Sample viewer

vx.netlux.org/Virus.DOS.V2C.1962

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:49:36.524032811Z 25 PC: 13c81 | Get default drive
2018-12-17T22:49:36.526753984Z 71 PC: 13c8e | Get current directory
2018-12-17T22:49:36.530578539Z 59 PC: 13c97 | Change current directory
2018-12-17T22:49:36.535066621Z 47 PC: 13c9b | Get disk transfer address
2018-12-17T22:49:36.536739825Z 26 PC: 13cac | Set disk transfer address
2018-12-17T22:49:36.539726115Z 78 PC: 13cb8 | Find first file
2018-12-17T22:49:36.546685931Z 47 PC: 13cbe | Get disk transfer address
2018-12-17T22:49:36.547976035Z 67 PC: 13dc2 | Get or set file attributes
2018-12-17T22:49:36.554445119Z 67 PC: 13dd4 | Get or set file attributes
2018-12-17T22:49:37.058580844Z 61 PC: 13de1 | Open file (Filename = 'TEST.EXE')
2018-12-17T22:49:37.079993754Z 66 PC: 13e09 | Move file pointer
2018-12-17T22:49:37.084017333Z 63 PC: 13e37 | Read file or device (Read 28 bytes on handle 5)
2018-12-17T22:49:37.10030822Z 62 PC: 13d07 | Close file
2018-12-17T22:49:37.105991408Z 67 PC: 13d18 | Get or set file attributes
2018-12-17T22:49:37.118095839Z 79 PC: 13d1c | Find next file
2018-12-17T22:49:37.120987282Z 78 PC: 13d47 | Find first file
2018-12-17T22:49:37.12808154Z 79 PC: 13d56 | Find next file
2018-12-17T22:49:37.13196671Z 79 PC: 13d56 | Find next file
2018-12-17T22:49:37.135239238Z 79 PC: 13d56 | Find next file
2018-12-17T22:49:37.138387142Z 79 PC: 13d56 | Find next file
2018-12-17T22:49:37.142482998Z 79 PC: 13d56 | Find next file
2018-12-17T22:49:37.146425855Z 79 PC: 13d56 | Find next file
2018-12-17T22:49:37.149964905Z 79 PC: 13d56 | Find next file
2018-12-17T22:49:37.15329936Z 79 PC: 13d56 | Find next file
2018-12-17T22:49:37.156863977Z 79 PC: 13d56 | Find next file
2018-12-17T22:49:37.15955359Z 59 PC: 13d91 | Change current directory
2018-12-17T22:49:37.164085885Z 78 PC: 13d47 | Find first file
2018-12-17T22:49:37.173180883Z 79 PC: 13d56 | Find next file
2018-12-17T22:49:37.176352251Z 79 PC: 13d56 | Find next file
2018-12-17T22:49:37.179730338Z 79 PC: 13d56 | Find next file
2018-12-17T22:49:37.183560394Z 79 PC: 13d56 | Find next file
2018-12-17T22:49:37.186393597Z 79 PC: 13d56 | Find next file
2018-12-17T22:49:37.189547031Z 79 PC: 13d56 | Find next file
2018-12-17T22:49:37.193110156Z 79 PC: 13d56 | Find next file
2018-12-17T22:49:37.196142132Z 79 PC: 13d56 | Find next file
2018-12-17T22:49:37.199137951Z 79 PC: 13d56 | Find next file
2018-12-17T22:49:37.202531987Z 42 PC: 13fb2 | Get date 0x13fb2: cmp dh, 4
0x13fb5: jne 0x13fff
0x13fb7: cmp dl, 0x16
0x13fba: jne 0x13fff
0x13fbc: mov ah, 0x19
0x13fbe: int 0x21
0x13fc0: mov dl, al
0x13fc2: mov ah, 3
0x13fc4: mov ch, 0
0x13fc6: mov cl, 1
0x13fc8: mov dh, 0
0x13fca: int 0x13
0x13fcc: mov ah, 9
0x13fce: push cs
0x13fcf: pop ds
0x13fd0: mov dx, 0x39e
0x13fd3: int 0x21
0x13fd5: loop 0x13fcc
0x13fd7: jmp 0x1404c
0x13fd9: nop
2018-12-17T22:49:37.205452665Z 59 PC: 14055 | Change current directory
2018-12-17T22:49:37.210921108Z 26 PC: 14065 | Set disk transfer address
2018-12-17T22:49:37.21323172Z 9 PC: 12a5c | Display string (Could not find end pointer)
2018-12-17T22:49:37.220540501Z 76 PC: 12a61 | Terminate with return code (Return code = '0')

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":9945,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:26:48.811494086Z 25 PC: 13c81 | Get default drive
2018-12-25T12:26:48.813174569Z 71 PC: 13c8e | Get current directory
2018-12-25T12:26:48.816141962Z 59 PC: 13c97 | Change current directory
2018-12-25T12:26:48.819458324Z 47 PC: 13c9b | Get disk transfer address
2018-12-25T12:26:48.821060393Z 26 PC: 13cac | Set disk transfer address
2018-12-25T12:26:48.825593555Z 78 PC: 13cb8 | Find first file
2018-12-25T12:26:48.836948193Z 47 PC: 13cbe | Get disk transfer address
2018-12-25T12:26:48.838439821Z 67 PC: 13dc2 | Get or set file attributes
2018-12-25T12:26:48.851309511Z 67 PC: 13dd4 | Get or set file attributes
2018-12-25T12:26:48.868165021Z 61 PC: 13de1 | Open file (Filename = 'TEST.EXE')
2018-12-25T12:26:48.876371819Z 66 PC: 13e09 | Move file pointer
2018-12-25T12:26:48.877990767Z 63 PC: 13e37 | Read file or device (Read 28 bytes on handle 5)
2018-12-25T12:26:48.88347593Z 62 PC: 13d07 | Close file
2018-12-25T12:26:48.885018046Z 67 PC: 13d18 | Get or set file attributes
2018-12-25T12:26:48.895284116Z 79 PC: 13d1c | Find next file
2018-12-25T12:26:48.89853536Z 78 PC: 13d47 | Find first file
2018-12-25T12:26:48.906160071Z 79 PC: 13d56 | Find next file
2018-12-25T12:26:48.909641414Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:48.914077173Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:48.919142826Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:48.922518596Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:48.927253761Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:48.930544577Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:48.933838781Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:48.936615127Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:48.940224857Z 59 PC: 13d91 | Change current directory
2018-12-25T12:26:48.946012093Z 78 PC: 13d47 | Find first file (See above)
2018-12-25T12:26:48.951278381Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:48.954061372Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:48.956188101Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:48.958269387Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:48.961062792Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:48.972492084Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:48.979964993Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:48.98426778Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:48.987627998Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:48.99193531Z 42 PC: 13fb2 | Get date 0x13fb2: cmp dh, 4
0x13fb5: jne 0x13fff
0x13fb7: cmp dl, 0x16
0x13fba: jne 0x13fff
0x13fbc: mov ah, 0x19
0x13fbe: int 0x21
0x13fc0: mov dl, al
0x13fc2: mov ah, 3
0x13fc4: mov ch, 0
0x13fc6: mov cl, 1
0x13fc8: mov dh, 0
0x13fca: int 0x13
0x13fcc: mov ah, 9
0x13fce: push cs
0x13fcf: pop ds
0x13fd0: mov dx, 0x39e
0x13fd3: int 0x21
0x13fd5: loop 0x13fcc
0x13fd7: jmp 0x1404c
0x13fd9: nop
2018-12-25T12:26:48.995842742Z 59 PC: 14055 | Change current directory
2018-12-25T12:26:49.000819886Z 26 PC: 14065 | Set disk transfer address
2018-12-25T12:26:49.002627878Z 9 PC: 12a5c | Display string (Could not find end pointer)
2018-12-25T12:26:49.010388482Z 76 PC: 12a61 | Terminate with return code (Return code = '0')

{"DateBased":true,"Day":1,"Month":4,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":9945,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:26:48.935475427Z 25 PC: 13c81 | Get default drive
2018-12-25T12:26:48.945199849Z 71 PC: 13c8e | Get current directory
2018-12-25T12:26:48.949784792Z 59 PC: 13c97 | Change current directory
2018-12-25T12:26:48.955333937Z 47 PC: 13c9b | Get disk transfer address
2018-12-25T12:26:48.957823991Z 26 PC: 13cac | Set disk transfer address
2018-12-25T12:26:48.96073478Z 78 PC: 13cb8 | Find first file
2018-12-25T12:26:48.967814186Z 47 PC: 13cbe | Get disk transfer address
2018-12-25T12:26:48.969066738Z 67 PC: 13dc2 | Get or set file attributes
2018-12-25T12:26:48.977767246Z 67 PC: 13dd4 | Get or set file attributes
2018-12-25T12:26:48.999051331Z 61 PC: 13de1 | Open file (Filename = 'TEST.EXE')
2018-12-25T12:26:49.007430838Z 66 PC: 13e09 | Move file pointer
2018-12-25T12:26:49.010831278Z 63 PC: 13e37 | Read file or device (Read 28 bytes on handle 5)
2018-12-25T12:26:49.014480903Z 62 PC: 13d07 | Close file
2018-12-25T12:26:49.017915563Z 67 PC: 13d18 | Get or set file attributes
2018-12-25T12:26:49.039396433Z 79 PC: 13d1c | Find next file
2018-12-25T12:26:49.043266373Z 78 PC: 13d47 | Find first file
2018-12-25T12:26:49.050770086Z 79 PC: 13d56 | Find next file
2018-12-25T12:26:49.054140385Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:49.058341936Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:49.061594239Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:49.064662666Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:49.068454318Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:49.073154322Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:49.076115639Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:49.080415742Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:49.083277783Z 59 PC: 13d91 | Change current directory
2018-12-25T12:26:49.087061453Z 78 PC: 13d47 | Find first file (See above)
2018-12-25T12:26:49.091429938Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:49.093717386Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:49.095823797Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:49.097962103Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:49.101486125Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:49.103387697Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:49.105287551Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:49.10754154Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:49.109235075Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:49.111002367Z 42 PC: 13fb2 | Get date 0x13fb2: cmp dh, 4
0x13fb5: jne 0x13fff
0x13fb7: cmp dl, 0x16
0x13fba: jne 0x13fff
0x13fbc: mov ah, 0x19
0x13fbe: int 0x21
0x13fc0: mov dl, al
0x13fc2: mov ah, 3
0x13fc4: mov ch, 0
0x13fc6: mov cl, 1
0x13fc8: mov dh, 0
0x13fca: int 0x13
0x13fcc: mov ah, 9
0x13fce: push cs
0x13fcf: pop ds
0x13fd0: mov dx, 0x39e
0x13fd3: int 0x21
0x13fd5: loop 0x13fcc
0x13fd7: jmp 0x1404c
0x13fd9: nop
2018-12-25T12:26:49.120190379Z 59 PC: 14055 | Change current directory
2018-12-25T12:26:49.130691921Z 26 PC: 14065 | Set disk transfer address
2018-12-25T12:26:49.132356575Z 9 PC: 12a5c | Display string (Could not find end pointer)
2018-12-25T12:26:49.139808033Z 76 PC: 12a61 | Terminate with return code (Return code = '0')

{"DateBased":true,"Day":22,"Month":4,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":9945,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:26:48.985345984Z 25 PC: 13c81 | Get default drive
2018-12-25T12:26:48.987597446Z 71 PC: 13c8e | Get current directory
2018-12-25T12:26:48.990120283Z 59 PC: 13c97 | Change current directory
2018-12-25T12:26:48.993785676Z 47 PC: 13c9b | Get disk transfer address
2018-12-25T12:26:48.995361328Z 26 PC: 13cac | Set disk transfer address
2018-12-25T12:26:48.998870992Z 78 PC: 13cb8 | Find first file
2018-12-25T12:26:49.011745777Z 47 PC: 13cbe | Get disk transfer address
2018-12-25T12:26:49.013769492Z 67 PC: 13dc2 | Get or set file attributes
2018-12-25T12:26:49.028933786Z 67 PC: 13dd4 | Get or set file attributes
2018-12-25T12:26:49.730600442Z 61 PC: 13de1 | Open file (Filename = 'TEST.EXE')
2018-12-25T12:26:49.738451511Z 66 PC: 13e09 | Move file pointer
2018-12-25T12:26:49.740944205Z 63 PC: 13e37 | Read file or device (Read 28 bytes on handle 5)
2018-12-25T12:26:49.861948074Z 62 PC: 13d07 | Close file
2018-12-25T12:26:49.86448257Z 67 PC: 13d18 | Get or set file attributes
2018-12-25T12:26:50.33752666Z 79 PC: 13d1c | Find next file
2018-12-25T12:26:50.33947951Z 78 PC: 13d47 | Find first file
2018-12-25T12:26:50.343529056Z 79 PC: 13d56 | Find next file
2018-12-25T12:26:50.351966019Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:50.355056899Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:50.357938264Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:50.363747449Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:50.367545259Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:50.371898129Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:50.37562386Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:50.381030461Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:50.384531398Z 59 PC: 13d91 | Change current directory
2018-12-25T12:26:50.390202619Z 78 PC: 13d47 | Find first file (See above)
2018-12-25T12:26:50.398588146Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:50.401594217Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:50.404587331Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:50.40804263Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:50.410706286Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:50.413483619Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:50.416988878Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:50.419730095Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:50.424086037Z 79 PC: 13d56 | Find next file (See above)
2018-12-25T12:26:50.427400275Z 42 PC: 13fb2 | Get date 0x13fb2: cmp dh, 4
0x13fb5: jne 0x13fff
0x13fb7: cmp dl, 0x16
0x13fba: jne 0x13fff
0x13fbc: mov ah, 0x19
0x13fbe: int 0x21
0x13fc0: mov dl, al
0x13fc2: mov ah, 3
0x13fc4: mov ch, 0
0x13fc6: mov cl, 1
0x13fc8: mov dh, 0
0x13fca: int 0x13
0x13fcc: mov ah, 9
0x13fce: push cs
0x13fcf: pop ds
0x13fd0: mov dx, 0x39e
0x13fd3: int 0x21
0x13fd5: loop 0x13fcc
0x13fd7: jmp 0x1404c
0x13fd9: nop
2018-12-25T12:26:50.430143764Z 25 PC: 13fc0 | Get default drive
2018-12-25T12:26:50.432517816Z 9 PC: 13fd5 | Display string (String= 'Fuck You !!!!!!!!')
2018-12-25T12:26:50.436225756Z 59 PC: 14055 | Change current directory
2018-12-25T12:26:50.441193653Z 26 PC: 14065 | Set disk transfer address
2018-12-25T12:26:50.442964723Z 9 PC: 12a5c | Display string (Could not find end pointer)
2018-12-25T12:26:50.449922187Z 76 PC: 12a61 | Terminate with return code (Return code = '0')