Sample viewer

vx.netlux.org/Virus.DOS.VCL.Punky.543

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:45:32.716143164Z	26	PC: 12a78 \| Set disk transfer address
2018-12-17T22:45:32.718005658Z	78	PC: 12a8f \| Find first file
2018-12-17T22:45:32.721734889Z	67	PC: 12ada \| Get or set file attributes
2018-12-17T22:45:32.778043826Z	61	PC: 12ae3 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:45:32.787100259Z	63	PC: 12af0 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:45:32.793720713Z	66	PC: 12b2f \| Move file pointer
2018-12-17T22:45:32.796019333Z	64	PC: 12b3a \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:45:32.798755465Z	66	PC: 12b43 \| Move file pointer
2018-12-17T22:45:32.801874092Z	64	PC: 12b75 \| Write file or device (Write 25 bytes on handle 5)
2018-12-17T22:45:32.804844949Z	64	PC: 12b80 \| Write file or device (Write 504 bytes on handle 5)
2018-12-17T22:45:32.822442418Z	64	PC: 12b8b \| Write file or device (Write 14 bytes on handle 5)
2018-12-17T22:45:32.826481229Z	87	PC: 12ba9 \| Get or set file date and time
2018-12-17T22:45:32.828500526Z	62	PC: 12bad \| Close file
2018-12-17T22:45:32.836270505Z	67	PC: 12bba \| Get or set file attributes
2018-12-17T22:45:32.842493751Z	79	PC: 12a8f \| Find next file
2018-12-17T22:45:32.845482394Z	87	PC: 12ba9 \| Get or set file date and time
2018-12-17T22:45:32.847701049Z	62	PC: 12bad \| Close file
2018-12-17T22:45:32.850182396Z	67	PC: 12bba \| Get or set file attributes
2018-12-17T22:45:32.855286242Z	79	PC: 12a8f \| Find next file
2018-12-17T22:45:32.858602362Z	87	PC: 12ba9 \| Get or set file date and time
2018-12-17T22:45:32.86071639Z	62	PC: 12bad \| Close file
2018-12-17T22:45:32.862855671Z	67	PC: 12bba \| Get or set file attributes
2018-12-17T22:45:32.868431661Z	79	PC: 12a8f \| Find next file
2018-12-17T22:45:32.871590033Z	87	PC: 12ba9 \| Get or set file date and time
2018-12-17T22:45:32.873775055Z	62	PC: 12bad \| Close file
2018-12-17T22:45:32.875193148Z	67	PC: 12bba \| Get or set file attributes
2018-12-17T22:45:32.879793362Z	79	PC: 12a8f \| Find next file
2018-12-17T22:45:32.883025256Z	87	PC: 12ba9 \| Get or set file date and time
2018-12-17T22:45:32.884494268Z	62	PC: 12bad \| Close file
2018-12-17T22:45:32.886144463Z	67	PC: 12bba \| Get or set file attributes
2018-12-17T22:45:32.891352811Z	79	PC: 12a8f \| Find next file
2018-12-17T22:45:32.8940624Z	67	PC: 12ada \| Get or set file attributes
2018-12-17T22:45:32.903952717Z	61	PC: 12ae3 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:45:32.911154298Z	63	PC: 12af0 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:45:32.917446363Z	66	PC: 12b2f \| Move file pointer
2018-12-17T22:45:32.918832948Z	64	PC: 12b3a \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:45:32.922543323Z	66	PC: 12b43 \| Move file pointer
2018-12-17T22:45:32.924772204Z	64	PC: 12b75 \| Write file or device (Write 25 bytes on handle 5)
2018-12-17T22:45:32.933310217Z	64	PC: 12b80 \| Write file or device (Write 504 bytes on handle 5)
2018-12-17T22:45:32.942535568Z	64	PC: 12b8b \| Write file or device (Write 14 bytes on handle 5)
2018-12-17T22:45:32.945230403Z	87	PC: 12ba9 \| Get or set file date and time
2018-12-17T22:45:32.946684296Z	62	PC: 12bad \| Close file
2018-12-17T22:45:32.954564499Z	67	PC: 12bba \| Get or set file attributes
2018-12-17T22:45:32.959813126Z	79	PC: 12a8f \| Find next file
2018-12-17T22:45:32.9624078Z	87	PC: 12ba9 \| Get or set file date and time
2018-12-17T22:45:32.963902501Z	62	PC: 12bad \| Close file
2018-12-17T22:45:32.965969523Z	67	PC: 12bba \| Get or set file attributes
2018-12-17T22:45:32.970798524Z	79	PC: 12a8f \| Find next file
2018-12-17T22:45:32.97350843Z	67	PC: 12ada \| Get or set file attributes
2018-12-17T22:45:32.984024262Z	61	PC: 12ae3 \| Open file (Filename = 'TEST.COM')
2018-12-17T22:45:32.99524883Z	63	PC: 12af0 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:45:33.002108322Z	87	PC: 12ba9 \| Get or set file date and time
2018-12-17T22:45:33.004811956Z	62	PC: 12bad \| Close file
2018-12-17T22:45:33.012714129Z	67	PC: 12bba \| Get or set file attributes
2018-12-17T22:45:33.017746086Z	79	PC: 12a8f \| Find next file
2018-12-17T22:45:33.021088753Z	62	PC: 12bc3 \| Close file
2018-12-17T22:45:33.022892428Z	42	PC: 12bc7 \| Get date 0x12bc7: cmp dl, 1 0x12bca: jne 0x12bd4 0x12bcc: mov ah, 9 0x12bce: lea dx, word ptr [bp + 0x2a0] 0x12bd2: int 0x21 0x12bd4: mov ah, 0x1a 0x12bd6: mov dx, 0x80 0x12bd9: int 0x21 0x12bdb: mov di, 0x100 0x12bde: jmp di 0x12be0: inc si 0x12be1: jne 0x12c51 0x12be3: imul di, word ptr [bx + di + 0x20], 0x50 0x12be7: jne 0x12c57 0x12be9: imul di, word ptr [bx + di + 0x20], 0x77 0x12bed: jb 0x12c58 0x12bef: je 0x12c65 0x12bf1: outsb dx, byte ptr gs:[si] 0x12bf3: and byte ptr [bp + si + 0x79], ah 0x12bf6: and byte ptr [bp + di + 0x70], dl
2018-12-17T22:45:33.025325553Z	26	PC: 12bdb \| Set disk transfer address

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":8582,"SideJobID":0}

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:21:34.32086141Z	26	PC: 12a78 \| Set disk transfer address
2018-12-25T12:21:34.322007382Z	78	PC: 12a8f \| Find first file
2018-12-25T12:21:34.328354998Z	67	PC: 12ada \| Get or set file attributes
2018-12-25T12:21:34.344833167Z	61	PC: 12ae3 \| Open file (Filename = 'SLEEP.COM')
2018-12-25T12:21:34.3511837Z	63	PC: 12af0 \| Read file or device (Read 3 bytes on handle 5)
2018-12-25T12:21:34.357540924Z	66	PC: 12b2f \| Move file pointer
2018-12-25T12:21:34.358813291Z	64	PC: 12b3a \| Write file or device (Write 3 bytes on handle 5)
2018-12-25T12:21:34.361331153Z	66	PC: 12b43 \| Move file pointer
2018-12-25T12:21:34.364566531Z	64	PC: 12b75 \| Write file or device (Write 25 bytes on handle 5)
2018-12-25T12:21:34.367245268Z	64	PC: 12b80 \| Write file or device (Write 504 bytes on handle 5)
2018-12-25T12:21:34.376369078Z	64	PC: 12b8b \| Write file or device (Write 14 bytes on handle 5)
2018-12-25T12:21:34.38716876Z	87	PC: 12ba9 \| Get or set file date and time
2018-12-25T12:21:34.388886175Z	62	PC: 12bad \| Close file
2018-12-25T12:21:34.396619879Z	67	PC: 12bba \| Get or set file attributes
2018-12-25T12:21:34.40319158Z	79	PC: 12a8f \| Find next file (See above)
2018-12-25T12:21:34.406261403Z	87	PC: 12ba9 \| Get or set file date and time (See above)
2018-12-25T12:21:34.408105716Z	62	PC: 12bad \| Close file (See above)
2018-12-25T12:21:34.410210355Z	67	PC: 12bba \| Get or set file attributes (See above)
2018-12-25T12:21:34.415468081Z	79	PC: 12a8f \| Find next file (See above)
2018-12-25T12:21:34.418272052Z	87	PC: 12ba9 \| Get or set file date and time (See above)
2018-12-25T12:21:34.420344663Z	62	PC: 12bad \| Close file (See above)
2018-12-25T12:21:34.422136139Z	67	PC: 12bba \| Get or set file attributes (See above)
2018-12-25T12:21:34.425745749Z	79	PC: 12a8f \| Find next file (See above)
2018-12-25T12:21:34.427585266Z	87	PC: 12ba9 \| Get or set file date and time (See above)
2018-12-25T12:21:34.429405768Z	62	PC: 12bad \| Close file (See above)
2018-12-25T12:21:34.430946771Z	67	PC: 12bba \| Get or set file attributes (See above)
2018-12-25T12:21:34.435455369Z	79	PC: 12a8f \| Find next file (See above)
2018-12-25T12:21:34.438620598Z	87	PC: 12ba9 \| Get or set file date and time (See above)
2018-12-25T12:21:34.440590112Z	62	PC: 12bad \| Close file (See above)
2018-12-25T12:21:34.442515938Z	67	PC: 12bba \| Get or set file attributes (See above)
2018-12-25T12:21:34.449086885Z	79	PC: 12a8f \| Find next file (See above)
2018-12-25T12:21:34.451662207Z	67	PC: 12ada \| Get or set file attributes (See above)
2018-12-25T12:21:34.461237634Z	61	PC: 12ae3 \| Open file (See above)
2018-12-25T12:21:34.472021596Z	63	PC: 12af0 \| Read file or device (See above)
2018-12-25T12:21:34.4783989Z	66	PC: 12b2f \| Move file pointer (See above)
2018-12-25T12:21:34.479746296Z	64	PC: 12b3a \| Write file or device (See above)
2018-12-25T12:21:34.491046182Z	66	PC: 12b43 \| Move file pointer (See above)
2018-12-25T12:21:34.493151059Z	64	PC: 12b75 \| Write file or device (See above)
2018-12-25T12:21:34.501078247Z	64	PC: 12b80 \| Write file or device (See above)
2018-12-25T12:21:34.510221409Z	64	PC: 12b8b \| Write file or device (See above)
2018-12-25T12:21:34.512931937Z	87	PC: 12ba9 \| Get or set file date and time (See above)
2018-12-25T12:21:34.514365528Z	62	PC: 12bad \| Close file (See above)
2018-12-25T12:21:34.522342397Z	67	PC: 12bba \| Get or set file attributes (See above)
2018-12-25T12:21:34.527590569Z	79	PC: 12a8f \| Find next file (See above)
2018-12-25T12:21:34.530378652Z	87	PC: 12ba9 \| Get or set file date and time (See above)
2018-12-25T12:21:34.532130669Z	62	PC: 12bad \| Close file (See above)
2018-12-25T12:21:34.533898242Z	67	PC: 12bba \| Get or set file attributes (See above)
2018-12-25T12:21:34.538511536Z	79	PC: 12a8f \| Find next file (See above)
2018-12-25T12:21:34.541186528Z	67	PC: 12ada \| Get or set file attributes (See above)
2018-12-25T12:21:34.550876598Z	61	PC: 12ae3 \| Open file (See above)
2018-12-25T12:21:34.561953885Z	63	PC: 12af0 \| Read file or device (See above)
2018-12-25T12:21:34.568650025Z	87	PC: 12ba9 \| Get or set file date and time (See above)
2018-12-25T12:21:34.570754521Z	62	PC: 12bad \| Close file (See above)
2018-12-25T12:21:34.577887234Z	67	PC: 12bba \| Get or set file attributes (See above)
2018-12-25T12:21:34.582606803Z	79	PC: 12a8f \| Find next file (See above)
2018-12-25T12:21:34.586044757Z	62	PC: 12bc3 \| Close file
2018-12-25T12:21:34.587523352Z	42	PC: 12bc7 \| Get date 0x12bc7: cmp dl, 1 0x12bca: jne 0x12bd4 0x12bcc: mov ah, 9 0x12bce: lea dx, word ptr [bp + 0x2a0] 0x12bd2: int 0x21 0x12bd4: mov ah, 0x1a 0x12bd6: mov dx, 0x80 0x12bd9: int 0x21 0x12bdb: mov di, 0x100 0x12bde: jmp di 0x12be0: inc si 0x12be1: jne 0x12c51 0x12be3: imul di, word ptr [bx + di + 0x20], 0x50 0x12be7: jne 0x12c57 0x12be9: imul di, word ptr [bx + di + 0x20], 0x77 0x12bed: jb 0x12c58 0x12bef: je 0x12c65 0x12bf1: outsb dx, byte ptr gs:[si] 0x12bf3: and byte ptr [bp + si + 0x79], ah 0x12bf6: and byte ptr [bp + di + 0x70], dl
2018-12-25T12:21:34.58961641Z	9	PC: 12bd4 \| Display string (String= 'Funky Punky written by Spooky. Austria 1996. ')
2018-12-25T12:21:34.59609675Z	26	PC: 12bdb \| Set disk transfer address

{"DateBased":true,"Day":2,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":8582,"SideJobID":0}

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:21:34.567833109Z	26	PC: 12a78 \| Set disk transfer address
2018-12-25T12:21:34.569672098Z	78	PC: 12a8f \| Find first file
2018-12-25T12:21:34.576083797Z	67	PC: 12ada \| Get or set file attributes
2018-12-25T12:21:34.591098538Z	61	PC: 12ae3 \| Open file (Filename = 'SLEEP.COM')
2018-12-25T12:21:34.599030264Z	63	PC: 12af0 \| Read file or device (Read 3 bytes on handle 5)
2018-12-25T12:21:34.605647134Z	66	PC: 12b2f \| Move file pointer
2018-12-25T12:21:34.607247009Z	64	PC: 12b3a \| Write file or device (Write 3 bytes on handle 5)
2018-12-25T12:21:34.610990244Z	66	PC: 12b43 \| Move file pointer
2018-12-25T12:21:34.613001028Z	64	PC: 12b75 \| Write file or device (Write 25 bytes on handle 5)
2018-12-25T12:21:34.615506738Z	64	PC: 12b80 \| Write file or device (Write 504 bytes on handle 5)
2018-12-25T12:21:34.623248703Z	64	PC: 12b8b \| Write file or device (Write 14 bytes on handle 5)
2018-12-25T12:21:34.62641808Z	87	PC: 12ba9 \| Get or set file date and time
2018-12-25T12:21:34.627861226Z	62	PC: 12bad \| Close file
2018-12-25T12:21:34.638103708Z	67	PC: 12bba \| Get or set file attributes
2018-12-25T12:21:34.643596174Z	79	PC: 12a8f \| Find next file (See above)
2018-12-25T12:21:34.646220086Z	87	PC: 12ba9 \| Get or set file date and time (See above)
2018-12-25T12:21:34.647651654Z	62	PC: 12bad \| Close file (See above)
2018-12-25T12:21:34.649601381Z	67	PC: 12bba \| Get or set file attributes (See above)
2018-12-25T12:21:34.654458474Z	79	PC: 12a8f \| Find next file (See above)
2018-12-25T12:21:34.657238527Z	87	PC: 12ba9 \| Get or set file date and time (See above)
2018-12-25T12:21:34.660011657Z	62	PC: 12bad \| Close file (See above)
2018-12-25T12:21:34.661604901Z	67	PC: 12bba \| Get or set file attributes (See above)
2018-12-25T12:21:34.666942514Z	79	PC: 12a8f \| Find next file (See above)
2018-12-25T12:21:34.669992288Z	87	PC: 12ba9 \| Get or set file date and time (See above)
2018-12-25T12:21:34.671883034Z	62	PC: 12bad \| Close file (See above)
2018-12-25T12:21:34.673602765Z	67	PC: 12bba \| Get or set file attributes (See above)
2018-12-25T12:21:34.679105895Z	79	PC: 12a8f \| Find next file (See above)
2018-12-25T12:21:34.681856464Z	87	PC: 12ba9 \| Get or set file date and time (See above)
2018-12-25T12:21:34.68336446Z	62	PC: 12bad \| Close file (See above)
2018-12-25T12:21:34.685349061Z	67	PC: 12bba \| Get or set file attributes (See above)
2018-12-25T12:21:34.689824171Z	79	PC: 12a8f \| Find next file (See above)
2018-12-25T12:21:34.69213432Z	67	PC: 12ada \| Get or set file attributes (See above)
2018-12-25T12:21:34.702046081Z	61	PC: 12ae3 \| Open file (See above)
2018-12-25T12:21:34.708652144Z	63	PC: 12af0 \| Read file or device (See above)
2018-12-25T12:21:34.714625177Z	66	PC: 12b2f \| Move file pointer (See above)
2018-12-25T12:21:34.716469288Z	64	PC: 12b3a \| Write file or device (See above)
2018-12-25T12:21:34.719261174Z	66	PC: 12b43 \| Move file pointer (See above)
2018-12-25T12:21:34.721261928Z	64	PC: 12b75 \| Write file or device (See above)
2018-12-25T12:21:34.728942025Z	64	PC: 12b80 \| Write file or device (See above)
2018-12-25T12:21:34.737565028Z	64	PC: 12b8b \| Write file or device (See above)
2018-12-25T12:21:34.740114658Z	87	PC: 12ba9 \| Get or set file date and time (See above)
2018-12-25T12:21:34.741816612Z	62	PC: 12bad \| Close file (See above)
2018-12-25T12:21:34.74976819Z	67	PC: 12bba \| Get or set file attributes (See above)
2018-12-25T12:21:34.754554485Z	79	PC: 12a8f \| Find next file (See above)
2018-12-25T12:21:34.757402947Z	87	PC: 12ba9 \| Get or set file date and time (See above)
2018-12-25T12:21:34.759644234Z	62	PC: 12bad \| Close file (See above)
2018-12-25T12:21:34.761300305Z	67	PC: 12bba \| Get or set file attributes (See above)
2018-12-25T12:21:34.766093947Z	79	PC: 12a8f \| Find next file (See above)
2018-12-25T12:21:34.769644412Z	67	PC: 12ada \| Get or set file attributes (See above)
2018-12-25T12:21:34.779257569Z	61	PC: 12ae3 \| Open file (See above)
2018-12-25T12:21:34.790117984Z	63	PC: 12af0 \| Read file or device (See above)
2018-12-25T12:21:34.797428482Z	87	PC: 12ba9 \| Get or set file date and time (See above)
2018-12-25T12:21:34.798936578Z	62	PC: 12bad \| Close file (See above)
2018-12-25T12:21:34.80589465Z	67	PC: 12bba \| Get or set file attributes (See above)
2018-12-25T12:21:34.811343132Z	79	PC: 12a8f \| Find next file (See above)
2018-12-25T12:21:34.813887481Z	62	PC: 12bc3 \| Close file
2018-12-25T12:21:34.815404573Z	42	PC: 12bc7 \| Get date 0x12bc7: cmp dl, 1 0x12bca: jne 0x12bd4 0x12bcc: mov ah, 9 0x12bce: lea dx, word ptr [bp + 0x2a0] 0x12bd2: int 0x21 0x12bd4: mov ah, 0x1a 0x12bd6: mov dx, 0x80 0x12bd9: int 0x21 0x12bdb: mov di, 0x100 0x12bde: jmp di 0x12be0: inc si 0x12be1: jne 0x12c51 0x12be3: imul di, word ptr [bx + di + 0x20], 0x50 0x12be7: jne 0x12c57 0x12be9: imul di, word ptr [bx + di + 0x20], 0x77 0x12bed: jb 0x12c58 0x12bef: je 0x12c65 0x12bf1: outsb dx, byte ptr gs:[si] 0x12bf3: and byte ptr [bp + si + 0x79], ah 0x12bf6: and byte ptr [bp + di + 0x70], dl
2018-12-25T12:21:34.818116498Z	26	PC: 12bdb \| Set disk transfer address