Sample viewer

vx.netlux.org/Virus.DOS.Edit.656

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:48:28.660257431Z	61	PC: 12a5a \| Open file (Filename = '')
2018-12-17T22:48:28.66409931Z	61	PC: 9f8ab \| Open file (Filename = '@‹ÊÍ!3ö&‰u‹ùWó¤Í’¾¥‹þ¹>3Â«âú‰ ´@Y‹ÑÍ!´>Í!j')
2018-12-17T22:48:28.677892071Z	26	PC: 12ac0 \| Set disk transfer address
2018-12-17T22:48:28.67954338Z	78	PC: 9f861 \| Find first file
2018-12-17T22:48:28.687284804Z	47	PC: 9f875 \| Get disk transfer address
2018-12-17T22:48:28.689610183Z	61	PC: 9f8ab \| Open file (Filename = 'eaÃ°Ï')
2018-12-17T22:48:28.697735464Z	63	PC: 9f8ef \| Read file or device (Read 656 bytes on handle 5)
2018-12-17T22:48:28.705636821Z	62	PC: 9f947 \| Close file
2018-12-17T22:48:28.709296072Z	79	PC: 9f861 \| Find next file
2018-12-17T22:48:28.713027555Z	47	PC: 9f875 \| Get disk transfer address
2018-12-17T22:48:28.715141456Z	61	PC: 9f8ab \| Open file (Filename = 'eaÃ°Ïfè8')
2018-12-17T22:48:28.724202955Z	62	PC: 9f947 \| Close file
2018-12-17T22:48:28.72662096Z	79	PC: 9f861 \| Find next file
2018-12-17T22:48:28.729809299Z	47	PC: 9f875 \| Get disk transfer address
2018-12-17T22:48:28.736081298Z	61	PC: 9f8ab \| Open file (Filename = 'eaÃ°Ïfè8')
2018-12-17T22:48:28.744491386Z	63	PC: 9f8ef \| Read file or device (Read 656 bytes on handle 5)
2018-12-17T22:48:28.756007498Z	62	PC: 9f947 \| Close file
2018-12-17T22:48:28.758758597Z	79	PC: 9f861 \| Find next file
2018-12-17T22:48:28.762786611Z	47	PC: 9f875 \| Get disk transfer address
2018-12-17T22:48:28.765195103Z	61	PC: 9f8ab \| Open file (Filename = 'eaÃ°Ïº´ Í!´LÍ!Hello, World! $fÃfƒì´,Í!gf‰L$ gf‰T$gf‹D$fƒÄfÃfƒìfhl')
2018-12-17T22:48:28.773515676Z	63	PC: 9f8ef \| Read file or device (Read 656 bytes on handle 5)
2018-12-17T22:48:28.786238623Z	62	PC: 9f947 \| Close file
2018-12-17T22:48:28.789058849Z	79	PC: 9f861 \| Find next file
2018-12-17T22:48:28.793086768Z	47	PC: 9f875 \| Get disk transfer address
2018-12-17T22:48:28.796194149Z	61	PC: 9f8ab \| Open file (Filename = 'eaÃ°Ïfè')
2018-12-17T22:48:28.804477771Z	63	PC: 9f8ef \| Read file or device (Read 656 bytes on handle 5)
2018-12-17T22:48:28.812722536Z	62	PC: 9f947 \| Close file
2018-12-17T22:48:28.815966784Z	79	PC: 9f861 \| Find next file
2018-12-17T22:48:28.819673019Z	47	PC: 9f875 \| Get disk transfer address
2018-12-17T22:48:28.821745037Z	61	PC: 9f8ab \| Open file (Filename = 'eaÃ°Ïº ´ Í!ëþ´LÍ!Hello, World! $Hello, Recurse! $')
2018-12-17T22:48:28.83108557Z	63	PC: 9f8ef \| Read file or device (Read 656 bytes on handle 5)
2018-12-17T22:48:28.838634266Z	62	PC: 9f947 \| Close file
2018-12-17T22:48:28.841096874Z	79	PC: 9f861 \| Find next file
2018-12-17T22:48:28.845831546Z	47	PC: 9f875 \| Get disk transfer address
2018-12-17T22:48:28.847753562Z	61	PC: 9f8ab \| Open file (Filename = 'eaÃ°Ïº ´ Í!ëþ´LÍ!Hello, World! $Hello, Recurse! $')
2018-12-17T22:48:28.855764338Z	63	PC: 9f8ef \| Read file or device (Read 656 bytes on handle 5)
2018-12-17T22:48:28.865341355Z	62	PC: 9f947 \| Close file
2018-12-17T22:48:28.867608211Z	79	PC: 9f861 \| Find next file
2018-12-17T22:48:28.870754904Z	47	PC: 9f875 \| Get disk transfer address
2018-12-17T22:48:28.873114325Z	61	PC: 9f8ab \| Open file (Filename = 'eaÃ°ÏÛã´Í¢Ì¸O¹¿íÍƒøO…ˆ¸O»AÍƒøO…yfŒØfÁàfÝ')
2018-12-17T22:48:28.881528756Z	63	PC: 9f8ef \| Read file or device (Read 656 bytes on handle 5)
2018-12-17T22:48:28.888696303Z	62	PC: 9f947 \| Close file
2018-12-17T22:48:28.89151484Z	79	PC: 9f861 \| Find next file
2018-12-17T22:48:28.895065819Z	47	PC: 9f875 \| Get disk transfer address
2018-12-17T22:48:28.896918543Z	61	PC: 9f8ab \| Open file (Filename = 'eaÃ°Ïº ´ Í!ëþ´LÍ!Hello, World! $O»AÍƒøO…yfŒØfÁàfÝ')
2018-12-17T22:48:28.905502121Z	63	PC: 9f8ef \| Read file or device (Read 656 bytes on handle 5)
2018-12-17T22:48:28.914135219Z	62	PC: 9f947 \| Close file
2018-12-17T22:48:28.916556253Z	79	PC: 9f861 \| Find next file
2018-12-17T22:48:28.919829671Z	47	PC: 9f875 \| Get disk transfer address
2018-12-17T22:48:28.922121562Z	61	PC: 9f8ab \| Open file (Filename = 'eaÃ°ÏÍ$t¾‹þ¹>5gD«âùß@Z‰F7:È¿ éœÙVgÏci3Dî@äjdD3Ï–ö*ÂsÊ¿Ìs @oD ')
2018-12-17T22:48:28.930240208Z	63	PC: 9f8ef \| Read file or device (Read 656 bytes on handle 5)
2018-12-17T22:48:28.938341295Z	62	PC: 9f947 \| Close file
2018-12-17T22:48:28.941599149Z	61	PC: 12af2 \| Open file (Filename = 'A:\TEST.COM')
2018-12-17T22:48:28.950328671Z	63	PC: 12b1e \| Read file or device (Read 656 bytes on handle 5)
2018-12-17T22:48:28.958693738Z	64	PC: 12b3b \| Write file or device (Write 656 bytes on handle 5)
2018-12-17T22:48:28.977148235Z	62	PC: 12b3f \| Close file
2018-12-17T22:48:28.9868978Z	13	PC: 12b43 \| Disk reset
2018-12-17T22:48:28.9891745Z	74	PC: 12b4c \| Reallocate memory
2018-12-17T22:48:28.992292857Z	75	PC: 12b61 \| Execute program
2018-12-17T22:48:29.013988833Z	9	PC: 12d55 \| Display string (String= 'Sophos Ltd, Oxford sacrificial COM goat 1400H bytes long ')
2018-12-17T22:48:29.021018101Z	0	PC: 12d59 \| Program terminate
2018-12-17T22:48:29.025701627Z	61	PC: 9f8ab \| Open file (Filename = '')
2018-12-17T22:48:29.03393126Z	63	PC: 9f8ef \| Read file or device (Read 656 bytes on handle 5)
2018-12-17T22:48:29.042450804Z	64	PC: 9f91a \| Write file or device (Write 656 bytes on handle 5)
2018-12-17T22:48:29.051919252Z	64	PC: 9f943 \| Write file or device (Write 656 bytes on handle 5)
2018-12-17T22:48:29.063126632Z	62	PC: 9f947 \| Close file
2018-12-17T22:48:29.072653707Z	77	PC: 12b6f \| Get program return code
2018-12-17T22:48:29.074250706Z	76	PC: 12b73 \| Terminate with return code (Return code = '0')