Sample viewer

vx.netlux.org/Virus.DOS.Vienna.658

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T21:51:19.658028466Z	47	PC: 15195 \| Get disk transfer address
2018-12-17T21:51:19.660030153Z	26	PC: 151a4 \| Set disk transfer address
2018-12-17T21:51:19.661679373Z	78	PC: 1522c \| Find first file
2018-12-17T21:51:19.667863912Z	79	PC: 15236 \| Find next file
2018-12-17T21:51:19.672529988Z	79	PC: 15236 \| Find next file
2018-12-17T21:51:19.675382703Z	79	PC: 15236 \| Find next file
2018-12-17T21:51:19.678215795Z	79	PC: 15236 \| Find next file
2018-12-17T21:51:19.682330089Z	79	PC: 15236 \| Find next file
2018-12-17T21:51:19.685241159Z	79	PC: 15236 \| Find next file
2018-12-17T21:51:19.688029088Z	79	PC: 15236 \| Find next file
2018-12-17T21:51:19.691177976Z	67	PC: 1528e \| Get or set file attributes
2018-12-17T21:51:19.698996135Z	67	PC: 1529e \| Get or set file attributes
2018-12-17T21:51:19.717357082Z	61	PC: 152a8 \| Open file (Filename = 'TEST.COM')
2018-12-17T21:51:19.730847508Z	87	PC: 152b6 \| Get or set file date and time
2018-12-17T21:51:19.738186563Z	44	PC: 152c0 \| Get time 0x152c0: mov cx, 3 0x152c3: mov ah, 0x3f 0x152c5: mov dx, 0xa 0x152c8: add dx, si 0x152ca: push dx 0x152cb: int 0x21 0x152cd: pop bp 0x152ce: jb 0x152f4 0x152d0: cmp byte ptr [bp], 0x4d 0x152d4: jne 0x152e2 0x152d6: cmp byte ptr [bp + 1], 0x5a 0x152da: je 0x152f4 0x152dc: jmp 0x152e2 0x152de: jmp 0x15330 0x152e0: jmp 0x1532e 0x152e2: cmp ax, 3 0x152e5: jne 0x15332 0x152e7: xor cx, cx 0x152e9: mov ax, 0x4202 0x152ec: xor dx, dx
2018-12-17T21:51:19.74066249Z	63	PC: 152cd \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T21:51:19.743595778Z	66	PC: 152f0 \| Move file pointer
2018-12-17T21:51:19.747494319Z	64	PC: 15349 \| Write file or device (Write 658 bytes on handle 5)
2018-12-17T21:51:19.760386803Z	66	PC: 15354 \| Move file pointer
2018-12-17T21:51:19.762157242Z	64	PC: 15362 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T21:51:19.766331599Z	87	PC: 15370 \| Get or set file date and time
2018-12-17T21:51:19.768915667Z	62	PC: 15374 \| Close file
2018-12-17T21:51:19.776675746Z	67	PC: 15381 \| Get or set file attributes
2018-12-17T21:51:19.78767718Z	26	PC: 1538b \| Set disk transfer address
2018-12-17T21:51:19.790916584Z	9	PC: 12bb5 \| Display string (String= '')
2018-12-17T21:51:19.793344289Z	9	PC: 12bbc \| Display string (Could not find end pointer)
2018-12-17T21:51:19.807789602Z	76	PC: 12bd2 \| Terminate with return code (Return code = '0')