Sample viewer

vx.netlux.org/Virus.DOS.NewYear.1356

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:46:50.880408142Z 82 PC: 15340 | Get DOS internal pointers (SYSVARS)
2018-12-17T22:46:50.883134074Z 32 PC: 15374 | Reserved
2018-12-17T22:46:50.884789154Z 53 PC: 1537f | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:46:50.886494238Z 88 PC: 153b2 | case 0xGet or set allocation strateg:
2018-12-17T22:46:50.890005625Z 88 PC: 153bd | case 0xGet or set allocation strateg:
2018-12-17T22:46:50.891934639Z 88 PC: 153c9 | case 0xGet or set allocation strateg:
2018-12-17T22:46:50.893873642Z 88 PC: 153d1 | case 0xGet or set allocation strateg:
2018-12-17T22:46:50.895833073Z 72 PC: 153e3 | Allocate memory
2018-12-17T22:46:50.898917639Z 81 PC: 153e9 | Get current PSP
2018-12-17T22:46:50.900330543Z 74 PC: 153fc | Reallocate memory
2018-12-17T22:46:50.902247124Z 72 PC: 1540a | Allocate memory
2018-12-17T22:46:50.905458117Z 88 PC: 15438 | case 0xGet or set allocation strateg:
2018-12-17T22:46:50.907505093Z 88 PC: 1543f | case 0xGet or set allocation strateg:
2018-12-17T22:46:50.90939322Z 37 PC: 153a5 | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:46:50.912604023Z 99 PC: 134e8 | Get DBCS lead byte table pointer
2018-12-17T22:46:50.914497571Z 68 PC: 13502 | I/O control for devices (Set for = '')
2018-12-17T22:46:50.919382178Z 68 PC: 1350a | I/O control for devices (Set for = '��b���g�t�S3����[r�2��W�<t�<u�6�u����>��>W')
2018-12-17T22:46:50.926862201Z 68 PC: 13515 | I/O control for devices (Set for = '')
2018-12-17T22:46:50.928883519Z 68 PC: 1351d | I/O control for devices (Set for = '��b���g�t�S3����[r�2��W�<t�<u�6�u����>��>W')
2018-12-17T22:46:50.931104251Z 48 PC: 13522 | Get DOS version
2018-12-17T22:46:50.933888713Z 64 PC: 13771 | Write file or device (Write 23 bytes on handle 2)
2018-12-17T22:46:50.9390713Z 76 PC: 1444c | Terminate with return code (Return code = '1')

{"DateBased":true,"Day":5,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":9024,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:22:20.137669483Z 82 PC: 15340 | Get DOS internal pointers (SYSVARS)
2018-12-25T12:22:20.140333135Z 32 PC: 15374 | Reserved
2018-12-25T12:22:20.142081714Z 53 PC: 1537f | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:22:20.143342269Z 88 PC: 153b2 | case 0xGet or set allocation strateg:
2018-12-25T12:22:20.14555815Z 88 PC: 153bd | case 0xGet or set allocation strateg:
2018-12-25T12:22:20.147152093Z 88 PC: 153c9 | case 0xGet or set allocation strateg:
2018-12-25T12:22:20.148903595Z 88 PC: 153d1 | case 0xGet or set allocation strateg:
2018-12-25T12:22:20.150994401Z 72 PC: 153e3 | Allocate memory
2018-12-25T12:22:20.153882467Z 81 PC: 153e9 | Get current PSP
2018-12-25T12:22:20.156025247Z 74 PC: 153fc | Reallocate memory
2018-12-25T12:22:20.15854268Z 72 PC: 1540a | Allocate memory
2018-12-25T12:22:20.161157795Z 88 PC: 15438 | case 0xGet or set allocation strateg:
2018-12-25T12:22:20.163709864Z 88 PC: 1543f | case 0xGet or set allocation strateg:
2018-12-25T12:22:20.165705916Z 37 PC: 153a5 | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:22:20.167813408Z 99 PC: 134e8 | Get DBCS lead byte table pointer
2018-12-25T12:22:20.168920113Z 68 PC: 13502 | I/O control for devices (Set for = '')
2018-12-25T12:22:20.170059033Z 68 PC: 1350a | I/O control for devices (Set for = '��b���g�t�S3����[r�2��W�<t�<u�6�u����>��>W')
2018-12-25T12:22:20.172168615Z 68 PC: 13515 | I/O control for devices (Set for = '')
2018-12-25T12:22:20.173484834Z 68 PC: 1351d | I/O control for devices (Set for = '��b���g�t�S3����[r�2��W�<t�<u�6�u����>��>W')
2018-12-25T12:22:20.174999632Z 48 PC: 13522 | Get DOS version
2018-12-25T12:22:20.177468714Z 64 PC: 13771 | Write file or device (Write 23 bytes on handle 2)
2018-12-25T12:22:20.181638315Z 76 PC: 1444c | Terminate with return code (Return code = '1')

{"DateBased":true,"Day":1,"Month":2,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":9024,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:22:20.227998937Z 82 PC: 15340 | Get DOS internal pointers (SYSVARS)
2018-12-25T12:22:20.230706739Z 32 PC: 15374 | Reserved
2018-12-25T12:22:20.232770327Z 53 PC: 1537f | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:22:20.234515935Z 88 PC: 153b2 | case 0xGet or set allocation strateg:
2018-12-25T12:22:20.236121991Z 88 PC: 153bd | case 0xGet or set allocation strateg:
2018-12-25T12:22:20.238195386Z 88 PC: 153c9 | case 0xGet or set allocation strateg:
2018-12-25T12:22:20.239258898Z 88 PC: 153d1 | case 0xGet or set allocation strateg:
2018-12-25T12:22:20.24029519Z 72 PC: 153e3 | Allocate memory
2018-12-25T12:22:20.242285149Z 81 PC: 153e9 | Get current PSP
2018-12-25T12:22:20.245632874Z 74 PC: 153fc | Reallocate memory
2018-12-25T12:22:20.249179277Z 72 PC: 1540a | Allocate memory
2018-12-25T12:22:20.251437231Z 88 PC: 15438 | case 0xGet or set allocation strateg:
2018-12-25T12:22:20.253224279Z 88 PC: 1543f | case 0xGet or set allocation strateg:
2018-12-25T12:22:20.254824353Z 37 PC: 153a5 | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:22:20.257084993Z 99 PC: 134e8 | Get DBCS lead byte table pointer
2018-12-25T12:22:20.258734203Z 68 PC: 13502 | I/O control for devices (Set for = '')
2018-12-25T12:22:20.260559206Z 68 PC: 1350a | I/O control for devices (Set for = '��b���g�t�S3����[r�2��W�<t�<u�6�u����>��>W')
2018-12-25T12:22:20.263069603Z 68 PC: 13515 | I/O control for devices (Set for = '')
2018-12-25T12:22:20.265467088Z 68 PC: 1351d | I/O control for devices (Set for = '��b���g�t�S3����[r�2��W�<t�<u�6�u����>��>W')
2018-12-25T12:22:20.267910964Z 48 PC: 13522 | Get DOS version
2018-12-25T12:22:20.270203801Z 64 PC: 13771 | Write file or device (Write 23 bytes on handle 2)
2018-12-25T12:22:20.276570469Z 76 PC: 1444c | Terminate with return code (Return code = '1')

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":9024,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:22:20.671742824Z 82 PC: 15340 | Get DOS internal pointers (SYSVARS)
2018-12-25T12:22:20.683165868Z 32 PC: 15374 | Reserved
2018-12-25T12:22:20.685320545Z 53 PC: 1537f | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:22:20.686711142Z 88 PC: 153b2 | case 0xGet or set allocation strateg:
2018-12-25T12:22:20.688480062Z 88 PC: 153bd | case 0xGet or set allocation strateg:
2018-12-25T12:22:20.691407045Z 88 PC: 153c9 | case 0xGet or set allocation strateg:
2018-12-25T12:22:20.695151838Z 88 PC: 153d1 | case 0xGet or set allocation strateg:
2018-12-25T12:22:20.697004321Z 72 PC: 153e3 | Allocate memory
2018-12-25T12:22:20.699985615Z 81 PC: 153e9 | Get current PSP
2018-12-25T12:22:20.701081523Z 74 PC: 153fc | Reallocate memory
2018-12-25T12:22:20.702622585Z 72 PC: 1540a | Allocate memory
2018-12-25T12:22:20.714373119Z 88 PC: 15438 | case 0xGet or set allocation strateg:
2018-12-25T12:22:20.7170069Z 88 PC: 1543f | case 0xGet or set allocation strateg:
2018-12-25T12:22:20.719046352Z 37 PC: 153a5 | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:22:20.721267583Z 99 PC: 134e8 | Get DBCS lead byte table pointer
2018-12-25T12:22:20.722463485Z 68 PC: 13502 | I/O control for devices (Set for = '')
2018-12-25T12:22:20.723799503Z 68 PC: 1350a | I/O control for devices (Set for = '��b���g�t�S3����[r�2��W�<t�<u�6�u����>��>W')
2018-12-25T12:22:20.725680887Z 68 PC: 13515 | I/O control for devices (Set for = '')
2018-12-25T12:22:20.727361611Z 68 PC: 1351d | I/O control for devices (Set for = '��b���g�t�S3����[r�2��W�<t�<u�6�u����>��>W')
2018-12-25T12:22:20.729373758Z 48 PC: 13522 | Get DOS version
2018-12-25T12:22:20.731963079Z 64 PC: 13771 | Write file or device (Write 23 bytes on handle 2)
2018-12-25T12:22:20.746393804Z 76 PC: 1444c | Terminate with return code (Return code = '1')