Sample viewer

vx.netlux.org/Virus.DOS.Rage.2215

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T21:57:58.372467181Z	42	PC: 14100 \| Get date 0x14100: cmp dx, 0x510 0x14104: je 0x14137 0x14106: cmp dx, 0xa1b 0x1410a: je 0x14137 0x1410c: cmp al, 0 0x1410e: je 0x14114 0x14110: cmp al, 1 0x14112: jne 0x14145 0x14114: mov al, 4 0x14116: out 0x70, al 0x14118: in al, 0x71 0x1411a: mov dh, al 0x1411c: mov al, 2 0x1411e: out 0x70, al 0x14120: in al, 0x71 0x14122: mov dl, al 0x14124: sti 0x14125: cmp dx, 0x516 0x14129: je 0x14137 0x1412b: cmp dx, 0x1027
2018-12-17T21:57:58.375829244Z	74	PC: 14167 \| Reallocate memory
2018-12-17T21:57:58.377075369Z	72	PC: 1416e \| Allocate memory
2018-12-17T21:57:58.378486532Z	52	PC: 14191 \| Get InDOS flag pointer
2018-12-17T21:57:58.38012616Z	9	PC: 12a5c \| Display string (Could not find end pointer)
2018-12-17T21:57:58.385458947Z	76	PC: 12a61 \| Terminate with return code (Return code = '0')

{"DateBased":true,"Day":6,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":880,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T11:41:56.585228566Z	42	PC: 14100 \| Get date 0x14100: cmp dx, 0x510 0x14104: je 0x14137 0x14106: cmp dx, 0xa1b 0x1410a: je 0x14137 0x1410c: cmp al, 0 0x1410e: je 0x14114 0x14110: cmp al, 1 0x14112: jne 0x14145 0x14114: mov al, 4 0x14116: out 0x70, al 0x14118: in al, 0x71 0x1411a: mov dh, al 0x1411c: mov al, 2 0x1411e: out 0x70, al 0x14120: in al, 0x71 0x14122: mov dl, al 0x14124: sti 0x14125: cmp dx, 0x516 0x14129: je 0x14137 0x1412b: cmp dx, 0x1027
2018-12-25T11:41:56.58867002Z	74	PC: 14167 \| Reallocate memory
2018-12-25T11:41:56.591022647Z	72	PC: 1416e \| Allocate memory
2018-12-25T11:41:56.593234048Z	52	PC: 14191 \| Get InDOS flag pointer
2018-12-25T11:41:56.594907464Z	9	PC: 12a5c \| Display string (Could not find end pointer)
2018-12-25T11:41:56.601064657Z	76	PC: 12a61 \| Terminate with return code (Return code = '0')

{"DateBased":true,"Day":7,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":880,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T11:41:56.579628237Z	42	PC: 14100 \| Get date 0x14100: cmp dx, 0x510 0x14104: je 0x14137 0x14106: cmp dx, 0xa1b 0x1410a: je 0x14137 0x1410c: cmp al, 0 0x1410e: je 0x14114 0x14110: cmp al, 1 0x14112: jne 0x14145 0x14114: mov al, 4 0x14116: out 0x70, al 0x14118: in al, 0x71 0x1411a: mov dh, al 0x1411c: mov al, 2 0x1411e: out 0x70, al 0x14120: in al, 0x71 0x14122: mov dl, al 0x14124: sti 0x14125: cmp dx, 0x516 0x14129: je 0x14137 0x1412b: cmp dx, 0x1027
2018-12-25T11:41:56.582706191Z	74	PC: 14167 \| Reallocate memory
2018-12-25T11:41:56.583950502Z	72	PC: 1416e \| Allocate memory
2018-12-25T11:41:56.585361057Z	52	PC: 14191 \| Get InDOS flag pointer
2018-12-25T11:41:56.588081094Z	9	PC: 12a5c \| Display string (Could not find end pointer)
2018-12-25T11:41:56.593650838Z	76	PC: 12a61 \| Terminate with return code (Return code = '0')

{"DateBased":true,"Day":16,"Month":5,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":880,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T11:41:56.579936068Z	42	PC: 14100 \| Get date 0x14100: cmp dx, 0x510 0x14104: je 0x14137 0x14106: cmp dx, 0xa1b 0x1410a: je 0x14137 0x1410c: cmp al, 0 0x1410e: je 0x14114 0x14110: cmp al, 1 0x14112: jne 0x14145 0x14114: mov al, 4 0x14116: out 0x70, al 0x14118: in al, 0x71 0x1411a: mov dh, al 0x1411c: mov al, 2 0x1411e: out 0x70, al 0x14120: in al, 0x71 0x14122: mov dl, al 0x14124: sti 0x14125: cmp dx, 0x516 0x14129: je 0x14137 0x1412b: cmp dx, 0x1027
2018-12-25T11:41:56.582936242Z	9	PC: 1413e \| Display string (Could not find end pointer)
2018-12-25T11:41:56.619077644Z	1	PC: 14142 \| Character input

{"DateBased":true,"Day":27,"Month":10,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":880,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T11:41:56.585832311Z	42	PC: 14100 \| Get date 0x14100: cmp dx, 0x510 0x14104: je 0x14137 0x14106: cmp dx, 0xa1b 0x1410a: je 0x14137 0x1410c: cmp al, 0 0x1410e: je 0x14114 0x14110: cmp al, 1 0x14112: jne 0x14145 0x14114: mov al, 4 0x14116: out 0x70, al 0x14118: in al, 0x71 0x1411a: mov dh, al 0x1411c: mov al, 2 0x1411e: out 0x70, al 0x14120: in al, 0x71 0x14122: mov dl, al 0x14124: sti 0x14125: cmp dx, 0x516 0x14129: je 0x14137 0x1412b: cmp dx, 0x1027
2018-12-25T11:41:56.589137992Z	9	PC: 1413e \| Display string (Could not find end pointer)
2018-12-25T11:41:56.622121097Z	1	PC: 14142 \| Character input

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":880,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T11:41:56.749238336Z	42	PC: 14100 \| Get date 0x14100: cmp dx, 0x510 0x14104: je 0x14137 0x14106: cmp dx, 0xa1b 0x1410a: je 0x14137 0x1410c: cmp al, 0 0x1410e: je 0x14114 0x14110: cmp al, 1 0x14112: jne 0x14145 0x14114: mov al, 4 0x14116: out 0x70, al 0x14118: in al, 0x71 0x1411a: mov dh, al 0x1411c: mov al, 2 0x1411e: out 0x70, al 0x14120: in al, 0x71 0x14122: mov dl, al 0x14124: sti 0x14125: cmp dx, 0x516 0x14129: je 0x14137 0x1412b: cmp dx, 0x1027
2018-12-25T11:41:56.752495004Z	74	PC: 14167 \| Reallocate memory
2018-12-25T11:41:56.758045102Z	72	PC: 1416e \| Allocate memory
2018-12-25T11:41:56.760130526Z	52	PC: 14191 \| Get InDOS flag pointer
2018-12-25T11:41:56.764128929Z	9	PC: 12a5c \| Display string (Could not find end pointer)
2018-12-25T11:41:56.77135192Z	76	PC: 12a61 \| Terminate with return code (Return code = '0')