Sample viewer

vx.netlux.org/Virus.DOS.Sidewinder.2048.b

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:50:06.063649646Z	255	PC: 13408 \| UNKNOWN!
2018-12-17T22:50:06.065449127Z	53	PC: 13430 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:50:06.068081131Z	37	PC: 13481 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:50:06.070485478Z	9	PC: 12a82 \| Display string (String= 'Goat file (EXE). Size=00000BB8h/0000003000d bytes. ')
2018-12-17T22:50:06.075100909Z	76	PC: 12a86 \| Terminate with return code (Return code = '36')

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":10111,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:27:12.997324467Z	255	PC: 13408 \| UNKNOWN!
2018-12-25T12:27:12.999446837Z	53	PC: 13430 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:27:13.000665264Z	37	PC: 13481 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:27:13.001881518Z	9	PC: 12a82 \| Display string (String= 'Goat file (EXE). Size=00000BB8h/0000003000d bytes. ')
2018-12-25T12:27:13.01174157Z	76	PC: 12a86 \| Terminate with return code (Return code = '36')

{"DateBased":true,"Day":15,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":10111,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:27:13.49116753Z	255	PC: 13408 \| UNKNOWN!
2018-12-25T12:27:13.494115086Z	53	PC: 13430 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:27:13.495617303Z	37	PC: 13481 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:27:13.496954352Z	9	PC: 12a82 \| Display string (String= 'Goat file (EXE). Size=00000BB8h/0000003000d bytes. ')
2018-12-25T12:27:13.505223007Z	76	PC: 12a86 \| Terminate with return code (Return code = '36')

{"DateBased":true,"Day":21,"Month":4,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":10111,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:27:14.124096722Z	255	PC: 13408 \| UNKNOWN!
2018-12-25T12:27:14.126096866Z	53	PC: 13430 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:27:14.127792955Z	37	PC: 13481 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:27:14.129313342Z	9	PC: 12a82 \| Display string (String= 'Goat file (EXE). Size=00000BB8h/0000003000d bytes. ')
2018-12-25T12:27:14.137257862Z	76	PC: 12a86 \| Terminate with return code (Return code = '36')