Sample viewer

vx.netlux.org/Virus.DOS.Morgot.948

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:44:16.798355394Z	243	PC: 12aa6 \| UNKNOWN!
2018-12-17T22:44:16.799735466Z	128	PC: 12b4e \| UNKNOWN!
2018-12-17T22:44:16.803682557Z	77	PC: 11fe0 \| Get program return code
2018-12-17T22:44:16.805033907Z	72	PC: 12174 \| Allocate memory
2018-12-17T22:44:16.807001234Z	72	PC: 1218d \| Allocate memory
2018-12-17T22:44:16.811636626Z	37	PC: 123c4 \| Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T22:44:16.813162753Z	37	PC: 123cb \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:44:16.814717629Z	37	PC: 123d2 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:44:16.816946121Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:16.818794567Z	62	PC: 122ab \| Close file
2018-12-17T22:44:16.820895023Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:16.824130718Z	62	PC: 122ab \| Close file
2018-12-17T22:44:16.826298451Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:16.828422403Z	62	PC: 122ab \| Close file
2018-12-17T22:44:16.831111939Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:16.833151281Z	62	PC: 122ab \| Close file
2018-12-17T22:44:16.835138409Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:16.837247572Z	62	PC: 122ab \| Close file
2018-12-17T22:44:16.839251842Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:16.841108538Z	62	PC: 122ab \| Close file
2018-12-17T22:44:16.850005464Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:16.851802652Z	62	PC: 122ab \| Close file
2018-12-17T22:44:16.853672204Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:16.855493849Z	62	PC: 122ab \| Close file
2018-12-17T22:44:16.858227731Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:16.860106015Z	62	PC: 122ab \| Close file
2018-12-17T22:44:16.861843043Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:16.86414775Z	62	PC: 122ab \| Close file
2018-12-17T22:44:16.866154036Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:16.868033962Z	62	PC: 122ab \| Close file
2018-12-17T22:44:16.870952109Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:16.872791329Z	62	PC: 122ab \| Close file
2018-12-17T22:44:16.874672789Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:16.877454146Z	62	PC: 122ab \| Close file
2018-12-17T22:44:16.879266152Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:16.881058988Z	62	PC: 122ab \| Close file
2018-12-17T22:44:16.883060198Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:16.884869145Z	62	PC: 122ab \| Close file
2018-12-17T22:44:16.887995397Z	99	PC: 999d7 \| Get DBCS lead byte table pointer
2018-12-17T22:44:16.889414307Z	56	PC: 941f9 \| Get or set country info
2018-12-17T22:44:16.891457957Z	64	PC: 99c48 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T22:44:16.897109507Z	25	PC: 94262 \| Get default drive
2018-12-17T22:44:16.899342804Z	71	PC: 964dd \| Get current directory
2018-12-17T22:44:16.904556726Z	64	PC: 99c48 \| Write file or device (Write 3 bytes on handle 1)
2018-12-17T22:44:16.908304486Z	2	PC: 964b2 \| Character output (Char = '3e')
2018-12-17T22:44:16.91168031Z	93	PC: 94320 \| File sharing functions
2018-12-17T22:44:16.914252974Z	93	PC: 94327 \| File sharing functions
2018-12-17T22:44:16.916415143Z	10	PC: 94339 \| Buffered keyboard input
2018-12-17T22:44:31.797704236Z	0	PC: 0 \| Program terminate
2018-12-17T22:44:33.152870067Z	0	PC: 0 \| Program terminate
2018-12-17T22:44:33.255928706Z	64	PC: 99c48 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T22:44:33.261056198Z	41	PC: 943ae \| Parse filename
2018-12-17T22:44:33.262612246Z	41	PC: 9442f \| Parse filename
2018-12-17T22:44:33.263866506Z	41	PC: 9444c \| Parse filename
2018-12-17T22:44:33.27811837Z	26	PC: 978f7 \| Set disk transfer address
2018-12-17T22:44:33.282393139Z	71	PC: 97af3 \| Get current directory
2018-12-17T22:44:33.305916495Z	78	PC: 97afe \| Find first file
2018-12-17T22:44:33.318179578Z	71	PC: 9796c \| Get current directory
2018-12-17T22:44:33.322180521Z	73	PC: 97009 \| Release memory
2018-12-17T22:44:33.324013366Z	67	PC: 9f224 \| Get or set file attributes
2018-12-17T22:44:33.33954153Z	67	PC: 9f224 \| Get or set file attributes
2018-12-17T22:44:33.363061794Z	61	PC: 9f224 \| Open file (Filename = 'A:\PRINT.COM')
2018-12-17T22:44:33.376858404Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:33.378570925Z	66	PC: 9f224 \| Move file pointer
2018-12-17T22:44:33.381802239Z	63	PC: 9f224 \| Read file or device (Read 28 bytes on handle 5)
2018-12-17T22:44:33.389627428Z	62	PC: 9f224 \| Close file
2018-12-17T22:44:33.392293301Z	67	PC: 9f224 \| Get or set file attributes
2018-12-17T22:44:33.409421388Z	75	PC: 11821 \| Execute program
2018-12-17T22:44:33.421337959Z	9	PC: 12a47 \| Display string (String= 'Hello, World! ')
2018-12-17T22:44:33.426323795Z	76	PC: 12a4b \| Terminate with return code (Return code = '36')
2018-12-17T22:44:33.431023759Z	77	PC: 11fe0 \| Get program return code
2018-12-17T22:44:33.43278023Z	72	PC: 12174 \| Allocate memory
2018-12-17T22:44:33.435959785Z	72	PC: 1218d \| Allocate memory
2018-12-17T22:44:33.438981231Z	37	PC: 123c4 \| Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T22:44:33.440823056Z	37	PC: 123cb \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:44:33.443311566Z	37	PC: 123d2 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:44:33.445389155Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:33.447796688Z	62	PC: 122ab \| Close file
2018-12-17T22:44:33.450026248Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:33.452236375Z	62	PC: 122ab \| Close file
2018-12-17T22:44:33.454850317Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:33.4570657Z	62	PC: 122ab \| Close file
2018-12-17T22:44:33.459277802Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:33.46208672Z	62	PC: 122ab \| Close file
2018-12-17T22:44:33.464164646Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:33.466206233Z	62	PC: 122ab \| Close file
2018-12-17T22:44:33.468794243Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:33.47081287Z	62	PC: 122ab \| Close file
2018-12-17T22:44:33.473585879Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:33.476548143Z	62	PC: 122ab \| Close file
2018-12-17T22:44:33.478663664Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:33.480736104Z	62	PC: 122ab \| Close file
2018-12-17T22:44:33.48342715Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:33.485564989Z	62	PC: 122ab \| Close file
2018-12-17T22:44:33.487638298Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:33.490436617Z	62	PC: 122ab \| Close file
2018-12-17T22:44:33.492568308Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:33.494654603Z	62	PC: 122ab \| Close file
2018-12-17T22:44:33.498022494Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:33.500342529Z	62	PC: 122ab \| Close file
2018-12-17T22:44:33.50264821Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:33.504942612Z	62	PC: 122ab \| Close file
2018-12-17T22:44:33.508241056Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:33.510499122Z	62	PC: 122ab \| Close file
2018-12-17T22:44:33.512773113Z	87	PC: 9f224 \| Get or set file date and time
2018-12-17T22:44:33.515677464Z	62	PC: 122ab \| Close file
2018-12-17T22:44:33.519341552Z	99	PC: 999d7 \| Get DBCS lead byte table pointer
2018-12-17T22:44:33.521277759Z	56	PC: 941f9 \| Get or set country info
2018-12-17T22:44:33.524626068Z	64	PC: 99c48 \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T22:44:33.531460292Z	25	PC: 94262 \| Get default drive
2018-12-17T22:44:33.533377602Z	71	PC: 964dd \| Get current directory
2018-12-17T22:44:33.539068895Z	64	PC: 99c48 \| Write file or device (Write 3 bytes on handle 1)
2018-12-17T22:44:33.542783803Z	2	PC: 964b2 \| Character output (Char = '3e')
2018-12-17T22:44:33.54529883Z	93	PC: 94320 \| File sharing functions
2018-12-17T22:44:33.547967553Z	93	PC: 94327 \| File sharing functions
2018-12-17T22:44:33.550127712Z	10	PC: 94339 \| Buffered keyboard input