Sample viewer

vx.netlux.org/Virus.DOS.Nygus.195

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:47:51.493118254Z	26	PC: 12ab2 \| Set disk transfer address
2018-12-17T22:47:51.495287709Z	78	PC: 12abb \| Find first file
2018-12-17T22:47:51.502444781Z	61	PC: 12ad7 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:47:51.510146946Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:51.513169612Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:51.515212385Z	63	PC: 12af4 \| Read file or device (Read 1 bytes on handle 5)
2018-12-17T22:47:51.522781645Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:51.524698113Z	63	PC: 12b0c \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:47:51.528584783Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:51.530694543Z	64	PC: 12b1b \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:47:51.534288548Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:51.54654647Z	64	PC: 12b2b \| Write file or device (Write 195 bytes on handle 5)
2018-12-17T22:47:51.562060291Z	62	PC: 12b2f \| Close file
2018-12-17T22:47:51.572245408Z	79	PC: 12b38 \| Find next file
2018-12-17T22:47:51.575948863Z	61	PC: 12ad7 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:47:51.585115481Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:51.587105486Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:51.589603668Z	63	PC: 12af4 \| Read file or device (Read 1 bytes on handle 5)
2018-12-17T22:47:51.597178669Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:51.599006018Z	63	PC: 12b0c \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:47:51.602680922Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:51.604724158Z	64	PC: 12b1b \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:47:51.608148851Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:51.610080688Z	64	PC: 12b2b \| Write file or device (Write 195 bytes on handle 5)
2018-12-17T22:47:51.614710926Z	62	PC: 12b2f \| Close file
2018-12-17T22:47:51.623949233Z	79	PC: 12b38 \| Find next file
2018-12-17T22:47:51.627351157Z	61	PC: 12ad7 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:47:51.635585659Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:51.637525097Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:51.639375042Z	63	PC: 12af4 \| Read file or device (Read 1 bytes on handle 5)
2018-12-17T22:47:51.647343945Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:51.650134814Z	63	PC: 12b0c \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:47:51.653482766Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:51.655936305Z	64	PC: 12b1b \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:47:51.659651531Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:51.661479175Z	64	PC: 12b2b \| Write file or device (Write 195 bytes on handle 5)
2018-12-17T22:47:51.665832138Z	62	PC: 12b2f \| Close file
2018-12-17T22:47:51.675010131Z	79	PC: 12b38 \| Find next file
2018-12-17T22:47:51.67882785Z	61	PC: 12ad7 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:47:51.68781853Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:51.690124994Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:51.692368102Z	63	PC: 12af4 \| Read file or device (Read 1 bytes on handle 5)
2018-12-17T22:47:51.700195119Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:51.702920755Z	63	PC: 12b0c \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:47:51.706254786Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:51.708299026Z	64	PC: 12b1b \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:47:51.718704023Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:51.720481821Z	64	PC: 12b2b \| Write file or device (Write 195 bytes on handle 5)
2018-12-17T22:47:51.723672831Z	62	PC: 12b2f \| Close file
2018-12-17T22:47:51.733591117Z	79	PC: 12b38 \| Find next file
2018-12-17T22:47:51.737312424Z	61	PC: 12ad7 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:47:51.745258009Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:51.753978254Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:51.761585273Z	63	PC: 12af4 \| Read file or device (Read 1 bytes on handle 5)
2018-12-17T22:47:51.769201016Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:51.77163159Z	63	PC: 12b0c \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:47:51.774855608Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:51.776649964Z	64	PC: 12b1b \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:47:51.781288557Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:51.799447956Z	64	PC: 12b2b \| Write file or device (Write 195 bytes on handle 5)
2018-12-17T22:47:51.802574812Z	62	PC: 12b2f \| Close file
2018-12-17T22:47:51.820778124Z	79	PC: 12b38 \| Find next file
2018-12-17T22:47:51.824732102Z	61	PC: 12ad7 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:47:51.835974942Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:51.837590989Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:51.840056122Z	63	PC: 12af4 \| Read file or device (Read 1 bytes on handle 5)
2018-12-17T22:47:51.852900374Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:51.86354246Z	63	PC: 12b0c \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:47:51.877862495Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:51.880002064Z	64	PC: 12b1b \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:47:51.883263681Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:51.885734142Z	64	PC: 12b2b \| Write file or device (Write 195 bytes on handle 5)
2018-12-17T22:47:52.216336386Z	62	PC: 12b2f \| Close file
2018-12-17T22:47:52.225998064Z	79	PC: 12b38 \| Find next file
2018-12-17T22:47:52.229475933Z	61	PC: 12ad7 \| Open file (Filename = 'PAH.COM')
2018-12-17T22:47:52.249352451Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:52.251639677Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:52.253884859Z	63	PC: 12af4 \| Read file or device (Read 1 bytes on handle 5)
2018-12-17T22:47:52.262956083Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:52.26563781Z	63	PC: 12b0c \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:47:52.269105067Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:52.272215295Z	64	PC: 12b1b \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:47:52.276192492Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:52.278474797Z	64	PC: 12b2b \| Write file or device (Write 195 bytes on handle 5)
2018-12-17T22:47:52.282881841Z	62	PC: 12b2f \| Close file
2018-12-17T22:47:52.292705706Z	79	PC: 12b38 \| Find next file
2018-12-17T22:47:52.296307753Z	61	PC: 12ad7 \| Open file (Filename = 'TEST.COM')
2018-12-17T22:47:52.305263939Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:52.307698641Z	66	PC: 12b5b \| Move file pointer
2018-12-17T22:47:52.309923275Z	63	PC: 12af4 \| Read file or device (Read 1 bytes on handle 5)
2018-12-17T22:47:52.313483095Z	62	PC: 12b2f \| Close file
2018-12-17T22:47:52.317175089Z	79	PC: 12b38 \| Find next file
2018-12-17T22:47:52.320625046Z	9	PC: 12aa2 \| Display string (String= 'Hello - Copyright S & S International, 1990 ')