cld
0x12b5d: push di
0x12b5e: rep movsb byte ptr es:[di], byte ptr [si]
0x12b60: ret
0x12b61: mov si, word ptr cs:[0x248]
0x12b66: add si, 0x100
0x12b6a: mov di, 0x100
2018-12-25T12:02:20.996933324Z 9 PC: 12b48 | Display string (String= 'Wesolych Swiat i Szczesliwego Nowego Roku zyczy STERYD. ')