Sample viewer

vx.netlux.org/Virus.DOS.LittBrother.351

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:51:51.558095478Z 42 PC: 12b93 | Get date 0x12b93: mov al, dl
0x12b95: cwde
0x12b96: ret
0x12b97: mov ah, 0x2a
0x12b99: int 0x21
0x12b9b: mov al, dh
0x12b9d: cwde
0x12b9e: ret
0x12b9f: and word ptr [di - 0x575], bx
0x12ba3: jmp 0x12bad
0x12ba5: mov di, word ptr es:[di]
0x12ba8: or di, di
0x12baa: jne 0x12bad
0x12bac: stc
0x12bad: pop si
0x12bae: pop dx
0x12baf: pop cx
0x12bb0: pop bx
0x12bb1: pop ax
0x12bb2: pop ds
2018-12-17T22:51:51.560997289Z 37 PC: 12a84 | Set interrupt vector (Interrupt = '33' AKA 'Random read')