Sample viewer

vx.netlux.org/Virus.DOS.DSU.1414

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:51:43.882748758Z	239	PC: 28295 \| UNKNOWN!
2018-12-17T22:51:43.88458275Z	53	PC: 282a0 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:51:43.886051631Z	53	PC: 282ad \| Get interrupt vector (Interrupt = '23' AKA 'Rename file')
2018-12-17T22:51:43.891724816Z	48	PC: 20a5a \| Get DOS version
2018-12-17T22:51:43.894255534Z	74	PC: 20ab5 \| Reallocate memory
2018-12-17T22:51:43.896046384Z	48	PC: 20b0e \| Get DOS version
2018-12-17T22:51:43.897434859Z	53	PC: 20b16 \| Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:51:43.899998446Z	37	PC: 20b28 \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:51:43.902308251Z	68	PC: 20bac \| I/O control for devices (Set for = '&�D^]�U��V�F�v&�D��^��؃��')
2018-12-17T22:51:43.904026392Z	68	PC: 20bac \| I/O control for devices (Set for = 'F�P�?��F�P�6��')
2018-12-17T22:51:43.906853531Z	68	PC: 20bac \| I/O control for devices (Set for = ']�')
2018-12-17T22:51:43.908749553Z	68	PC: 20bac \| I/O control for devices (Set for = 'v�v�v�#��^��F��v �')
2018-12-17T22:51:43.910526176Z	68	PC: 20bac \| I/O control for devices (Set for = 'v�v�v�#��^��F��v �')
2018-12-17T22:51:43.91350288Z	72	PC: 1ab43 \| Allocate memory
2018-12-17T22:51:43.915822675Z	74	PC: 1ab59 \| Reallocate memory
2018-12-17T22:51:43.917748923Z	74	PC: 1ab5d \| Reallocate memory
2018-12-17T22:51:43.936924177Z	61	PC: 19460 \| Open file (Filename = '��]+��W&;vr6�>m')
2018-12-17T22:51:43.962161036Z	64	PC: 220ef \| Write file or device (Write 20 bytes on handle 1)
2018-12-17T22:51:43.966020309Z	64	PC: 20f19 \| Write file or device (Write 30 bytes on handle 2)
2018-12-17T22:51:43.970059875Z	37	PC: 20c41 \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T22:51:43.972363627Z	76	PC: 20c2a \| Terminate with return code (Return code = '3')