Sample viewer

vx.netlux.org/Virus.DOS.Silicon.1019

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:54:20.917905437Z	42	PC: 12a6e \| Get date 0x12a6e: cmp dh, 0xc 0x12a71: jne 0x12aa4 0x12a73: nop 0x12a74: nop 0x12a75: nop 0x12a76: cmp dl, 5 0x12a79: jne 0x12aa4 0x12a7b: nop 0x12a7c: nop 0x12a7d: nop 0x12a7e: mov ah, 9 0x12a80: lea dx, word ptr [bp + 0x4b] 0x12a84: int 0x21 0x12a86: mov ax, 0x4c00 0x12a89: int 0x21 0x12a8b: push bx 0x12a8c: imul bp, word ptr [si + 0x69], 0x6f63 0x12a91: outsb dx, byte ptr [si] 0x12a92: and byte ptr [bx + di + 0x76], al 0x12a95: outsb dx, byte ptr gs:[si]
2018-12-17T22:54:20.921151806Z	75	PC: 12aa9 \| Execute program
2018-12-17T22:54:20.922801792Z	53	PC: 12ab9 \| Get interrupt vector (Interrupt = '103' AKA 'Set handle count')

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":11517,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:30:49.962050715Z	42	PC: 12a6e \| Get date 0x12a6e: cmp dh, 0xc 0x12a71: jne 0x12aa4 0x12a73: nop 0x12a74: nop 0x12a75: nop 0x12a76: cmp dl, 5 0x12a79: jne 0x12aa4 0x12a7b: nop 0x12a7c: nop 0x12a7d: nop 0x12a7e: mov ah, 9 0x12a80: lea dx, word ptr [bp + 0x4b] 0x12a84: int 0x21 0x12a86: mov ax, 0x4c00 0x12a89: int 0x21 0x12a8b: push bx 0x12a8c: imul bp, word ptr [si + 0x69], 0x6f63 0x12a91: outsb dx, byte ptr [si] 0x12a92: and byte ptr [bx + di + 0x76], al 0x12a95: outsb dx, byte ptr gs:[si]
2018-12-25T12:30:49.965631367Z	75	PC: 12aa9 \| Execute program
2018-12-25T12:30:49.967051789Z	53	PC: 12ab9 \| Get interrupt vector (Interrupt = '103' AKA 'Set handle count')

{"DateBased":true,"Day":1,"Month":12,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":11517,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:30:50.00246954Z	42	PC: 12a6e \| Get date 0x12a6e: cmp dh, 0xc 0x12a71: jne 0x12aa4 0x12a73: nop 0x12a74: nop 0x12a75: nop 0x12a76: cmp dl, 5 0x12a79: jne 0x12aa4 0x12a7b: nop 0x12a7c: nop 0x12a7d: nop 0x12a7e: mov ah, 9 0x12a80: lea dx, word ptr [bp + 0x4b] 0x12a84: int 0x21 0x12a86: mov ax, 0x4c00 0x12a89: int 0x21 0x12a8b: push bx 0x12a8c: imul bp, word ptr [si + 0x69], 0x6f63 0x12a91: outsb dx, byte ptr [si] 0x12a92: and byte ptr [bx + di + 0x76], al 0x12a95: outsb dx, byte ptr gs:[si]
2018-12-25T12:30:50.005410898Z	75	PC: 12aa9 \| Execute program
2018-12-25T12:30:50.006937433Z	53	PC: 12ab9 \| Get interrupt vector (Interrupt = '103' AKA 'Set handle count')

{"DateBased":true,"Day":5,"Month":12,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":11517,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:30:50.030043452Z	42	PC: 12a6e \| Get date 0x12a6e: cmp dh, 0xc 0x12a71: jne 0x12aa4 0x12a73: nop 0x12a74: nop 0x12a75: nop 0x12a76: cmp dl, 5 0x12a79: jne 0x12aa4 0x12a7b: nop 0x12a7c: nop 0x12a7d: nop 0x12a7e: mov ah, 9 0x12a80: lea dx, word ptr [bp + 0x4b] 0x12a84: int 0x21 0x12a86: mov ax, 0x4c00 0x12a89: int 0x21 0x12a8b: push bx 0x12a8c: imul bp, word ptr [si + 0x69], 0x6f63 0x12a91: outsb dx, byte ptr [si] 0x12a92: and byte ptr [bx + di + 0x76], al 0x12a95: outsb dx, byte ptr gs:[si]
2018-12-25T12:30:50.047715702Z	9	PC: 12a86 \| Display string (Could not find end pointer)
2018-12-25T12:30:50.050678869Z	76	PC: 12a8b \| Terminate with return code (Return code = '0')