Sample viewer

vx.netlux.org/Virus.DOS.CyberShadow.863

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:47:07.7068382Z	78	PC: 12a63 \| Find first file
2018-12-17T22:47:07.715896479Z	61	PC: 12a77 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:47:07.723999623Z	63	PC: 12a83 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:47:07.730965831Z	87	PC: 12a97 \| Get or set file date and time
2018-12-17T22:47:07.732715127Z	66	PC: 12b03 \| Move file pointer
2018-12-17T22:47:07.736480872Z	64	PC: 12abc \| Write file or device (Write 1110 bytes on handle 5)
2018-12-17T22:47:07.927371082Z	66	PC: 12b03 \| Move file pointer
2018-12-17T22:47:07.929262505Z	64	PC: 12ac9 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:47:07.937521162Z	87	PC: 12ad0 \| Get or set file date and time
2018-12-17T22:47:07.939508766Z	62	PC: 12ad8 \| Close file
2018-12-17T22:47:07.948084337Z	79	PC: 12ade \| Find next file
2018-12-17T22:47:07.952286773Z	61	PC: 12a77 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:47:07.96032233Z	63	PC: 12a83 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:47:07.96750782Z	87	PC: 12a97 \| Get or set file date and time
2018-12-17T22:47:07.969832598Z	66	PC: 12b03 \| Move file pointer
2018-12-17T22:47:07.972885243Z	64	PC: 12abc \| Write file or device (Write 1104 bytes on handle 5)
2018-12-17T22:47:07.982170428Z	66	PC: 12b03 \| Move file pointer
2018-12-17T22:47:07.984214247Z	64	PC: 12ac9 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:47:07.991797835Z	87	PC: 12ad0 \| Get or set file date and time
2018-12-17T22:47:07.993478633Z	62	PC: 12ad8 \| Close file
2018-12-17T22:47:08.001869989Z	79	PC: 12ade \| Find next file
2018-12-17T22:47:08.005337714Z	61	PC: 12a77 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:47:08.012424949Z	63	PC: 12a83 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:47:08.01931798Z	87	PC: 12a97 \| Get or set file date and time
2018-12-17T22:47:08.022593363Z	66	PC: 12b03 \| Move file pointer
2018-12-17T22:47:08.026784217Z	64	PC: 12abc \| Write file or device (Write 981 bytes on handle 5)
2018-12-17T22:47:08.036078108Z	66	PC: 12b03 \| Move file pointer
2018-12-17T22:47:08.038532459Z	64	PC: 12ac9 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:47:08.045661914Z	87	PC: 12ad0 \| Get or set file date and time
2018-12-17T22:47:08.047473347Z	62	PC: 12ad8 \| Close file
2018-12-17T22:47:08.056634068Z	79	PC: 12ade \| Find next file
2018-12-17T22:47:08.059585273Z	61	PC: 12a77 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:47:08.066620711Z	63	PC: 12a83 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:47:08.074633475Z	87	PC: 12a97 \| Get or set file date and time
2018-12-17T22:47:08.076254771Z	66	PC: 12b03 \| Move file pointer
2018-12-17T22:47:08.07904854Z	64	PC: 12abc \| Write file or device (Write 987 bytes on handle 5)
2018-12-17T22:47:08.087916741Z	66	PC: 12b03 \| Move file pointer
2018-12-17T22:47:08.090606655Z	64	PC: 12ac9 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:47:08.098495607Z	87	PC: 12ad0 \| Get or set file date and time
2018-12-17T22:47:08.100599168Z	62	PC: 12ad8 \| Close file
2018-12-17T22:47:08.109948002Z	79	PC: 12ade \| Find next file
2018-12-17T22:47:08.113146021Z	61	PC: 12a77 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:47:08.120510236Z	63	PC: 12a83 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:47:08.128317094Z	87	PC: 12a97 \| Get or set file date and time
2018-12-17T22:47:08.130368588Z	66	PC: 12b03 \| Move file pointer
2018-12-17T22:47:08.133618113Z	64	PC: 12abc \| Write file or device (Write 1030 bytes on handle 5)
2018-12-17T22:47:08.144658035Z	66	PC: 12b03 \| Move file pointer
2018-12-17T22:47:08.146455462Z	64	PC: 12ac9 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:47:08.153772439Z	87	PC: 12ad0 \| Get or set file date and time
2018-12-17T22:47:08.156678208Z	62	PC: 12ad8 \| Close file
2018-12-17T22:47:08.1658502Z	79	PC: 12ade \| Find next file
2018-12-17T22:47:08.169046195Z	61	PC: 12a77 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:47:08.176982385Z	63	PC: 12a83 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:47:08.1850753Z	87	PC: 12a97 \| Get or set file date and time
2018-12-17T22:47:08.186888767Z	66	PC: 12b03 \| Move file pointer
2018-12-17T22:47:08.190058132Z	64	PC: 12abc \| Write file or device (Write 1104 bytes on handle 5)
2018-12-17T22:47:08.200263756Z	66	PC: 12b03 \| Move file pointer
2018-12-17T22:47:08.201977716Z	64	PC: 12ac9 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:47:08.209660791Z	87	PC: 12ad0 \| Get or set file date and time
2018-12-17T22:47:08.21217815Z	62	PC: 12ad8 \| Close file
2018-12-17T22:47:08.221426416Z	79	PC: 12ade \| Find next file
2018-12-17T22:47:08.224527562Z	61	PC: 12a77 \| Open file (Filename = 'PAH.COM')
2018-12-17T22:47:08.233435698Z	63	PC: 12a83 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:47:08.240624054Z	87	PC: 12a97 \| Get or set file date and time
2018-12-17T22:47:08.242455324Z	66	PC: 12b03 \| Move file pointer
2018-12-17T22:47:08.24653543Z	64	PC: 12abc \| Write file or device (Write 1050 bytes on handle 5)
2018-12-17T22:47:08.256009339Z	66	PC: 12b03 \| Move file pointer
2018-12-17T22:47:08.257927944Z	64	PC: 12ac9 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:47:08.266095278Z	87	PC: 12ad0 \| Get or set file date and time
2018-12-17T22:47:08.268219449Z	62	PC: 12ad8 \| Close file
2018-12-17T22:47:08.27701299Z	79	PC: 12ade \| Find next file
2018-12-17T22:47:08.280075845Z	61	PC: 12a77 \| Open file (Filename = 'TEST.COM')
2018-12-17T22:47:08.288081696Z	63	PC: 12a83 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:47:08.290904389Z	62	PC: 12ad8 \| Close file
2018-12-17T22:47:08.292853481Z	79	PC: 12ade \| Find next file