Sample viewer

vx.netlux.org/Virus.DOS.Kim.1000

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:49:08.92814543Z 42 PC: 12b87 | Get date 0x12b87: cmp dh, 2
0x12b8a: jne 0x12be4
0x12b8c: cmp dl, 0x1d
0x12b8f: jne 0x12be4
0x12b91: mov ah, 9
0x12b93: mov dx, si
0x12b95: add dx, 0x48
0x12b98: int3
0x12b99: mov cx, 5
0x12b9c: mov ax, word ptr [si]
0x12b9e: xor dx, dx
0x12ba0: mov bx, 0xa
0x12ba3: div bx
0x12ba5: push dx
0x12ba6: loop 0x12b9e
0x12ba8: mov cx, 5
0x12bab: pop dx
0x12bac: add dl, 0x30
0x12baf: mov ah, 2
0x12bb1: int 1
2018-12-17T22:49:08.931172197Z 26 PC: 12bf4 | Set disk transfer address
2018-12-17T22:49:08.933642708Z 78 PC: 12c08 | Find first file
2018-12-17T22:49:08.941032323Z 67 PC: 12ca2 | Get or set file attributes
2018-12-17T22:49:08.947411197Z 67 PC: 12cae | Get or set file attributes
2018-12-17T22:49:08.965106525Z 61 PC: 12cb4 | Open file (Filename = 'SLEEP.COM')
2018-12-17T22:49:08.97248622Z 87 PC: 12cbf | Get or set file date and time
2018-12-17T22:49:08.974128555Z 66 PC: 12cd2 | Move file pointer
2018-12-17T22:49:08.976393962Z 66 PC: 12cea | Move file pointer
2018-12-17T22:49:08.978919657Z 63 PC: 12cf5 | Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:49:08.985968761Z 66 PC: 12d1d | Move file pointer
2018-12-17T22:49:08.988426289Z 64 PC: 12d29 | Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:49:09.00228112Z 66 PC: 12d76 | Move file pointer
2018-12-17T22:49:09.00425558Z 64 PC: 12d7d | Write file or device (Write 1000 bytes on handle 5)
2018-12-17T22:49:09.015472936Z 87 PC: 12d88 | Get or set file date and time
2018-12-17T22:49:09.017487831Z 62 PC: 12d8e | Close file
2018-12-17T22:49:09.026256116Z 67 PC: 12d97 | Get or set file attributes
2018-12-17T22:49:09.037782983Z 79 PC: 12c1c | Find next file
2018-12-17T22:49:09.041972454Z 67 PC: 12ca2 | Get or set file attributes
2018-12-17T22:49:09.048443843Z 67 PC: 12cae | Get or set file attributes
2018-12-17T22:49:09.059094454Z 61 PC: 12cb4 | Open file (Filename = 'PRINT.COM')
2018-12-17T22:49:09.074001673Z 87 PC: 12cbf | Get or set file date and time
2018-12-17T22:49:09.075627738Z 66 PC: 12cd2 | Move file pointer
2018-12-17T22:49:09.077168312Z 62 PC: 12d8e | Close file
2018-12-17T22:49:09.081604076Z 67 PC: 12d97 | Get or set file attributes
2018-12-17T22:49:09.092095027Z 79 PC: 12c1c | Find next file
2018-12-17T22:49:09.095194862Z 67 PC: 12ca2 | Get or set file attributes
2018-12-17T22:49:09.10163394Z 67 PC: 12cae | Get or set file attributes
2018-12-17T22:49:09.112208839Z 61 PC: 12cb4 | Open file (Filename = 'HELLO.COM')
2018-12-17T22:49:09.119607099Z 87 PC: 12cbf | Get or set file date and time
2018-12-17T22:49:09.12263069Z 66 PC: 12cd2 | Move file pointer
2018-12-17T22:49:09.12446155Z 62 PC: 12d8e | Close file
2018-12-17T22:49:09.12679808Z 67 PC: 12d97 | Get or set file attributes
2018-12-17T22:49:09.137840817Z 79 PC: 12c1c | Find next file
2018-12-17T22:49:09.141360941Z 67 PC: 12ca2 | Get or set file attributes
2018-12-17T22:49:09.148222223Z 67 PC: 12cae | Get or set file attributes
2018-12-17T22:49:09.15797116Z 61 PC: 12cb4 | Open file (Filename = 'PHANG.COM')
2018-12-17T22:49:09.164638837Z 87 PC: 12cbf | Get or set file date and time
2018-12-17T22:49:09.16629059Z 66 PC: 12cd2 | Move file pointer
2018-12-17T22:49:09.167877622Z 62 PC: 12d8e | Close file
2018-12-17T22:49:09.171512131Z 67 PC: 12d97 | Get or set file attributes
2018-12-17T22:49:09.180050043Z 79 PC: 12c1c | Find next file
2018-12-17T22:49:09.182846787Z 67 PC: 12ca2 | Get or set file attributes
2018-12-17T22:49:09.189626024Z 67 PC: 12cae | Get or set file attributes
2018-12-17T22:49:09.198225111Z 61 PC: 12cb4 | Open file (Filename = 'PRINTA~1.COM')
2018-12-17T22:49:09.211817088Z 87 PC: 12cbf | Get or set file date and time
2018-12-17T22:49:09.215050733Z 66 PC: 12cd2 | Move file pointer
2018-12-17T22:49:09.217121123Z 62 PC: 12d8e | Close file
2018-12-17T22:49:09.21956244Z 67 PC: 12d97 | Get or set file attributes
2018-12-17T22:49:09.231155813Z 79 PC: 12c1c | Find next file
2018-12-17T22:49:09.234845986Z 67 PC: 12ca2 | Get or set file attributes
2018-12-17T22:49:09.241044141Z 67 PC: 12cae | Get or set file attributes
2018-12-17T22:49:09.252692757Z 61 PC: 12cb4 | Open file (Filename = 'MANDEL.COM')
2018-12-17T22:49:09.260598421Z 87 PC: 12cbf | Get or set file date and time
2018-12-17T22:49:09.262744303Z 66 PC: 12cd2 | Move file pointer
2018-12-17T22:49:09.264826675Z 66 PC: 12cea | Move file pointer
2018-12-17T22:49:09.267679075Z 63 PC: 12cf5 | Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:49:09.275142287Z 66 PC: 12d1d | Move file pointer
2018-12-17T22:49:09.27663943Z 64 PC: 12d29 | Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:49:09.281434079Z 66 PC: 12d76 | Move file pointer
2018-12-17T22:49:09.283205296Z 64 PC: 12d7d | Write file or device (Write 1000 bytes on handle 5)
2018-12-17T22:49:09.292524997Z 87 PC: 12d88 | Get or set file date and time
2018-12-17T22:49:09.295391793Z 62 PC: 12d8e | Close file
2018-12-17T22:49:09.303803287Z 67 PC: 12d97 | Get or set file attributes
2018-12-17T22:49:09.314514582Z 79 PC: 12c1c | Find next file
2018-12-17T22:49:09.318522462Z 67 PC: 12ca2 | Get or set file attributes
2018-12-17T22:49:09.325299385Z 67 PC: 12cae | Get or set file attributes
2018-12-17T22:49:09.335933455Z 61 PC: 12cb4 | Open file (Filename = 'PAH.COM')
2018-12-17T22:49:09.348834504Z 87 PC: 12cbf | Get or set file date and time
2018-12-17T22:49:09.351462311Z 66 PC: 12cd2 | Move file pointer
2018-12-17T22:49:09.353293021Z 62 PC: 12d8e | Close file
2018-12-17T22:49:09.355907774Z 67 PC: 12d97 | Get or set file attributes
2018-12-17T22:49:09.367331898Z 79 PC: 12c1c | Find next file
2018-12-17T22:49:09.370458783Z 67 PC: 12ca2 | Get or set file attributes
2018-12-17T22:49:09.376771384Z 67 PC: 12cae | Get or set file attributes
2018-12-17T22:49:09.388481345Z 61 PC: 12cb4 | Open file (Filename = 'TEST.COM')
2018-12-17T22:49:09.396051969Z 87 PC: 12cbf | Get or set file date and time
2018-12-17T22:49:09.398199464Z 66 PC: 12cd2 | Move file pointer
2018-12-17T22:49:09.401530212Z 66 PC: 12cea | Move file pointer
2018-12-17T22:49:09.403435021Z 63 PC: 12cf5 | Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:49:09.411231108Z 62 PC: 12d8e | Close file
2018-12-17T22:49:09.414181372Z 67 PC: 12d97 | Get or set file attributes
2018-12-17T22:49:09.425614894Z 79 PC: 12c1c | Find next file
2018-12-17T22:49:09.428368557Z 67 PC: 12ca2 | Get or set file attributes
2018-12-17T22:49:09.437558724Z 67 PC: 12cae | Get or set file attributes
2018-12-17T22:49:09.799599757Z 61 PC: 12cb4 | Open file (Filename = 'C:\DOS\EDIT.COM')
2018-12-17T22:49:09.808064902Z 87 PC: 12cbf | Get or set file date and time
2018-12-17T22:49:09.810363962Z 66 PC: 12cd2 | Move file pointer
2018-12-17T22:49:09.813545489Z 66 PC: 12cea | Move file pointer
2018-12-17T22:49:09.81554164Z 63 PC: 12cf5 | Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:49:09.8227694Z 66 PC: 12d1d | Move file pointer
2018-12-17T22:49:09.825743607Z 64 PC: 12d29 | Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:49:09.830763229Z 66 PC: 12d76 | Move file pointer
2018-12-17T22:49:09.832836735Z 64 PC: 12d7d | Write file or device (Write 1000 bytes on handle 5)
2018-12-17T22:49:09.842885545Z 87 PC: 12d88 | Get or set file date and time
2018-12-17T22:49:09.844956716Z 62 PC: 12d8e | Close file
2018-12-17T22:49:09.852007364Z 67 PC: 12d97 | Get or set file attributes

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":9786,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:23:46.912272876Z 42 PC: 12b87 | Get date 0x12b87: cmp dh, 2
0x12b8a: jne 0x12be4
0x12b8c: cmp dl, 0x1d
0x12b8f: jne 0x12be4
0x12b91: mov ah, 9
0x12b93: mov dx, si
0x12b95: add dx, 0x48
0x12b98: int3
0x12b99: mov cx, 5
0x12b9c: mov ax, word ptr [si]
0x12b9e: xor dx, dx
0x12ba0: mov bx, 0xa
0x12ba3: div bx
0x12ba5: push dx
0x12ba6: loop 0x12b9e
0x12ba8: mov cx, 5
0x12bab: pop dx
0x12bac: add dl, 0x30
0x12baf: mov ah, 2
0x12bb1: int 1
2018-12-25T12:23:46.923178973Z 26 PC: 12bf4 | Set disk transfer address
2018-12-25T12:23:46.924509916Z 78 PC: 12c08 | Find first file
2018-12-25T12:23:46.931110375Z 67 PC: 12ca2 | Get or set file attributes
2018-12-25T12:23:46.937638616Z 67 PC: 12cae | Get or set file attributes
2018-12-25T12:23:46.955279165Z 61 PC: 12cb4 | Open file (Filename = 'SLEEP.COM')
2018-12-25T12:23:46.962549602Z 87 PC: 12cbf | Get or set file date and time
2018-12-25T12:23:46.964136749Z 66 PC: 12cd2 | Move file pointer
2018-12-25T12:23:46.966248554Z 66 PC: 12cea | Move file pointer
2018-12-25T12:23:46.967856758Z 63 PC: 12cf5 | Read file or device (Read 3 bytes on handle 5)
2018-12-25T12:23:46.974959556Z 66 PC: 12d1d | Move file pointer
2018-12-25T12:23:46.977515597Z 64 PC: 12d29 | Write file or device (Write 3 bytes on handle 5)
2018-12-25T12:23:46.98165107Z 66 PC: 12d76 | Move file pointer
2018-12-25T12:23:46.983540064Z 64 PC: 12d7d | Write file or device (Write 1000 bytes on handle 5)
2018-12-25T12:23:46.993878428Z 87 PC: 12d88 | Get or set file date and time
2018-12-25T12:23:46.995500945Z 62 PC: 12d8e | Close file
2018-12-25T12:23:47.004062097Z 67 PC: 12d97 | Get or set file attributes
2018-12-25T12:23:47.01583099Z 79 PC: 12c1c | Find next file
2018-12-25T12:23:47.019605565Z 67 PC: 12ca2 | Get or set file attributes (See above)
2018-12-25T12:23:47.026439615Z 67 PC: 12cae | Get or set file attributes (See above)
2018-12-25T12:23:47.038938497Z 61 PC: 12cb4 | Open file (See above)
2018-12-25T12:23:47.052437761Z 87 PC: 12cbf | Get or set file date and time (See above)
2018-12-25T12:23:47.054037675Z 66 PC: 12cd2 | Move file pointer (See above)
2018-12-25T12:23:47.056194631Z 62 PC: 12d8e | Close file (See above)
2018-12-25T12:23:47.058079007Z 67 PC: 12d97 | Get or set file attributes (See above)
2018-12-25T12:23:47.068839425Z 79 PC: 12c1c | Find next file (See above)
2018-12-25T12:23:47.072622166Z 67 PC: 12ca2 | Get or set file attributes (See above)
2018-12-25T12:23:47.07937029Z 67 PC: 12cae | Get or set file attributes (See above)
2018-12-25T12:23:47.090191858Z 61 PC: 12cb4 | Open file (See above)
2018-12-25T12:23:47.09711957Z 87 PC: 12cbf | Get or set file date and time (See above)
2018-12-25T12:23:47.098718475Z 66 PC: 12cd2 | Move file pointer (See above)
2018-12-25T12:23:47.099933537Z 62 PC: 12d8e | Close file (See above)
2018-12-25T12:23:47.101303307Z 67 PC: 12d97 | Get or set file attributes (See above)
2018-12-25T12:23:47.113474104Z 79 PC: 12c1c | Find next file (See above)
2018-12-25T12:23:47.116980128Z 67 PC: 12ca2 | Get or set file attributes (See above)
2018-12-25T12:23:47.123750926Z 67 PC: 12cae | Get or set file attributes (See above)
2018-12-25T12:23:47.135820388Z 61 PC: 12cb4 | Open file (See above)
2018-12-25T12:23:47.143420862Z 87 PC: 12cbf | Get or set file date and time (See above)
2018-12-25T12:23:47.145094753Z 66 PC: 12cd2 | Move file pointer (See above)
2018-12-25T12:23:47.146987233Z 62 PC: 12d8e | Close file (See above)
2018-12-25T12:23:47.148946755Z 67 PC: 12d97 | Get or set file attributes (See above)
2018-12-25T12:23:47.159904339Z 79 PC: 12c1c | Find next file (See above)
2018-12-25T12:23:47.162592424Z 67 PC: 12ca2 | Get or set file attributes (See above)
2018-12-25T12:23:47.169531736Z 67 PC: 12cae | Get or set file attributes (See above)
2018-12-25T12:23:47.177906003Z 61 PC: 12cb4 | Open file (See above)
2018-12-25T12:23:47.185385163Z 87 PC: 12cbf | Get or set file date and time (See above)
2018-12-25T12:23:47.187031461Z 66 PC: 12cd2 | Move file pointer (See above)
2018-12-25T12:23:47.188645515Z 62 PC: 12d8e | Close file (See above)
2018-12-25T12:23:47.190762317Z 67 PC: 12d97 | Get or set file attributes (See above)
2018-12-25T12:23:47.201936571Z 79 PC: 12c1c | Find next file (See above)
2018-12-25T12:23:47.204748947Z 67 PC: 12ca2 | Get or set file attributes (See above)
2018-12-25T12:23:47.210988861Z 67 PC: 12cae | Get or set file attributes (See above)
2018-12-25T12:23:47.221880825Z 61 PC: 12cb4 | Open file (See above)
2018-12-25T12:23:47.23554648Z 87 PC: 12cbf | Get or set file date and time (See above)
2018-12-25T12:23:47.237540611Z 66 PC: 12cd2 | Move file pointer (See above)
2018-12-25T12:23:47.240549792Z 66 PC: 12cea | Move file pointer (See above)
2018-12-25T12:23:47.242466294Z 63 PC: 12cf5 | Read file or device (See above)
2018-12-25T12:23:47.249918853Z 66 PC: 12d1d | Move file pointer (See above)
2018-12-25T12:23:47.252585832Z 64 PC: 12d29 | Write file or device (See above)
2018-12-25T12:23:47.256481204Z 66 PC: 12d76 | Move file pointer (See above)
2018-12-25T12:23:47.258341394Z 64 PC: 12d7d | Write file or device (See above)
2018-12-25T12:23:47.269007287Z 87 PC: 12d88 | Get or set file date and time (See above)
2018-12-25T12:23:47.27119767Z 62 PC: 12d8e | Close file (See above)
2018-12-25T12:23:47.280068451Z 67 PC: 12d97 | Get or set file attributes (See above)
2018-12-25T12:23:47.290100094Z 79 PC: 12c1c | Find next file (See above)
2018-12-25T12:23:47.292618157Z 67 PC: 12ca2 | Get or set file attributes (See above)
2018-12-25T12:23:47.296441357Z 67 PC: 12cae | Get or set file attributes (See above)
2018-12-25T12:23:47.307633522Z 61 PC: 12cb4 | Open file (See above)
2018-12-25T12:23:47.314624419Z 87 PC: 12cbf | Get or set file date and time (See above)
2018-12-25T12:23:47.315702177Z 66 PC: 12cd2 | Move file pointer (See above)
2018-12-25T12:23:47.316863073Z 62 PC: 12d8e | Close file (See above)
2018-12-25T12:23:47.319016991Z 67 PC: 12d97 | Get or set file attributes (See above)
2018-12-25T12:23:47.325507373Z 79 PC: 12c1c | Find next file (See above)
2018-12-25T12:23:47.32853122Z 67 PC: 12ca2 | Get or set file attributes (See above)
2018-12-25T12:23:47.335422489Z 67 PC: 12cae | Get or set file attributes (See above)
2018-12-25T12:23:47.346282753Z 61 PC: 12cb4 | Open file (See above)
2018-12-25T12:23:47.359277655Z 87 PC: 12cbf | Get or set file date and time (See above)
2018-12-25T12:23:47.361959111Z 66 PC: 12cd2 | Move file pointer (See above)
2018-12-25T12:23:47.364234004Z 66 PC: 12cea | Move file pointer (See above)
2018-12-25T12:23:47.366055849Z 63 PC: 12cf5 | Read file or device (See above)
2018-12-25T12:23:47.374059608Z 62 PC: 12d8e | Close file (See above)
2018-12-25T12:23:47.376643911Z 67 PC: 12d97 | Get or set file attributes (See above)
2018-12-25T12:23:47.383446916Z 79 PC: 12c1c | Find next file (See above)
2018-12-25T12:23:47.386396012Z 67 PC: 12ca2 | Get or set file attributes (See above)
2018-12-25T12:23:47.393261017Z 67 PC: 12cae | Get or set file attributes (See above)
2018-12-25T12:23:47.749246132Z 61 PC: 12cb4 | Open file (See above)
2018-12-25T12:23:47.757388513Z 87 PC: 12cbf | Get or set file date and time (See above)
2018-12-25T12:23:47.760168893Z 66 PC: 12cd2 | Move file pointer (See above)
2018-12-25T12:23:47.761783403Z 66 PC: 12cea | Move file pointer (See above)
2018-12-25T12:23:47.763216367Z 63 PC: 12cf5 | Read file or device (See above)
2018-12-25T12:23:47.770096748Z 66 PC: 12d1d | Move file pointer (See above)
2018-12-25T12:23:47.772041203Z 64 PC: 12d29 | Write file or device (See above)
2018-12-25T12:23:47.776219746Z 66 PC: 12d76 | Move file pointer (See above)
2018-12-25T12:23:47.778912366Z 64 PC: 12d7d | Write file or device (See above)
2018-12-25T12:23:47.788214803Z 87 PC: 12d88 | Get or set file date and time (See above)
2018-12-25T12:23:47.790251186Z 62 PC: 12d8e | Close file (See above)
2018-12-25T12:23:47.797612751Z 67 PC: 12d97 | Get or set file attributes (See above)

{"DateBased":true,"Day":1,"Month":2,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":9786,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:23:47.107423254Z 42 PC: 12b87 | Get date 0x12b87: cmp dh, 2
0x12b8a: jne 0x12be4
0x12b8c: cmp dl, 0x1d
0x12b8f: jne 0x12be4
0x12b91: mov ah, 9
0x12b93: mov dx, si
0x12b95: add dx, 0x48
0x12b98: int3
0x12b99: mov cx, 5
0x12b9c: mov ax, word ptr [si]
0x12b9e: xor dx, dx
0x12ba0: mov bx, 0xa
0x12ba3: div bx
0x12ba5: push dx
0x12ba6: loop 0x12b9e
0x12ba8: mov cx, 5
0x12bab: pop dx
0x12bac: add dl, 0x30
0x12baf: mov ah, 2
0x12bb1: int 1
2018-12-25T12:23:47.110473625Z 26 PC: 12bf4 | Set disk transfer address
2018-12-25T12:23:47.112240121Z 78 PC: 12c08 | Find first file
2018-12-25T12:23:47.119361884Z 67 PC: 12ca2 | Get or set file attributes
2018-12-25T12:23:47.126174305Z 67 PC: 12cae | Get or set file attributes
2018-12-25T12:23:47.143402539Z 61 PC: 12cb4 | Open file (Filename = 'SLEEP.COM')
2018-12-25T12:23:47.151209158Z 87 PC: 12cbf | Get or set file date and time
2018-12-25T12:23:47.153505738Z 66 PC: 12cd2 | Move file pointer
2018-12-25T12:23:47.156248286Z 66 PC: 12cea | Move file pointer
2018-12-25T12:23:47.1579472Z 63 PC: 12cf5 | Read file or device (Read 3 bytes on handle 5)
2018-12-25T12:23:47.165370635Z 66 PC: 12d1d | Move file pointer
2018-12-25T12:23:47.17650939Z 64 PC: 12d29 | Write file or device (Write 3 bytes on handle 5)
2018-12-25T12:23:47.180783434Z 66 PC: 12d76 | Move file pointer
2018-12-25T12:23:47.18312758Z 64 PC: 12d7d | Write file or device (Write 1000 bytes on handle 5)
2018-12-25T12:23:47.193772133Z 87 PC: 12d88 | Get or set file date and time
2018-12-25T12:23:47.196019733Z 62 PC: 12d8e | Close file
2018-12-25T12:23:47.205137192Z 67 PC: 12d97 | Get or set file attributes
2018-12-25T12:23:47.217625453Z 79 PC: 12c1c | Find next file
2018-12-25T12:23:47.222003293Z 67 PC: 12ca2 | Get or set file attributes (See above)
2018-12-25T12:23:47.228726578Z 67 PC: 12cae | Get or set file attributes (See above)
2018-12-25T12:23:47.240176813Z 61 PC: 12cb4 | Open file (See above)
2018-12-25T12:23:47.254887646Z 87 PC: 12cbf | Get or set file date and time (See above)
2018-12-25T12:23:47.256778915Z 66 PC: 12cd2 | Move file pointer (See above)
2018-12-25T12:23:47.258289957Z 62 PC: 12d8e | Close file (See above)
2018-12-25T12:23:47.261509712Z 67 PC: 12d97 | Get or set file attributes (See above)
2018-12-25T12:23:47.272670326Z 79 PC: 12c1c | Find next file (See above)
2018-12-25T12:23:47.27599455Z 67 PC: 12ca2 | Get or set file attributes (See above)
2018-12-25T12:23:47.283444204Z 67 PC: 12cae | Get or set file attributes (See above)
2018-12-25T12:23:47.294796059Z 61 PC: 12cb4 | Open file (See above)
2018-12-25T12:23:47.302221606Z 87 PC: 12cbf | Get or set file date and time (See above)
2018-12-25T12:23:47.307144668Z 66 PC: 12cd2 | Move file pointer (See above)
2018-12-25T12:23:47.313765342Z 62 PC: 12d8e | Close file (See above)
2018-12-25T12:23:47.316192557Z 67 PC: 12d97 | Get or set file attributes (See above)
2018-12-25T12:23:47.327730458Z 79 PC: 12c1c | Find next file (See above)
2018-12-25T12:23:47.331154418Z 67 PC: 12ca2 | Get or set file attributes (See above)
2018-12-25T12:23:47.33741839Z 67 PC: 12cae | Get or set file attributes (See above)
2018-12-25T12:23:47.34888114Z 61 PC: 12cb4 | Open file (See above)
2018-12-25T12:23:47.356728906Z 87 PC: 12cbf | Get or set file date and time (See above)
2018-12-25T12:23:47.358262564Z 66 PC: 12cd2 | Move file pointer (See above)
2018-12-25T12:23:47.359905411Z 62 PC: 12d8e | Close file (See above)
2018-12-25T12:23:47.363207769Z 67 PC: 12d97 | Get or set file attributes (See above)
2018-12-25T12:23:47.374586839Z 79 PC: 12c1c | Find next file (See above)
2018-12-25T12:23:47.377740562Z 67 PC: 12ca2 | Get or set file attributes (See above)
2018-12-25T12:23:47.390872036Z 67 PC: 12cae | Get or set file attributes (See above)
2018-12-25T12:23:47.402211168Z 61 PC: 12cb4 | Open file (See above)
2018-12-25T12:23:47.410201254Z 87 PC: 12cbf | Get or set file date and time (See above)
2018-12-25T12:23:47.412619936Z 66 PC: 12cd2 | Move file pointer (See above)
2018-12-25T12:23:47.414982986Z 62 PC: 12d8e | Close file (See above)
2018-12-25T12:23:47.417356324Z 67 PC: 12d97 | Get or set file attributes (See above)
2018-12-25T12:23:47.589937548Z 79 PC: 12c1c | Find next file (See above)
2018-12-25T12:23:47.592882939Z 67 PC: 12ca2 | Get or set file attributes (See above)
2018-12-25T12:23:47.599183388Z 67 PC: 12cae | Get or set file attributes (See above)
2018-12-25T12:23:47.748024949Z 61 PC: 12cb4 | Open file (See above)
2018-12-25T12:23:47.756147962Z 87 PC: 12cbf | Get or set file date and time (See above)
2018-12-25T12:23:47.757488661Z 66 PC: 12cd2 | Move file pointer (See above)
2018-12-25T12:23:47.758828398Z 66 PC: 12cea | Move file pointer (See above)
2018-12-25T12:23:47.760948348Z 63 PC: 12cf5 | Read file or device (See above)
2018-12-25T12:23:47.767902302Z 66 PC: 12d1d | Move file pointer (See above)
2018-12-25T12:23:47.769205811Z 64 PC: 12d29 | Write file or device (See above)
2018-12-25T12:23:47.776530904Z 66 PC: 12d76 | Move file pointer (See above)
2018-12-25T12:23:47.778298107Z 64 PC: 12d7d | Write file or device (See above)
2018-12-25T12:23:47.787938297Z 87 PC: 12d88 | Get or set file date and time (See above)
2018-12-25T12:23:47.790376391Z 62 PC: 12d8e | Close file (See above)
2018-12-25T12:23:47.798917057Z 67 PC: 12d97 | Get or set file attributes (See above)
2018-12-25T12:23:47.810373133Z 79 PC: 12c1c | Find next file (See above)
2018-12-25T12:23:47.813993852Z 67 PC: 12ca2 | Get or set file attributes (See above)
2018-12-25T12:23:47.820382296Z 67 PC: 12cae | Get or set file attributes (See above)
2018-12-25T12:23:47.831092693Z 61 PC: 12cb4 | Open file (See above)
2018-12-25T12:23:47.839097178Z 87 PC: 12cbf | Get or set file date and time (See above)
2018-12-25T12:23:47.841968326Z 66 PC: 12cd2 | Move file pointer (See above)
2018-12-25T12:23:47.843725242Z 62 PC: 12d8e | Close file (See above)
2018-12-25T12:23:47.845621819Z 67 PC: 12d97 | Get or set file attributes (See above)
2018-12-25T12:23:47.857518818Z 79 PC: 12c1c | Find next file (See above)
2018-12-25T12:23:47.860861057Z 67 PC: 12ca2 | Get or set file attributes (See above)
2018-12-25T12:23:47.872988243Z 67 PC: 12cae | Get or set file attributes (See above)
2018-12-25T12:23:47.885458482Z 61 PC: 12cb4 | Open file (See above)
2018-12-25T12:23:47.89318042Z 87 PC: 12cbf | Get or set file date and time (See above)
2018-12-25T12:23:47.894926634Z 66 PC: 12cd2 | Move file pointer (See above)
2018-12-25T12:23:47.898228587Z 66 PC: 12cea | Move file pointer (See above)
2018-12-25T12:23:47.900758983Z 63 PC: 12cf5 | Read file or device (See above)
2018-12-25T12:23:47.908022308Z 62 PC: 12d8e | Close file (See above)
2018-12-25T12:23:47.910977705Z 67 PC: 12d97 | Get or set file attributes (See above)
2018-12-25T12:23:47.922606257Z 79 PC: 12c1c | Find next file (See above)
2018-12-25T12:23:47.925802433Z 67 PC: 12ca2 | Get or set file attributes (See above)
2018-12-25T12:23:47.935934857Z 67 PC: 12cae | Get or set file attributes (See above)
2018-12-25T12:23:48.277893829Z 61 PC: 12cb4 | Open file (See above)
2018-12-25T12:23:48.286095784Z 87 PC: 12cbf | Get or set file date and time (See above)
2018-12-25T12:23:48.288177967Z 66 PC: 12cd2 | Move file pointer (See above)
2018-12-25T12:23:48.291420461Z 66 PC: 12cea | Move file pointer (See above)
2018-12-25T12:23:48.293329491Z 63 PC: 12cf5 | Read file or device (See above)
2018-12-25T12:23:48.297424426Z 66 PC: 12d1d | Move file pointer (See above)
2018-12-25T12:23:48.299257221Z 64 PC: 12d29 | Write file or device (See above)
2018-12-25T12:23:48.302134156Z 66 PC: 12d76 | Move file pointer (See above)
2018-12-25T12:23:48.303454136Z 64 PC: 12d7d | Write file or device (See above)
2018-12-25T12:23:48.310143147Z 87 PC: 12d88 | Get or set file date and time (See above)
2018-12-25T12:23:48.312445295Z 62 PC: 12d8e | Close file (See above)
2018-12-25T12:23:48.320823193Z 67 PC: 12d97 | Get or set file attributes (See above)

{"DateBased":true,"Day":29,"Month":2,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":9786,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:23:47.179780368Z 42 PC: 12b87 | Get date 0x12b87: cmp dh, 2
0x12b8a: jne 0x12be4
0x12b8c: cmp dl, 0x1d
0x12b8f: jne 0x12be4
0x12b91: mov ah, 9
0x12b93: mov dx, si
0x12b95: add dx, 0x48
0x12b98: int3
0x12b99: mov cx, 5
0x12b9c: mov ax, word ptr [si]
0x12b9e: xor dx, dx
0x12ba0: mov bx, 0xa
0x12ba3: div bx
0x12ba5: push dx
0x12ba6: loop 0x12b9e
0x12ba8: mov cx, 5
0x12bab: pop dx
0x12bac: add dl, 0x30
0x12baf: mov ah, 2
0x12bb1: int 1
2018-12-25T12:23:47.182450719Z 9 PC: 12b99 | Display string (String= ' ANONYMOUS Virus 1.0 Generation: ')
2018-12-25T12:23:47.188331085Z 2 PC: 12bb3 | Character output (Char = '30')
2018-12-25T12:23:47.192521005Z 2 PC: 12bb3 | Character output (See above)
2018-12-25T12:23:47.195178944Z 2 PC: 12bb3 | Character output (See above)
2018-12-25T12:23:47.202182398Z 2 PC: 12bb3 | Character output (See above)
2018-12-25T12:23:47.203784808Z 2 PC: 12bb3 | Character output (See above)
2018-12-25T12:23:47.205706556Z 9 PC: 12bbd | Display string (String= ' Number: ')
2018-12-25T12:23:47.209138452Z 2 PC: 12bd8 | Character output (Char = '30')
2018-12-25T12:23:47.210708493Z 2 PC: 12bd8 | Character output (See above)
2018-12-25T12:23:47.213042157Z 2 PC: 12bd8 | Character output (See above)
2018-12-25T12:23:47.215330033Z 2 PC: 12bd8 | Character output (See above)
2018-12-25T12:23:47.217005537Z 2 PC: 12bd8 | Character output (See above)
2018-12-25T12:23:47.218619793Z 2 PC: 12bdd | Character output (Char = '0a')
2018-12-25T12:23:47.22152982Z 2 PC: 12be1 | Character output (Char = '0d')
2018-12-25T12:23:47.227541954Z 2 PC: 12be4 | Character output (Char = '0a')
2018-12-25T12:23:47.232695291Z 26 PC: 12bf4 | Set disk transfer address
2018-12-25T12:23:47.235014329Z 78 PC: 12c08 | Find first file
2018-12-25T12:23:47.243148654Z 67 PC: 12ca2 | Get or set file attributes
2018-12-25T12:23:47.249391932Z 67 PC: 12cae | Get or set file attributes
2018-12-25T12:23:47.266936334Z 61 PC: 12cb4 | Open file (Filename = 'SLEEP.COM')
2018-12-25T12:23:47.274464498Z 87 PC: 12cbf | Get or set file date and time
2018-12-25T12:23:47.276156123Z 66 PC: 12cd2 | Move file pointer
2018-12-25T12:23:47.27792081Z 66 PC: 12cea | Move file pointer
2018-12-25T12:23:47.280044248Z 63 PC: 12cf5 | Read file or device (Read 3 bytes on handle 5)
2018-12-25T12:23:47.287293265Z 66 PC: 12d1d | Move file pointer
2018-12-25T12:23:47.288726878Z 64 PC: 12d29 | Write file or device (Write 3 bytes on handle 5)
2018-12-25T12:23:47.292777994Z 66 PC: 12d76 | Move file pointer
2018-12-25T12:23:47.297423046Z 64 PC: 12d7d | Write file or device (Write 1000 bytes on handle 5)
2018-12-25T12:23:47.306712775Z 87 PC: 12d88 | Get or set file date and time
2018-12-25T12:23:47.30974892Z 62 PC: 12d8e | Close file
2018-12-25T12:23:47.318240799Z 67 PC: 12d97 | Get or set file attributes
2018-12-25T12:23:47.329039996Z 79 PC: 12c1c | Find next file
2018-12-25T12:23:47.332647121Z 67 PC: 12ca2 | Get or set file attributes (See above)
2018-12-25T12:23:47.340166017Z 67 PC: 12cae | Get or set file attributes (See above)
2018-12-25T12:23:47.351349945Z 61 PC: 12cb4 | Open file (See above)
2018-12-25T12:23:47.358882745Z 87 PC: 12cbf | Get or set file date and time (See above)
2018-12-25T12:23:47.368966468Z 66 PC: 12cd2 | Move file pointer (See above)
2018-12-25T12:23:47.370906316Z 62 PC: 12d8e | Close file (See above)
2018-12-25T12:23:47.373270915Z 67 PC: 12d97 | Get or set file attributes (See above)
2018-12-25T12:23:47.388250348Z 79 PC: 12c1c | Find next file (See above)
2018-12-25T12:23:47.391511092Z 67 PC: 12ca2 | Get or set file attributes (See above)
2018-12-25T12:23:47.398128288Z 67 PC: 12cae | Get or set file attributes (See above)
2018-12-25T12:23:47.570604404Z 61 PC: 12cb4 | Open file (See above)
2018-12-25T12:23:47.575217988Z 87 PC: 12cbf | Get or set file date and time (See above)
2018-12-25T12:23:47.576788351Z 66 PC: 12cd2 | Move file pointer (See above)
2018-12-25T12:23:47.578750363Z 62 PC: 12d8e | Close file (See above)
2018-12-25T12:23:47.580799555Z 67 PC: 12d97 | Get or set file attributes (See above)
2018-12-25T12:23:47.748056613Z 79 PC: 12c1c | Find next file (See above)
2018-12-25T12:23:47.75254581Z 67 PC: 12ca2 | Get or set file attributes (See above)
2018-12-25T12:23:47.765567125Z 67 PC: 12cae | Get or set file attributes (See above)
2018-12-25T12:23:47.776223546Z 61 PC: 12cb4 | Open file (See above)
2018-12-25T12:23:47.783687678Z 87 PC: 12cbf | Get or set file date and time (See above)
2018-12-25T12:23:47.785646888Z 66 PC: 12cd2 | Move file pointer (See above)
2018-12-25T12:23:47.787551783Z 62 PC: 12d8e | Close file (See above)
2018-12-25T12:23:47.791118877Z 67 PC: 12d97 | Get or set file attributes (See above)
2018-12-25T12:23:47.802328697Z 79 PC: 12c1c | Find next file (See above)
2018-12-25T12:23:47.805293794Z 67 PC: 12ca2 | Get or set file attributes (See above)
2018-12-25T12:23:47.811808149Z 67 PC: 12cae | Get or set file attributes (See above)
2018-12-25T12:23:47.826951689Z 61 PC: 12cb4 | Open file (See above)
2018-12-25T12:23:47.834423696Z 87 PC: 12cbf | Get or set file date and time (See above)
2018-12-25T12:23:47.836005893Z 66 PC: 12cd2 | Move file pointer (See above)
2018-12-25T12:23:47.838674157Z 62 PC: 12d8e | Close file (See above)
2018-12-25T12:23:47.84075276Z 67 PC: 12d97 | Get or set file attributes (See above)
2018-12-25T12:23:47.852403922Z 79 PC: 12c1c | Find next file (See above)
2018-12-25T12:23:47.856388502Z 67 PC: 12ca2 | Get or set file attributes (See above)
2018-12-25T12:23:47.863317465Z 67 PC: 12cae | Get or set file attributes (See above)
2018-12-25T12:23:47.874196461Z 61 PC: 12cb4 | Open file (See above)
2018-12-25T12:23:47.887922592Z 87 PC: 12cbf | Get or set file date and time (See above)
2018-12-25T12:23:47.890387415Z 66 PC: 12cd2 | Move file pointer (See above)
2018-12-25T12:23:47.89196999Z 66 PC: 12cea | Move file pointer (See above)
2018-12-25T12:23:47.893776596Z 63 PC: 12cf5 | Read file or device (See above)
2018-12-25T12:23:47.902136462Z 66 PC: 12d1d | Move file pointer (See above)
2018-12-25T12:23:47.904119665Z 64 PC: 12d29 | Write file or device (See above)
2018-12-25T12:23:47.907778716Z 66 PC: 12d76 | Move file pointer (See above)
2018-12-25T12:23:47.909938483Z 64 PC: 12d7d | Write file or device (See above)
2018-12-25T12:23:47.919808634Z 87 PC: 12d88 | Get or set file date and time (See above)
2018-12-25T12:23:47.921901835Z 62 PC: 12d8e | Close file (See above)
2018-12-25T12:23:47.931618938Z 67 PC: 12d97 | Get or set file attributes (See above)
2018-12-25T12:23:47.942923266Z 79 PC: 12c1c | Find next file (See above)
2018-12-25T12:23:47.946240836Z 67 PC: 12ca2 | Get or set file attributes (See above)
2018-12-25T12:23:47.953833454Z 67 PC: 12cae | Get or set file attributes (See above)
2018-12-25T12:23:48.272157961Z 61 PC: 12cb4 | Open file (See above)
2018-12-25T12:23:48.279563925Z 87 PC: 12cbf | Get or set file date and time (See above)
2018-12-25T12:23:48.282015375Z 66 PC: 12cd2 | Move file pointer (See above)
2018-12-25T12:23:48.283701592Z 62 PC: 12d8e | Close file (See above)
2018-12-25T12:23:48.285573684Z 67 PC: 12d97 | Get or set file attributes (See above)
2018-12-25T12:23:48.296535385Z 79 PC: 12c1c | Find next file (See above)
2018-12-25T12:23:48.29964612Z 67 PC: 12ca2 | Get or set file attributes (See above)
2018-12-25T12:23:48.305749157Z 67 PC: 12cae | Get or set file attributes (See above)
2018-12-25T12:23:48.316416378Z 61 PC: 12cb4 | Open file (See above)
2018-12-25T12:23:48.330365221Z 87 PC: 12cbf | Get or set file date and time (See above)
2018-12-25T12:23:48.331814883Z 66 PC: 12cd2 | Move file pointer (See above)
2018-12-25T12:23:48.333413058Z 66 PC: 12cea | Move file pointer (See above)
2018-12-25T12:23:48.335480493Z 63 PC: 12cf5 | Read file or device (See above)
2018-12-25T12:23:48.342874961Z 62 PC: 12d8e | Close file (See above)
2018-12-25T12:23:48.345273087Z 67 PC: 12d97 | Get or set file attributes (See above)
2018-12-25T12:23:48.357285624Z 79 PC: 12c1c | Find next file (See above)
2018-12-25T12:23:48.360284751Z 67 PC: 12ca2 | Get or set file attributes (See above)
2018-12-25T12:23:48.370089682Z 67 PC: 12cae | Get or set file attributes (See above)
2018-12-25T12:23:48.723192357Z 61 PC: 12cb4 | Open file (See above)
2018-12-25T12:23:48.73219531Z 87 PC: 12cbf | Get or set file date and time (See above)
2018-12-25T12:23:48.734183107Z 66 PC: 12cd2 | Move file pointer (See above)
2018-12-25T12:23:48.736223318Z 66 PC: 12cea | Move file pointer (See above)
2018-12-25T12:23:48.739090062Z 63 PC: 12cf5 | Read file or device (See above)
2018-12-25T12:23:48.745511079Z 66 PC: 12d1d | Move file pointer (See above)
2018-12-25T12:23:48.747058473Z 64 PC: 12d29 | Write file or device (See above)
2018-12-25T12:23:48.751896245Z 66 PC: 12d76 | Move file pointer (See above)
2018-12-25T12:23:48.753443986Z 64 PC: 12d7d | Write file or device (See above)
2018-12-25T12:23:48.761122673Z 87 PC: 12d88 | Get or set file date and time (See above)
2018-12-25T12:23:48.764102714Z 62 PC: 12d8e | Close file (See above)
2018-12-25T12:23:48.771076665Z 67 PC: 12d97 | Get or set file attributes (See above)