Sample viewer

vx.netlux.org/Virus.DOS.DR.693

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T21:59:22.424357482Z	222	PC: 13e79 \| UNKNOWN!
2018-12-17T21:59:22.426404229Z	53	PC: 13e87 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T21:59:22.427351078Z	37	PC: 13ea3 \| Set interrupt vector (Interrupt = '153' AKA 'UNKNOWN!')
2018-12-17T21:59:22.428425608Z	9	PC: 12a5c \| Display string (Could not find end pointer)
2018-12-17T21:59:22.432787192Z	76	PC: 12a61 \| Terminate with return code (Return code = '0')

{"DateBased":true,"Day":16,"Month":10,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":1037,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T11:42:26.050385777Z	222	PC: 13e79 \| UNKNOWN!
2018-12-25T11:42:26.051721136Z	53	PC: 13e87 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T11:42:26.054667185Z	37	PC: 13ea3 \| Set interrupt vector (Interrupt = '153' AKA 'UNKNOWN!')
2018-12-25T11:42:26.056488769Z	9	PC: 12a5c \| Display string (Could not find end pointer)
2018-12-25T11:42:26.063135384Z	76	PC: 12a61 \| Terminate with return code (Return code = '0')

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":1037,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T11:42:26.086713881Z	222	PC: 13e79 \| UNKNOWN!
2018-12-25T11:42:26.088309515Z	53	PC: 13e87 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T11:42:26.090758113Z	37	PC: 13ea3 \| Set interrupt vector (Interrupt = '153' AKA 'UNKNOWN!')
2018-12-25T11:42:26.092756359Z	9	PC: 12a5c \| Display string (Could not find end pointer)
2018-12-25T11:42:26.1014102Z	76	PC: 12a61 \| Terminate with return code (Return code = '0')

{"DateBased":true,"Day":15,"Month":7,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":1037,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T11:42:26.653859692Z	222	PC: 13e79 \| UNKNOWN!
2018-12-25T11:42:26.655595652Z	53	PC: 13e87 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T11:42:26.656776465Z	37	PC: 13ea3 \| Set interrupt vector (Interrupt = '153' AKA 'UNKNOWN!')
2018-12-25T11:42:26.657954649Z	9	PC: 12a5c \| Display string (Could not find end pointer)
2018-12-25T11:42:26.664656574Z	76	PC: 12a61 \| Terminate with return code (Return code = '0')