Sample viewer

vx.netlux.org/Virus.DOS.BlackJec.246.b

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:48:43.233838151Z	78	PC: 12a7c \| Find first file
2018-12-17T22:48:43.241025356Z	47	PC: 12a86 \| Get disk transfer address
2018-12-17T22:48:43.24306044Z	61	PC: 12aac \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:48:43.250393899Z	63	PC: 12aba \| Read file or device (Read 407 bytes on handle 5)
2018-12-17T22:48:43.257433395Z	60	PC: 12ad9 \| Create or truncate file
2018-12-17T22:48:43.284257536Z	64	PC: 12aeb \| Write file or device (Write 653 bytes on handle 6)
2018-12-17T22:48:43.294160894Z	62	PC: 12aef \| Close file
2018-12-17T22:48:43.303193125Z	79	PC: 12af4 \| Find next file
2018-12-17T22:48:43.306789782Z	47	PC: 12a86 \| Get disk transfer address
2018-12-17T22:48:43.308346056Z	61	PC: 12aac \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:48:43.315938072Z	63	PC: 12aba \| Read file or device (Read 27 bytes on handle 6)
2018-12-17T22:48:43.324673364Z	60	PC: 12ad9 \| Create or truncate file
2018-12-17T22:48:43.339274849Z	64	PC: 12aeb \| Write file or device (Write 273 bytes on handle 7)
2018-12-17T22:48:43.343745319Z	62	PC: 12aef \| Close file
2018-12-17T22:48:43.353863801Z	79	PC: 12af4 \| Find next file
2018-12-17T22:48:43.357370891Z	47	PC: 12a86 \| Get disk transfer address
2018-12-17T22:48:43.359098066Z	61	PC: 12aac \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:48:43.367847165Z	63	PC: 12aba \| Read file or device (Read 92 bytes on handle 7)
2018-12-17T22:48:43.375398092Z	60	PC: 12ad9 \| Create or truncate file
2018-12-17T22:48:43.389024956Z	64	PC: 12aeb \| Write file or device (Write 338 bytes on handle 8)
2018-12-17T22:48:43.393209629Z	62	PC: 12aef \| Close file
2018-12-17T22:48:43.403709267Z	79	PC: 12af4 \| Find next file
2018-12-17T22:48:43.407044453Z	47	PC: 12a86 \| Get disk transfer address
2018-12-17T22:48:43.40882013Z	61	PC: 12aac \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:48:43.417792959Z	63	PC: 12aba \| Read file or device (Read 29 bytes on handle 8)
2018-12-17T22:48:43.425058802Z	60	PC: 12ad9 \| Create or truncate file
2018-12-17T22:48:43.439350464Z	64	PC: 12aeb \| Write file or device (Write 275 bytes on handle 9)
2018-12-17T22:48:43.444479572Z	62	PC: 12aef \| Close file
2018-12-17T22:48:43.453464273Z	79	PC: 12af4 \| Find next file
2018-12-17T22:48:43.456429435Z	47	PC: 12a86 \| Get disk transfer address
2018-12-17T22:48:43.458759422Z	61	PC: 12aac \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:48:43.465841669Z	63	PC: 12aba \| Read file or device (Read 29 bytes on handle 9)
2018-12-17T22:48:43.472999719Z	60	PC: 12ad9 \| Create or truncate file
2018-12-17T22:48:43.487888153Z	64	PC: 12aeb \| Write file or device (Write 275 bytes on handle 10)
2018-12-17T22:48:43.492866266Z	62	PC: 12aef \| Close file
2018-12-17T22:48:43.502588133Z	79	PC: 12af4 \| Find next file
2018-12-17T22:48:43.506119709Z	47	PC: 12a86 \| Get disk transfer address
2018-12-17T22:48:43.508468773Z	61	PC: 12aac \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:48:43.515984153Z	63	PC: 12aba \| Read file or device (Read 501 bytes on handle 10)
2018-12-17T22:48:43.523679232Z	60	PC: 12ad9 \| Create or truncate file
2018-12-17T22:48:43.538242916Z	64	PC: 12aeb \| Write file or device (Write 747 bytes on handle 11)
2018-12-17T22:48:43.547712018Z	62	PC: 12aef \| Close file
2018-12-17T22:48:43.55684102Z	79	PC: 12af4 \| Find next file
2018-12-17T22:48:43.561583271Z	47	PC: 12a86 \| Get disk transfer address
2018-12-17T22:48:43.563124286Z	61	PC: 12aac \| Open file (Filename = 'PAH.COM')
2018-12-17T22:48:43.570399265Z	63	PC: 12aba \| Read file or device (Read 29 bytes on handle 11)
2018-12-17T22:48:43.578633767Z	60	PC: 12ad9 \| Create or truncate file
2018-12-17T22:48:43.592010682Z	64	PC: 12aeb \| Write file or device (Write 275 bytes on handle 12)
2018-12-17T22:48:43.596374541Z	62	PC: 12aef \| Close file
2018-12-17T22:48:43.606936486Z	79	PC: 12af4 \| Find next file
2018-12-17T22:48:43.610153921Z	47	PC: 12a86 \| Get disk transfer address
2018-12-17T22:48:43.611942843Z	61	PC: 12aac \| Open file (Filename = 'TEST.COM')
2018-12-17T22:48:43.621231906Z	63	PC: 12aba \| Read file or device (Read 251 bytes on handle 12)
2018-12-17T22:48:43.624479658Z	79	PC: 12af4 \| Find next file
2018-12-17T22:48:43.628376861Z	76	PC: 12a45 \| Terminate with return code (Return code = '0')