Sample viewer

vx.netlux.org/Virus.DOS.HLLP.Koles.4493

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:49:11.887283637Z	53	PC: 133da \| Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:49:11.889736587Z	53	PC: 133da \| Get interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:49:11.890800223Z	53	PC: 133da \| Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:49:11.891836309Z	53	PC: 133da \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:49:11.893896042Z	53	PC: 133da \| Get interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:49:11.895425611Z	53	PC: 133da \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:49:11.896915102Z	53	PC: 133da \| Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:49:11.898771143Z	53	PC: 133da \| Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:49:11.899945692Z	53	PC: 133da \| Get interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:49:11.901013161Z	53	PC: 133da \| Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:49:11.902573725Z	53	PC: 133da \| Get interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:49:11.903781675Z	53	PC: 133da \| Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:49:11.90527643Z	53	PC: 133da \| Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:49:11.908185972Z	53	PC: 133da \| Get interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:49:11.910236754Z	53	PC: 133da \| Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:49:11.911902206Z	53	PC: 133da \| Get interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:49:11.913616348Z	53	PC: 133da \| Get interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:49:11.915112376Z	53	PC: 133da \| Get interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:49:11.916628455Z	53	PC: 133da \| Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:49:11.922495701Z	37	PC: 133ef \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:49:11.928483431Z	37	PC: 133f7 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:49:11.929597733Z	37	PC: 133ff \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:49:11.930821149Z	37	PC: 13407 \| Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:49:11.932856391Z	68	PC: 13e14 \| I/O control for devices (Set for = '��p')
2018-12-17T22:49:12.051352595Z	64	PC: 137f8 \| Write file or device (Write 0 bytes on handle 1)
2018-12-17T22:49:12.05257691Z	37	PC: 13531 \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:49:12.054089798Z	37	PC: 13531 \| Set interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T22:49:12.055470608Z	37	PC: 13531 \| Set interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T22:49:12.056563594Z	37	PC: 13531 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:49:12.058277935Z	37	PC: 13531 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T22:49:12.059294185Z	37	PC: 13531 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:49:12.060327355Z	37	PC: 13531 \| Set interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T22:49:12.062287653Z	37	PC: 13531 \| Set interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T22:49:12.063472514Z	37	PC: 13531 \| Set interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T22:49:12.064433551Z	37	PC: 13531 \| Set interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T22:49:12.06644299Z	37	PC: 13531 \| Set interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T22:49:12.067570691Z	37	PC: 13531 \| Set interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T22:49:12.068619765Z	37	PC: 13531 \| Set interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T22:49:12.07026764Z	37	PC: 13531 \| Set interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T22:49:12.071604538Z	37	PC: 13531 \| Set interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T22:49:12.07271548Z	37	PC: 13531 \| Set interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T22:49:12.074646221Z	37	PC: 13531 \| Set interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T22:49:12.075761523Z	37	PC: 13531 \| Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T22:49:12.0768186Z	37	PC: 13531 \| Set interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T22:49:12.079507393Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.081484402Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.083379526Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.086197068Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.088171443Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.090131868Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.092528467Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.094574722Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.103865568Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.106391206Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.108350755Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.110560037Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.112939777Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.115750898Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.117968861Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.120344898Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.123302655Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.125577106Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.127860359Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.131045192Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.133883944Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.1361543Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.139969141Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.142223176Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.144426476Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.147009611Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.149261315Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.151497535Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.154240506Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.156534477Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.158862774Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.161501648Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.163381318Z	6	PC: 135b8 \| Direct console I/O
2018-12-17T22:49:12.166784581Z	76	PC: 13570 \| Terminate with return code (Return code = '200')