Sample viewer

vx.netlux.org/Virus.DOS.HLLO.Gothmod.4200

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:48:49.405045163Z 53 PC: 12e7a | Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:48:49.406495998Z 53 PC: 12e7a | Get interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:48:49.408159544Z 53 PC: 12e7a | Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:48:49.409485685Z 53 PC: 12e7a | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:48:49.410851362Z 53 PC: 12e7a | Get interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:48:49.413338244Z 53 PC: 12e7a | Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:48:49.414952728Z 53 PC: 12e7a | Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:48:49.416583191Z 53 PC: 12e7a | Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:48:49.419412016Z 53 PC: 12e7a | Get interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:48:49.420807398Z 53 PC: 12e7a | Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:48:49.422289473Z 53 PC: 12e7a | Get interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:48:49.436522215Z 53 PC: 12e7a | Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:48:49.438400043Z 53 PC: 12e7a | Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:48:49.439965715Z 53 PC: 12e7a | Get interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:48:49.441815591Z 53 PC: 12e7a | Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:48:49.443831298Z 53 PC: 12e7a | Get interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:48:49.445169402Z 53 PC: 12e7a | Get interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:48:49.446500824Z 53 PC: 12e7a | Get interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:48:49.448911353Z 53 PC: 12e7a | Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:48:49.450985049Z 37 PC: 12e8f | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:48:49.452309167Z 37 PC: 12e97 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:48:49.454889104Z 37 PC: 12e9f | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:48:49.456750081Z 37 PC: 12ea7 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:48:49.459106809Z 68 PC: 13b72 | I/O control for devices (Set for = '��')
2018-12-17T22:48:49.462027426Z 25 PC: 1371b | Get default drive
2018-12-17T22:48:49.46333867Z 71 PC: 1372e | Get current directory
2018-12-17T22:48:49.467197882Z 26 PC: 12dec | Set disk transfer address
2018-12-17T22:48:49.469518773Z 78 PC: 12dec | Find first file
2018-12-17T22:48:49.477070702Z 48 PC: 1368e | Get DOS version
2018-12-17T22:48:49.479074547Z 61 PC: 13540 | Open file (Filename = 'A:\TEST.EXE')
2018-12-17T22:48:49.487184435Z 61 PC: 13540 | Open file (Filename = 'SLEEP.COM')
2018-12-17T22:48:49.49419114Z 66 PC: 13c71 | Move file pointer
2018-12-17T22:48:49.495735231Z 66 PC: 13c7f | Move file pointer
2018-12-17T22:48:49.497909977Z 66 PC: 13c8d | Move file pointer
2018-12-17T22:48:49.50008857Z 66 PC: 13c71 | Move file pointer
2018-12-17T22:48:49.501885577Z 66 PC: 13c7f | Move file pointer
2018-12-17T22:48:49.503988909Z 66 PC: 13c8d | Move file pointer
2018-12-17T22:48:49.505986172Z 64 PC: 13571 | Write file or device (Write 0 bytes on handle 6)
2018-12-17T22:48:49.520737137Z 63 PC: 13613 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T22:48:49.524006881Z 64 PC: 13613 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T22:48:49.528931283Z 63 PC: 13613 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T22:48:49.531837033Z 64 PC: 13613 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T22:48:49.534974548Z 63 PC: 13613 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T22:48:49.544575818Z 64 PC: 13613 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T22:48:49.548998959Z 63 PC: 13613 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T22:48:49.552143617Z 64 PC: 13613 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T22:48:49.556689138Z 63 PC: 13613 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T22:48:49.565121612Z 64 PC: 13613 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T22:48:49.56995891Z 63 PC: 13613 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T22:48:49.574456551Z 64 PC: 13613 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T22:48:49.577940167Z 63 PC: 13613 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T22:48:49.587017332Z 64 PC: 13613 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T22:48:49.591963435Z 63 PC: 13613 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T22:48:49.598571962Z 64 PC: 13613 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T22:48:49.602016133Z 63 PC: 13613 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T22:48:49.611768457Z 64 PC: 13613 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T22:48:49.616336119Z 63 PC: 13613 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T22:48:49.619475528Z 64 PC: 13613 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T22:48:49.622977608Z 63 PC: 13613 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T22:48:49.632335731Z 64 PC: 13613 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T22:48:49.636483835Z 63 PC: 13613 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T22:48:49.639263678Z 64 PC: 13613 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T22:48:49.643126015Z 63 PC: 13613 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T22:48:49.651921741Z 64 PC: 13613 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T22:48:49.656310327Z 63 PC: 13613 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T22:48:49.660999828Z 64 PC: 13613 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T22:48:49.664442386Z 63 PC: 13613 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T22:48:49.672712245Z 64 PC: 13613 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T22:48:49.67731884Z 63 PC: 13613 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T22:48:49.681320008Z 64 PC: 13613 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T22:48:49.684705068Z 63 PC: 13613 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T22:48:49.693497669Z 64 PC: 13613 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T22:48:49.698859413Z 63 PC: 13613 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T22:48:49.701946804Z 64 PC: 13613 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T22:48:49.705114485Z 63 PC: 13613 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T22:48:49.708853922Z 64 PC: 13613 | Write file or device (Write 256 bytes on handle 6)
2018-12-17T22:48:49.717340207Z 63 PC: 13613 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T22:48:49.720879136Z 64 PC: 13613 | Write file or device (Write 192 bytes on handle 6)
2018-12-17T22:48:49.72509098Z 63 PC: 13613 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T22:48:49.728569355Z 62 PC: 13590 | Close file
2018-12-17T22:48:49.730836104Z 62 PC: 13590 | Close file
2018-12-17T22:48:49.740620568Z 64 PC: 13298 | Write file or device (Write 35 bytes on handle 1)
2018-12-17T22:48:49.74602888Z 64 PC: 13298 | Write file or device (Write 0 bytes on handle 1)
2018-12-17T22:48:49.748286141Z 37 PC: 12fd1 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:48:49.750328899Z 37 PC: 12fd1 | Set interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:48:49.751656744Z 37 PC: 12fd1 | Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:48:49.752897856Z 37 PC: 12fd1 | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:48:49.754425226Z 37 PC: 12fd1 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:48:49.756200712Z 37 PC: 12fd1 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:48:49.757461642Z 37 PC: 12fd1 | Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:48:49.758720206Z 37 PC: 12fd1 | Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:48:49.761114615Z 37 PC: 12fd1 | Set interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:48:49.762388328Z 37 PC: 12fd1 | Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:48:49.763633418Z 37 PC: 12fd1 | Set interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:48:49.765786934Z 37 PC: 12fd1 | Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:48:49.767036562Z 37 PC: 12fd1 | Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:48:49.7682867Z 37 PC: 12fd1 | Set interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:48:49.770795344Z 37 PC: 12fd1 | Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:48:49.772055662Z 37 PC: 12fd1 | Set interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:48:49.773309248Z 37 PC: 12fd1 | Set interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:48:49.775500925Z 37 PC: 12fd1 | Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:48:49.77675406Z 37 PC: 12fd1 | Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:48:49.778101852Z 76 PC: 13010 | Terminate with return code (Return code = '0')