Sample viewer

vx.netlux.org/Virus.DOS.Dre.725

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:44:47.006430144Z	26	PC: 12ae2 \| Set disk transfer address
2018-12-17T22:44:47.007607699Z	78	PC: 12aed \| Find first file
2018-12-17T22:44:47.014951345Z	67	PC: 12b33 \| Get or set file attributes
2018-12-17T22:44:47.031952143Z	61	PC: 12b50 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:44:47.039183463Z	66	PC: 12b63 \| Move file pointer
2018-12-17T22:44:47.041159777Z	63	PC: 12b70 \| Read file or device (Read 6 bytes on handle 5)
2018-12-17T22:44:47.048504603Z	66	PC: 12b97 \| Move file pointer
2018-12-17T22:44:47.050400696Z	64	PC: 12ba4 \| Write file or device (Write 6 bytes on handle 5)
2018-12-17T22:44:47.054429595Z	66	PC: 12bb1 \| Move file pointer
2018-12-17T22:44:47.056679725Z	64	PC: 12bc5 \| Write file or device (Write 725 bytes on handle 5)
2018-12-17T22:44:47.067095348Z	87	PC: 12bde \| Get or set file date and time
2018-12-17T22:44:47.069325244Z	62	PC: 12be6 \| Close file
2018-12-17T22:44:47.080633565Z	67	PC: 12bff \| Get or set file attributes
2018-12-17T22:44:47.092211376Z	79	PC: 12af6 \| Find next file
2018-12-17T22:44:47.09619903Z	79	PC: 12af6 \| Find next file
2018-12-17T22:44:47.100242662Z	67	PC: 12b33 \| Get or set file attributes
2018-12-17T22:44:47.11145364Z	61	PC: 12b50 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:44:47.119233548Z	66	PC: 12b63 \| Move file pointer
2018-12-17T22:44:47.121780687Z	63	PC: 12b70 \| Read file or device (Read 6 bytes on handle 5)
2018-12-17T22:44:47.129900066Z	66	PC: 12b97 \| Move file pointer
2018-12-17T22:44:47.131905186Z	64	PC: 12ba4 \| Write file or device (Write 6 bytes on handle 5)
2018-12-17T22:44:47.136362173Z	66	PC: 12bb1 \| Move file pointer
2018-12-17T22:44:47.139110182Z	64	PC: 12bc5 \| Write file or device (Write 725 bytes on handle 5)
2018-12-17T22:44:47.150701093Z	87	PC: 12bde \| Get or set file date and time
2018-12-17T22:44:47.152768075Z	62	PC: 12be6 \| Close file
2018-12-17T22:44:47.162497673Z	67	PC: 12bff \| Get or set file attributes
2018-12-17T22:44:47.174327564Z	79	PC: 12af6 \| Find next file
2018-12-17T22:44:47.177653406Z	79	PC: 12af6 \| Find next file
2018-12-17T22:44:47.182199634Z	79	PC: 12af6 \| Find next file
2018-12-17T22:44:47.185424601Z	67	PC: 12b33 \| Get or set file attributes
2018-12-17T22:44:47.197049671Z	61	PC: 12b50 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:44:47.205801735Z	66	PC: 12b63 \| Move file pointer
2018-12-17T22:44:47.208624426Z	63	PC: 12b70 \| Read file or device (Read 6 bytes on handle 5)
2018-12-17T22:44:47.216156171Z	66	PC: 12b97 \| Move file pointer
2018-12-17T22:44:47.218977376Z	64	PC: 12ba4 \| Write file or device (Write 6 bytes on handle 5)
2018-12-17T22:44:47.222536544Z	66	PC: 12bb1 \| Move file pointer
2018-12-17T22:44:47.224482346Z	64	PC: 12bc5 \| Write file or device (Write 725 bytes on handle 5)
2018-12-17T22:44:47.234227935Z	87	PC: 12bde \| Get or set file date and time
2018-12-17T22:44:47.236247052Z	62	PC: 12be6 \| Close file
2018-12-17T22:44:47.244777594Z	67	PC: 12bff \| Get or set file attributes
2018-12-17T22:44:47.255738852Z	79	PC: 12af6 \| Find next file
2018-12-17T22:44:47.260590207Z	79	PC: 12af6 \| Find next file
2018-12-17T22:44:47.263713891Z	67	PC: 12b33 \| Get or set file attributes
2018-12-17T22:44:47.274621081Z	61	PC: 12b50 \| Open file (Filename = 'TEST.COM')
2018-12-17T22:44:47.282733534Z	66	PC: 12b63 \| Move file pointer
2018-12-17T22:44:47.284438308Z	63	PC: 12b70 \| Read file or device (Read 6 bytes on handle 5)
2018-12-17T22:44:47.287533844Z	87	PC: 12bde \| Get or set file date and time
2018-12-17T22:44:47.290020811Z	62	PC: 12be6 \| Close file
2018-12-17T22:44:47.297723958Z	67	PC: 12bff \| Get or set file attributes
2018-12-17T22:44:47.308617738Z	79	PC: 12af6 \| Find next file
2018-12-17T22:44:47.312418077Z	26	PC: 12c0e \| Set disk transfer address
2018-12-17T22:44:47.322448283Z	9	PC: 12a4c \| Display string (String= ' This file infected by King.581 ')