Sample viewer

vx.netlux.org/Virus.DOS.HLLP.Feci.6000.b

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T21:58:55.445251433Z	53	PC: 13baa \| Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T21:58:55.446815919Z	53	PC: 13baa \| Get interrupt vector (Interrupt = '2' AKA 'Character output')
2018-12-17T21:58:55.448577273Z	53	PC: 13baa \| Get interrupt vector (Interrupt = '27' AKA 'Get allocation info for default drive')
2018-12-17T21:58:55.44971246Z	53	PC: 13baa \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T21:58:55.451470193Z	53	PC: 13baa \| Get interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T21:58:55.452645128Z	53	PC: 13baa \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T21:58:55.453721514Z	53	PC: 13baa \| Get interrupt vector (Interrupt = '52' AKA 'Get InDOS flag pointer')
2018-12-17T21:58:55.455156298Z	53	PC: 13baa \| Get interrupt vector (Interrupt = '53' AKA 'Get interrupt vector')
2018-12-17T21:58:55.456168262Z	53	PC: 13baa \| Get interrupt vector (Interrupt = '54' AKA 'Get free disk space')
2018-12-17T21:58:55.457148175Z	53	PC: 13baa \| Get interrupt vector (Interrupt = '55' AKA 'Get or set switch character')
2018-12-17T21:58:55.458725143Z	53	PC: 13baa \| Get interrupt vector (Interrupt = '56' AKA 'Get or set country info')
2018-12-17T21:58:55.460635523Z	53	PC: 13baa \| Get interrupt vector (Interrupt = '57' AKA 'Create subdirectory')
2018-12-17T21:58:55.461750954Z	53	PC: 13baa \| Get interrupt vector (Interrupt = '58' AKA 'Remove subdirectory')
2018-12-17T21:58:55.463206892Z	53	PC: 13baa \| Get interrupt vector (Interrupt = '59' AKA 'Change current directory')
2018-12-17T21:58:55.464206951Z	53	PC: 13baa \| Get interrupt vector (Interrupt = '60' AKA 'Create or truncate file')
2018-12-17T21:58:55.465202742Z	53	PC: 13baa \| Get interrupt vector (Interrupt = '61' AKA 'Open file')
2018-12-17T21:58:55.466768295Z	53	PC: 13baa \| Get interrupt vector (Interrupt = '62' AKA 'Close file')
2018-12-17T21:58:55.467808389Z	53	PC: 13baa \| Get interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T21:58:55.46885934Z	53	PC: 13baa \| Get interrupt vector (Interrupt = '117' AKA 'UNKNOWN!')
2018-12-17T21:58:55.471083644Z	37	PC: 13bbf \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T21:58:55.472045237Z	37	PC: 13bc7 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T21:58:55.473036823Z	37	PC: 13bcf \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T21:58:55.474338862Z	37	PC: 13bd7 \| Set interrupt vector (Interrupt = '63' AKA 'Read file or device')
2018-12-17T21:58:55.476326158Z	68	PC: 148b2 \| I/O control for devices (Set for = '')
2018-12-17T21:58:55.480123181Z	42	PC: 13997 \| Get date 0x13997: xor ah, ah 0x13999: les di, ptr [bp + 6] 0x1399c: stosw word ptr es:[di], ax 0x1399d: mov al, dl 0x1399f: les di, ptr [bp + 0xa] 0x139a2: stosw word ptr es:[di], ax 0x139a3: mov al, dh 0x139a5: les di, ptr [bp + 0xe] 0x139a8: stosw word ptr es:[di], ax 0x139a9: xchg ax, cx 0x139aa: les di, ptr [bp + 0x12] 0x139ad: stosw word ptr es:[di], ax 0x139ae: pop bp 0x139af: retf 0x10 0x139b2: push bp 0x139b3: mov bp, sp 0x139b5: mov cx, word ptr [bp + 0xa] 0x139b8: mov dh, byte ptr [bp + 8] 0x139bb: mov dl, byte ptr [bp + 6] 0x139be: mov ah, 0x2b
2018-12-17T21:58:55.481976489Z	48	PC: 144c3 \| Get DOS version
2018-12-17T21:58:55.483325698Z	54	PC: 13a25 \| Get free disk space
2018-12-17T21:58:55.491990795Z	54	PC: 13a0c \| Get free disk space
2018-12-17T21:58:55.835156894Z	54	PC: 13a25 \| Get free disk space
2018-12-17T21:58:55.837583779Z	54	PC: 13a0c \| Get free disk space
2018-12-17T21:58:56.165985116Z	54	PC: 13a25 \| Get free disk space
2018-12-17T21:58:56.169838523Z	54	PC: 13a0c \| Get free disk space
2018-12-17T21:58:56.498366335Z	54	PC: 13a25 \| Get free disk space
2018-12-17T21:58:56.501479326Z	54	PC: 13a0c \| Get free disk space
2018-12-17T21:58:56.929294965Z	54	PC: 13a25 \| Get free disk space
2018-12-17T21:58:56.93259217Z	54	PC: 13a0c \| Get free disk space
2018-12-17T21:58:57.26842174Z	54	PC: 13a25 \| Get free disk space
2018-12-17T21:58:57.272383057Z	54	PC: 13a0c \| Get free disk space
2018-12-17T21:58:57.602276661Z	54	PC: 13a25 \| Get free disk space
2018-12-17T21:58:57.617379821Z	54	PC: 13a0c \| Get free disk space
2018-12-17T21:58:57.954918127Z	54	PC: 13a25 \| Get free disk space
2018-12-17T21:58:57.958831285Z	54	PC: 13a0c \| Get free disk space
2018-12-17T21:58:58.319603174Z	54	PC: 13a25 \| Get free disk space
2018-12-17T21:58:58.321891858Z	54	PC: 13a0c \| Get free disk space
2018-12-17T21:58:58.699361285Z	54	PC: 13a25 \| Get free disk space
2018-12-17T21:58:58.702447978Z	54	PC: 13a0c \| Get free disk space
2018-12-17T21:58:59.036877807Z	54	PC: 13a25 \| Get free disk space
2018-12-17T21:58:59.041567838Z	54	PC: 13a0c \| Get free disk space
2018-12-17T21:58:59.368548818Z	54	PC: 13a25 \| Get free disk space
2018-12-17T21:58:59.371792795Z	54	PC: 13a0c \| Get free disk space
2018-12-17T21:58:59.809978617Z	54	PC: 13a25 \| Get free disk space
2018-12-17T21:58:59.820278721Z	54	PC: 13a0c \| Get free disk space
2018-12-17T21:59:00.250701433Z	54	PC: 13a25 \| Get free disk space
2018-12-17T21:59:00.254877545Z	54	PC: 13a0c \| Get free disk space
2018-12-17T21:59:00.692538779Z	54	PC: 13a25 \| Get free disk space
2018-12-17T21:59:00.69585241Z	54	PC: 13a0c \| Get free disk space
2018-12-17T21:59:01.083625661Z	54	PC: 13a25 \| Get free disk space
2018-12-17T21:59:01.085706174Z	54	PC: 13a0c \| Get free disk space
2018-12-17T21:59:01.464781062Z	54	PC: 13a25 \| Get free disk space
2018-12-17T21:59:01.468562275Z	54	PC: 13a0c \| Get free disk space
2018-12-17T21:59:01.795968008Z	54	PC: 13a25 \| Get free disk space
2018-12-17T21:59:01.798898774Z	54	PC: 13a0c \| Get free disk space
2018-12-17T21:59:02.17729721Z	54	PC: 13a25 \| Get free disk space
2018-12-17T21:59:02.188965211Z	54	PC: 13a0c \| Get free disk space
2018-12-17T21:59:02.514499895Z	54	PC: 13a25 \| Get free disk space
2018-12-17T21:59:02.51852305Z	64	PC: 13fc8 \| Write file or device (Write 11 bytes on handle 1)
2018-12-17T21:59:02.521870913Z	64	PC: 13fc8 \| Write file or device (Write 8 bytes on handle 1)
2018-12-17T21:59:02.525415146Z	64	PC: 13fc8 \| Write file or device (Write 14 bytes on handle 1)
2018-12-17T21:59:02.531302862Z	64	PC: 13fc8 \| Write file or device (Write 10 bytes on handle 1)
2018-12-17T21:59:02.534070588Z	64	PC: 13fc8 \| Write file or device (Write 17 bytes on handle 1)
2018-12-17T21:59:02.536723172Z	1	PC: 134c9 \| Character input