Sample viewer

vx.netlux.org/Virus.DOS.Vienna.614

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:00:15.60463507Z	47	PC: 1516a \| Get disk transfer address
2018-12-17T22:00:15.606801027Z	26	PC: 1517d \| Set disk transfer address
2018-12-17T22:00:15.608310892Z	78	PC: 15209 \| Find first file
2018-12-17T22:00:15.61452029Z	67	PC: 15247 \| Get or set file attributes
2018-12-17T22:00:15.620890988Z	67	PC: 15259 \| Get or set file attributes
2018-12-17T22:00:15.642826785Z	61	PC: 15264 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:00:15.649468523Z	87	PC: 15270 \| Get or set file date and time
2018-12-17T22:00:15.651484646Z	44	PC: 1527c \| Get time 0x1527c: and dh, 7 0x1527f: jmp 0x15282 0x15281: nop 0x15282: mov ah, 0x3f 0x15284: mov cx, 3 0x15287: mov dx, 0xa 0x1528a: nop 0x1528b: add dx, si 0x1528d: int 0x21 0x1528f: jb 0x152e6 0x15291: cmp ax, 3 0x15294: jne 0x152e6 0x15296: mov ax, 0x4202 0x15299: mov cx, 0 0x1529c: mov dx, 0 0x1529f: int 0x21 0x152a1: jb 0x152e6 0x152a3: mov cx, ax 0x152a5: sub ax, 3 0x152a8: mov word ptr [si + 0xe], ax
2018-12-17T22:00:15.653823261Z	63	PC: 1528f \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:00:15.660073006Z	66	PC: 152a1 \| Move file pointer
2018-12-17T22:00:15.671831737Z	64	PC: 152c5 \| Write file or device (Write 614 bytes on handle 5)
2018-12-17T22:00:15.680191088Z	66	PC: 152d7 \| Move file pointer
2018-12-17T22:00:15.681551769Z	64	PC: 152e6 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:00:15.688507037Z	87	PC: 152f9 \| Get or set file date and time
2018-12-17T22:00:15.691182013Z	62	PC: 152fd \| Close file
2018-12-17T22:00:15.700604023Z	67	PC: 1530c \| Get or set file attributes
2018-12-17T22:00:15.711183303Z	26	PC: 15319 \| Set disk transfer address
2018-12-17T22:00:15.714899218Z	9	PC: 12bb5 \| Display string (String= '')
2018-12-17T22:00:15.71697985Z	9	PC: 12bbc \| Display string (Could not find end pointer)
2018-12-17T22:00:15.728287021Z	76	PC: 12bd2 \| Terminate with return code (Return code = '0')