Sample viewer

vx.netlux.org/Virus.DOS.VCC.321

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:44:46.712313644Z	26	PC: 12a6c \| Set disk transfer address
2018-12-17T22:44:46.714198885Z	78	PC: 12a80 \| Find first file
2018-12-17T22:44:46.725076455Z	61	PC: 12b15 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:44:46.732340618Z	63	PC: 12b24 \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:44:46.739349071Z	66	PC: 12b33 \| Move file pointer
2018-12-17T22:44:46.741759007Z	66	PC: 12b42 \| Move file pointer
2018-12-17T22:44:46.74337366Z	64	PC: 12b4e \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:44:46.746200649Z	66	PC: 12b5a \| Move file pointer
2018-12-17T22:44:46.748313127Z	44	PC: 12b5e \| Get time 0x12b5e: mov byte ptr [bp + 0x141], dl 0x12b62: call 0x12b78 0x12b65: mov ah, 0x40 0x12b67: mov cx, 0x141 0x12b6a: lea dx, word ptr [bp + 6] 0x12b6e: int 0x21 0x12b70: call 0x12b78 0x12b73: mov ah, 0x3e 0x12b75: int 0x21 0x12b77: ret 0x12b78: lea si, word ptr [bp + 0x19] 0x12b7c: mov cx, 0x109 0x12b7f: xor byte ptr [si], 0 0x12b82: inc si 0x12b83: dec cx 0x12b84: jne 0x12b7f 0x12b86: ret 0x12b87: add word ptr [bx], di 0x12b89: aas 0x12b8a: aas
2018-12-17T22:44:46.750947645Z	64	PC: 12b70 \| Write file or device (Write 321 bytes on handle 5)
2018-12-17T22:44:46.771008262Z	62	PC: 12b77 \| Close file
2018-12-17T22:44:46.781658976Z	79	PC: 12a80 \| Find next file
2018-12-17T22:44:46.78478133Z	61	PC: 12b15 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:44:46.791861267Z	63	PC: 12b24 \| Read file or device (Read 4 bytes on handle 5)
2018-12-17T22:44:46.799980766Z	66	PC: 12b33 \| Move file pointer
2018-12-17T22:44:46.801594567Z	66	PC: 12b42 \| Move file pointer
2018-12-17T22:44:46.803090347Z	64	PC: 12b4e \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T22:44:46.806459204Z	66	PC: 12b5a \| Move file pointer
2018-12-17T22:44:46.808297657Z	44	PC: 12b5e \| Get time 0x12b5e: mov byte ptr [bp + 0x141], dl 0x12b62: call 0x12b78 0x12b65: mov ah, 0x40 0x12b67: mov cx, 0x141 0x12b6a: lea dx, word ptr [bp + 6] 0x12b6e: int 0x21 0x12b70: call 0x12b78 0x12b73: mov ah, 0x3e 0x12b75: int 0x21 0x12b77: ret 0x12b78: lea si, word ptr [bp + 0x19] 0x12b7c: mov cx, 0x109 0x12b7f: xor byte ptr [si], 0x41 0x12b82: inc si 0x12b83: dec cx 0x12b84: jne 0x12b7f 0x12b86: ret 0x12b87: add word ptr [bx], di 0x12b89: aas 0x12b8a: aas
2018-12-17T22:44:46.811108777Z	64	PC: 12b70 \| Write file or device (Write 321 bytes on handle 5)
2018-12-17T22:44:46.814607518Z	62	PC: 12b77 \| Close file
2018-12-17T22:44:46.823501342Z	26	PC: 12a9a \| Set disk transfer address