Sample viewer

vx.netlux.org/Virus.DOS.ES.666

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:49:00.00522292Z	74	PC: 12adf \| Reallocate memory
2018-12-17T22:49:00.006978997Z	26	PC: 12ae9 \| Set disk transfer address
2018-12-17T22:49:00.009018621Z	78	PC: 12af4 \| Find first file
2018-12-17T22:49:00.015929622Z	61	PC: 12b34 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:49:00.023990583Z	63	PC: 12b58 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:49:00.032904373Z	66	PC: 12b93 \| Move file pointer
2018-12-17T22:49:00.035087271Z	64	PC: 12b9e \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:49:00.051622901Z	66	PC: 12baa \| Move file pointer
2018-12-17T22:49:00.057168281Z	64	PC: 12bb5 \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:49:00.064841468Z	87	PC: 12b16 \| Get or set file date and time
2018-12-17T22:49:00.066900349Z	62	PC: 12b1a \| Close file
2018-12-17T22:49:00.076539589Z	79	PC: 12af4 \| Find next file
2018-12-17T22:49:00.080883907Z	61	PC: 12b34 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:49:00.088472754Z	63	PC: 12b58 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:49:00.096666255Z	66	PC: 12b93 \| Move file pointer
2018-12-17T22:49:00.098715911Z	64	PC: 12b9e \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:49:00.108435738Z	66	PC: 12baa \| Move file pointer
2018-12-17T22:49:00.110199272Z	64	PC: 12bb5 \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:49:00.117942211Z	87	PC: 12b16 \| Get or set file date and time
2018-12-17T22:49:00.119705936Z	62	PC: 12b1a \| Close file
2018-12-17T22:49:00.128778481Z	79	PC: 12af4 \| Find next file
2018-12-17T22:49:00.132675623Z	61	PC: 12b34 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:49:00.140522438Z	63	PC: 12b58 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:49:00.148881115Z	66	PC: 12b93 \| Move file pointer
2018-12-17T22:49:00.151721171Z	64	PC: 12b9e \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:49:00.161212044Z	66	PC: 12baa \| Move file pointer
2018-12-17T22:49:00.163202064Z	64	PC: 12bb5 \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:49:00.171315518Z	87	PC: 12b16 \| Get or set file date and time
2018-12-17T22:49:00.173440213Z	62	PC: 12b1a \| Close file
2018-12-17T22:49:00.182506986Z	79	PC: 12af4 \| Find next file
2018-12-17T22:49:00.187154396Z	61	PC: 12b34 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:49:00.210875974Z	63	PC: 12b58 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:49:00.219033063Z	66	PC: 12b93 \| Move file pointer
2018-12-17T22:49:00.222415706Z	64	PC: 12b9e \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:49:00.231712471Z	66	PC: 12baa \| Move file pointer
2018-12-17T22:49:00.234399227Z	64	PC: 12bb5 \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:49:00.242283417Z	87	PC: 12b16 \| Get or set file date and time
2018-12-17T22:49:00.244947699Z	62	PC: 12b1a \| Close file
2018-12-17T22:49:00.253667251Z	79	PC: 12af4 \| Find next file
2018-12-17T22:49:00.25696563Z	61	PC: 12b34 \| Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:49:00.264959752Z	63	PC: 12b58 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:49:00.272714649Z	66	PC: 12b93 \| Move file pointer
2018-12-17T22:49:00.275253395Z	64	PC: 12b9e \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:49:00.284608734Z	66	PC: 12baa \| Move file pointer
2018-12-17T22:49:00.285946759Z	64	PC: 12bb5 \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:49:00.290588098Z	87	PC: 12b16 \| Get or set file date and time
2018-12-17T22:49:00.292569769Z	62	PC: 12b1a \| Close file
2018-12-17T22:49:00.301679815Z	79	PC: 12af4 \| Find next file
2018-12-17T22:49:00.305058295Z	61	PC: 12b34 \| Open file (Filename = 'MANDEL.COM')
2018-12-17T22:49:00.313427874Z	63	PC: 12b58 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:49:00.320974076Z	66	PC: 12b93 \| Move file pointer
2018-12-17T22:49:00.322757908Z	64	PC: 12b9e \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:49:00.33202258Z	66	PC: 12baa \| Move file pointer
2018-12-17T22:49:00.335067155Z	64	PC: 12bb5 \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:49:00.34240624Z	87	PC: 12b16 \| Get or set file date and time
2018-12-17T22:49:00.346630852Z	62	PC: 12b1a \| Close file
2018-12-17T22:49:00.357455999Z	79	PC: 12af4 \| Find next file
2018-12-17T22:49:00.360753799Z	61	PC: 12b34 \| Open file (Filename = 'PAH.COM')
2018-12-17T22:49:00.368597584Z	63	PC: 12b58 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:49:00.377746121Z	66	PC: 12b93 \| Move file pointer
2018-12-17T22:49:00.379390669Z	64	PC: 12b9e \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:49:00.387975002Z	66	PC: 12baa \| Move file pointer
2018-12-17T22:49:00.390384707Z	64	PC: 12bb5 \| Write file or device (Write 5 bytes on handle 5)
2018-12-17T22:49:00.397535584Z	87	PC: 12b16 \| Get or set file date and time
2018-12-17T22:49:00.399101919Z	62	PC: 12b1a \| Close file
2018-12-17T22:49:00.41849499Z	79	PC: 12af4 \| Find next file
2018-12-17T22:49:00.426115681Z	61	PC: 12b34 \| Open file (Filename = 'TEST.COM')
2018-12-17T22:49:00.434351765Z	63	PC: 12b58 \| Read file or device (Read 5 bytes on handle 5)
2018-12-17T22:49:00.437405895Z	62	PC: 12b1a \| Close file
2018-12-17T22:49:00.439930209Z	79	PC: 12af4 \| Find next file
2018-12-17T22:49:00.442814578Z	26	PC: 12afd \| Set disk transfer address
2018-12-17T22:49:00.444590771Z	9	PC: 12a82 \| Display string (String= 'Goat file (COM). Size=00000064h/0000000100d bytes. ')
2018-12-17T22:49:00.449640644Z	76	PC: 12a86 \| Terminate with return code (Return code = '36')