Sample viewer

vx.netlux.org/Virus.DOS.HLLP.Witam.6368

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:48:41.485401415Z	53	PC: 139ca \| Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:48:41.487572299Z	53	PC: 139ca \| Get interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:48:41.489451065Z	53	PC: 139ca \| Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:48:41.49089394Z	53	PC: 139ca \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:48:41.492504292Z	53	PC: 139ca \| Get interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:48:41.493949392Z	53	PC: 139ca \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:48:41.495629408Z	53	PC: 139ca \| Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:48:41.4973029Z	53	PC: 139ca \| Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:48:41.499017431Z	53	PC: 139ca \| Get interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:48:41.500327692Z	53	PC: 139ca \| Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:48:41.501628857Z	53	PC: 139ca \| Get interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:48:41.504253779Z	53	PC: 139ca \| Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:48:41.506085771Z	53	PC: 139ca \| Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:48:41.507862166Z	53	PC: 139ca \| Get interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:48:41.510467296Z	53	PC: 139ca \| Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:48:41.512156542Z	53	PC: 139ca \| Get interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:48:41.513736852Z	53	PC: 139ca \| Get interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:48:41.51656722Z	53	PC: 139ca \| Get interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:48:41.517957274Z	53	PC: 139ca \| Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:48:41.519385801Z	37	PC: 139df \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:48:41.521284998Z	37	PC: 139e7 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:48:41.522893212Z	37	PC: 139ef \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:48:41.524554412Z	37	PC: 139f7 \| Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:48:41.526960668Z	68	PC: 14758 \| I/O control for devices (Set for = '')
2018-12-17T22:48:41.696190168Z	64	PC: 13d8d \| Write file or device (Write 0 bytes on handle 1)
2018-12-17T22:48:41.698504602Z	37	PC: 13b21 \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:48:41.699986911Z	37	PC: 13b21 \| Set interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:48:41.702649707Z	37	PC: 13b21 \| Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:48:41.703914427Z	37	PC: 13b21 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:48:41.705286371Z	37	PC: 13b21 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:48:41.707420312Z	37	PC: 13b21 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:48:41.708771775Z	37	PC: 13b21 \| Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:48:41.710109948Z	37	PC: 13b21 \| Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:48:41.712514429Z	37	PC: 13b21 \| Set interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:48:41.713791444Z	37	PC: 13b21 \| Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:48:41.715120216Z	37	PC: 13b21 \| Set interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:48:41.716959542Z	37	PC: 13b21 \| Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:48:41.718150583Z	37	PC: 13b21 \| Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:48:41.719228853Z	37	PC: 13b21 \| Set interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:48:41.721186623Z	37	PC: 13b21 \| Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:48:41.722392764Z	37	PC: 13b21 \| Set interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:48:41.723398396Z	37	PC: 13b21 \| Set interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:48:41.724424366Z	37	PC: 13b21 \| Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:48:41.726082655Z	37	PC: 13b21 \| Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:48:41.727464387Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.730579528Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.733786038Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.736105206Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.738372657Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.741493568Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.744708197Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.74847917Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.751817947Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.754266384Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.756702944Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.759571264Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.761911693Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.764218074Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.767632167Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.769937497Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.773303927Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.778289409Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.781544403Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.784226858Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.786791981Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.790493258Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.793420841Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.795895842Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.799261536Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.802254998Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.805151285Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.808884346Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.811662457Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.814353972Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.818222687Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.821051866Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.823829438Z	6	PC: 13ba8 \| Direct console I/O
2018-12-17T22:48:41.829894771Z	76	PC: 13b60 \| Terminate with return code (Return code = '200')