Sample viewer

vx.netlux.org/Virus.DOS.V.2101

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:46:26.554570091Z	88	PC: 130d4 \| case 0xGet or set allocation strateg:
2018-12-17T22:46:26.557434591Z	53	PC: 130ee \| Get interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T22:46:26.559239471Z	37	PC: 130ae \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T22:46:26.561261158Z	37	PC: 130c8 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T22:46:26.562791873Z	255	PC: 13120 \| UNKNOWN!
2018-12-17T22:46:26.565095179Z	37	PC: 130ae \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T22:46:26.566610935Z	37	PC: 130c8 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T22:46:26.568603668Z	37	PC: 13237 \| Set interrupt vector (Interrupt = '1' AKA 'Character input')
2018-12-17T22:46:26.572250959Z	53	PC: 1323e \| Get interrupt vector (Interrupt = '19' AKA 'Delete file')
2018-12-17T22:46:26.573426116Z	88	PC: 13250 \| case 0xGet or set allocation strateg:
2018-12-17T22:46:26.574617784Z	72	PC: 13259 \| Allocate memory
2018-12-17T22:46:26.57904561Z	98	PC: 1325f \| Get current PSP
2018-12-17T22:46:26.580147169Z	74	PC: 13271 \| Reallocate memory
2018-12-17T22:46:26.581477477Z	72	PC: 13259 \| Allocate memory
2018-12-17T22:46:26.583368419Z	98	PC: 13281 \| Get current PSP
2018-12-17T22:46:26.590158Z	53	PC: 1331e \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:46:26.591333198Z	37	PC: 1332e \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:46:26.59308599Z	88	PC: 13350 \| case 0xGet or set allocation strateg:
2018-12-17T22:46:26.594919564Z	53	PC: 9f501 \| Get interrupt vector (Interrupt = '19' AKA 'Delete file')
2018-12-17T22:46:26.596163931Z	61	PC: 9f54c \| Open file (Filename = '��!�ش>�!ZY�4')
2018-12-17T22:46:26.601139705Z	72	PC: 9f57c \| Allocate memory
2018-12-17T22:46:26.603116979Z	98	PC: 9f592 \| Get current PSP
2018-12-17T22:46:26.604000408Z	74	PC: 9f5a4 \| Reallocate memory
2018-12-17T22:46:26.605473725Z	72	PC: 9f57c \| Allocate memory
2018-12-17T22:46:26.607826474Z	63	PC: 9f5b6 \| Read file or device (Read 63 bytes on handle 5)
2018-12-17T22:46:26.610283459Z	66	PC: 9f643 \| Move file pointer
2018-12-17T22:46:26.611586206Z	63	PC: 9f650 \| Read file or device (Read 63 bytes on handle 5)
2018-12-17T22:46:26.622259692Z	66	PC: 9f664 \| Move file pointer
2018-12-17T22:46:26.624342514Z	64	PC: 9f6b4 \| Write file or device (Write 2101 bytes on handle 5)
2018-12-17T22:46:26.966285219Z	66	PC: 9f6dd \| Move file pointer
2018-12-17T22:46:26.969727354Z	64	PC: 9f6e7 \| Write file or device (Write 63 bytes on handle 5)
2018-12-17T22:46:26.97308507Z	66	PC: 9f6cb \| Move file pointer
2018-12-17T22:46:26.974909026Z	64	PC: 9f6e7 \| Write file or device (Write 63 bytes on handle 5)
2018-12-17T22:46:26.979412384Z	73	PC: 9f629 \| Release memory
2018-12-17T22:46:26.981817541Z	62	PC: 9f571 \| Close file
2018-12-17T22:46:26.990220643Z	61	PC: 1336e \| Open file (Filename = 'c:\command.com')
2018-12-17T22:46:26.997775642Z	62	PC: 13374 \| Close file
2018-12-17T22:46:27.001036486Z	72	PC: 9f43f \| Allocate memory
2018-12-17T22:46:27.003385959Z	9	PC: 12a82 \| Display string (String= 'Goat file (COM). Size=0000014Dh/0000000333d bytes. ')
2018-12-17T22:46:27.008180053Z	76	PC: 12a86 \| Terminate with return code (Return code = '36')