Sample viewer

vx.netlux.org/Virus.DOS.IVP.351.a

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:44:29.727422949Z	26	PC: 12bcc \| Set disk transfer address
2018-12-17T22:44:29.729128903Z	53	PC: 12ac7 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:44:29.731804568Z	37	PC: 12ad9 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:44:29.733528335Z	71	PC: 12ae5 \| Get current directory
2018-12-17T22:44:29.73682673Z	78	PC: 12b20 \| Find first file
2018-12-17T22:44:29.744415663Z	61	PC: 12bd5 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:44:29.752418424Z	63	PC: 12b3b \| Read file or device (Read 26 bytes on handle 5)
2018-12-17T22:44:29.759753631Z	62	PC: 12b3f \| Close file
2018-12-17T22:44:29.762955334Z	67	PC: 12be0 \| Get or set file attributes
2018-12-17T22:44:29.786898813Z	61	PC: 12bd5 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:44:29.795193963Z	64	PC: 12b8f \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:44:29.800481875Z	66	PC: 12bc7 \| Move file pointer
2018-12-17T22:44:29.80310431Z	64	PC: 12ba1 \| Write file or device (Write 351 bytes on handle 5)
2018-12-17T22:44:29.823753362Z	87	PC: 12bb0 \| Get or set file date and time
2018-12-17T22:44:29.825713834Z	62	PC: 12bb4 \| Close file
2018-12-17T22:44:29.836247328Z	67	PC: 12be0 \| Get or set file attributes
2018-12-17T22:44:29.847650224Z	79	PC: 12b20 \| Find next file
2018-12-17T22:44:29.850461484Z	61	PC: 12bd5 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:44:29.859727747Z	63	PC: 12b3b \| Read file or device (Read 26 bytes on handle 5)
2018-12-17T22:44:29.866771397Z	62	PC: 12b3f \| Close file
2018-12-17T22:44:29.86918003Z	67	PC: 12be0 \| Get or set file attributes
2018-12-17T22:44:29.88191589Z	61	PC: 12bd5 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:44:29.889497179Z	64	PC: 12b8f \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:44:29.892819288Z	66	PC: 12bc7 \| Move file pointer
2018-12-17T22:44:29.896389654Z	64	PC: 12ba1 \| Write file or device (Write 351 bytes on handle 5)
2018-12-17T22:44:29.899670827Z	87	PC: 12bb0 \| Get or set file date and time
2018-12-17T22:44:29.901438667Z	62	PC: 12bb4 \| Close file
2018-12-17T22:44:29.909474089Z	67	PC: 12be0 \| Get or set file attributes
2018-12-17T22:44:29.921143205Z	79	PC: 12b20 \| Find next file
2018-12-17T22:44:29.924297469Z	61	PC: 12bd5 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:44:29.931624801Z	63	PC: 12b3b \| Read file or device (Read 26 bytes on handle 5)
2018-12-17T22:44:29.939769078Z	62	PC: 12b3f \| Close file
2018-12-17T22:44:29.941807105Z	67	PC: 12be0 \| Get or set file attributes
2018-12-17T22:44:29.953287357Z	61	PC: 12bd5 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:44:29.961631379Z	64	PC: 12b8f \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:44:29.965329003Z	66	PC: 12bc7 \| Move file pointer
2018-12-17T22:44:29.967219804Z	64	PC: 12ba1 \| Write file or device (Write 351 bytes on handle 5)
2018-12-17T22:44:29.970896981Z	87	PC: 12bb0 \| Get or set file date and time
2018-12-17T22:44:29.97289868Z	62	PC: 12bb4 \| Close file
2018-12-17T22:44:29.980993393Z	67	PC: 12be0 \| Get or set file attributes
2018-12-17T22:44:29.997270905Z	79	PC: 12b20 \| Find next file
2018-12-17T22:44:30.000796146Z	61	PC: 12bd5 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:44:30.008514211Z	63	PC: 12b3b \| Read file or device (Read 26 bytes on handle 5)
2018-12-17T22:44:30.017026559Z	62	PC: 12b3f \| Close file
2018-12-17T22:44:30.019814515Z	67	PC: 12be0 \| Get or set file attributes
2018-12-17T22:44:30.031387782Z	61	PC: 12bd5 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:44:30.039131816Z	64	PC: 12b8f \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:44:30.043569451Z	66	PC: 12bc7 \| Move file pointer
2018-12-17T22:44:30.045492613Z	64	PC: 12ba1 \| Write file or device (Write 351 bytes on handle 5)
2018-12-17T22:44:30.048727488Z	87	PC: 12bb0 \| Get or set file date and time
2018-12-17T22:44:30.051548436Z	62	PC: 12bb4 \| Close file
2018-12-17T22:44:30.059897347Z	67	PC: 12be0 \| Get or set file attributes
2018-12-17T22:44:30.070557518Z	79	PC: 12b20 \| Find next file
2018-12-17T22:44:30.074486988Z	61	PC: 12bd5 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:44:30.082292268Z	63	PC: 12b3b \| Read file or device (Read 26 bytes on handle 5)
2018-12-17T22:44:30.089470961Z	62	PC: 12b3f \| Close file
2018-12-17T22:44:30.092399481Z	67	PC: 12be0 \| Get or set file attributes
2018-12-17T22:44:30.097182905Z	61	PC: 12bd5 \| Open file (Filename = 'PRINTA~1.COM�')
2018-12-17T22:44:30.102561557Z	64	PC: 12b8f \| Write file or device (Write 3 bytes on handle 2)
2018-12-17T22:44:30.106116463Z	66	PC: 12bc7 \| Move file pointer
2018-12-17T22:44:30.108217159Z	64	PC: 12ba1 \| Write file or device (Write 351 bytes on handle 2)
2018-12-17T22:44:30.115621215Z	87	PC: 12bb0 \| Get or set file date and time
2018-12-17T22:44:30.117914232Z	62	PC: 12bb4 \| Close file
2018-12-17T22:44:30.120546205Z	67	PC: 12be0 \| Get or set file attributes
2018-12-17T22:44:30.125854284Z	79	PC: 12b20 \| Find next file
2018-12-17T22:44:30.130315423Z	61	PC: 12bd5 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:44:30.138609Z	63	PC: 12b3b \| Read file or device (Read 26 bytes on handle 2)
2018-12-17T22:44:30.146513796Z	62	PC: 12b3f \| Close file
2018-12-17T22:44:30.148870343Z	67	PC: 12be0 \| Get or set file attributes
2018-12-17T22:44:30.160617966Z	61	PC: 12bd5 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:44:30.168426922Z	64	PC: 12b8f \| Write file or device (Write 3 bytes on handle 2)
2018-12-17T22:44:30.17186542Z	66	PC: 12bc7 \| Move file pointer
2018-12-17T22:44:30.174397807Z	64	PC: 12ba1 \| Write file or device (Write 351 bytes on handle 2)
2018-12-17T22:44:30.183704777Z	87	PC: 12bb0 \| Get or set file date and time
2018-12-17T22:44:30.185713219Z	62	PC: 12bb4 \| Close file
2018-12-17T22:44:30.195608504Z	67	PC: 12be0 \| Get or set file attributes
2018-12-17T22:44:30.207308097Z	79	PC: 12b20 \| Find next file
2018-12-17T22:44:30.211447011Z	61	PC: 12bd5 \| Open file (Filename = 'PAH.COM')
2018-12-17T22:44:30.220062091Z	63	PC: 12b3b \| Read file or device (Read 26 bytes on handle 2)
2018-12-17T22:44:30.227849077Z	62	PC: 12b3f \| Close file
2018-12-17T22:44:30.230222975Z	67	PC: 12be0 \| Get or set file attributes
2018-12-17T22:44:30.242566248Z	61	PC: 12bd5 \| Open file (Filename = 'PAH.COM')
2018-12-17T22:44:30.250266069Z	64	PC: 12b8f \| Write file or device (Write 3 bytes on handle 2)
2018-12-17T22:44:30.253648952Z	66	PC: 12bc7 \| Move file pointer
2018-12-17T22:44:30.255434526Z	64	PC: 12ba1 \| Write file or device (Write 351 bytes on handle 2)
2018-12-17T22:44:30.259396998Z	87	PC: 12bb0 \| Get or set file date and time
2018-12-17T22:44:30.261356248Z	62	PC: 12bb4 \| Close file
2018-12-17T22:44:30.269392371Z	67	PC: 12be0 \| Get or set file attributes
2018-12-17T22:44:30.280908701Z	79	PC: 12b20 \| Find next file
2018-12-17T22:44:30.283971693Z	61	PC: 12bd5 \| Open file (Filename = 'TEST.COM')
2018-12-17T22:44:30.291215509Z	63	PC: 12b3b \| Read file or device (Read 26 bytes on handle 2)
2018-12-17T22:44:30.295144938Z	62	PC: 12b3f \| Close file
2018-12-17T22:44:30.297643841Z	79	PC: 12b20 \| Find next file
2018-12-17T22:44:30.300562273Z	59	PC: 12af4 \| Change current directory
2018-12-17T22:44:30.306279451Z	9	PC: 12afe \| Display string (String= 'Test Tim [IVP] ')
2018-12-17T22:44:30.312815938Z	37	PC: 12b08 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:44:30.314406825Z	59	PC: 12b12 \| Change current directory
2018-12-17T22:44:30.316824636Z	26	PC: 12bcc \| Set disk transfer address
2018-12-17T22:44:30.31856784Z	9	PC: 12aa2 \| Display string (String= 'ABCDE - This is a 100 byte COM test, 1994 ')