Sample viewer

vx.netlux.org/Virus.DOS.Vienna.618.b

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:54:52.023754829Z	48	PC: 12a73 \| Get DOS version
2018-12-17T22:54:52.026963745Z	47	PC: 12a7f \| Get disk transfer address
2018-12-17T22:54:52.029053506Z	26	PC: 12a8e \| Set disk transfer address
2018-12-17T22:54:52.030905931Z	78	PC: 12b14 \| Find first file
2018-12-17T22:54:52.03803406Z	67	PC: 12b4d \| Get or set file attributes
2018-12-17T22:54:52.044984044Z	67	PC: 12b5e \| Get or set file attributes
2018-12-17T22:54:52.143427006Z	61	PC: 12b68 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:54:52.150868674Z	87	PC: 12b74 \| Get or set file date and time
2018-12-17T22:54:52.154357317Z	44	PC: 12b7e \| Get time 0x12b7e: and dh, 7 0x12b81: jmp 0x12b92 0x12b83: mov ah, 0x40 0x12b85: mov cx, 5 0x12b88: mov dx, si 0x12b8a: add dx, 0x8a 0x12b8e: int 0x21 0x12b90: jmp 0x12bf4 0x12b92: mov ah, 0x3f 0x12b94: mov cx, 3 0x12b97: mov dx, 0xa 0x12b9a: add dx, si 0x12b9c: int 0x21 0x12b9e: jb 0x12bf4 0x12ba0: cmp ax, 3 0x12ba3: jne 0x12bf4 0x12ba5: mov ax, 0x4202 0x12ba8: mov cx, 0 0x12bab: mov dx, 0 0x12bae: int 0x21
2018-12-17T22:54:52.156775295Z	63	PC: 12b9e \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:54:52.1640603Z	66	PC: 12bb0 \| Move file pointer
2018-12-17T22:54:52.166704513Z	64	PC: 12bd3 \| Write file or device (Write 618 bytes on handle 5)
2018-12-17T22:54:52.176467378Z	66	PC: 12be5 \| Move file pointer
2018-12-17T22:54:52.178396918Z	64	PC: 12bf4 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:54:52.186341293Z	87	PC: 12c07 \| Get or set file date and time
2018-12-17T22:54:52.189998202Z	62	PC: 12c0b \| Close file
2018-12-17T22:54:52.19858279Z	67	PC: 12c18 \| Get or set file attributes
2018-12-17T22:54:52.210557526Z	26	PC: 12c22 \| Set disk transfer address
2018-12-17T22:54:52.211693844Z	9	PC: 12a58 \| Display string (String= 'Hello, world!')