Sample viewer

vx.netlux.org/Virus.DOS.Goma.626

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:55:19.279833222Z 26 PC: 12a54 | Set disk transfer address
2018-12-17T22:55:19.290425361Z 250 PC: 12c41 | UNKNOWN!
2018-12-17T22:55:19.294332831Z 42 PC: 12c41 | Get date 0x12c41: ret
0x12c42: call 0x12c45
0x12c45: pop bp
0x12c46: sub bp, 0x305
0x12c4a: int3
0x12c4b: ret
0x12c4c: mov ah, 0x2a
0x12c4e: call 0x22c3f
0x12c51: cmp dh, 0xa
0x12c54: jne 0x12cb3
0x12c56: cmp dl, 0x16
0x12c59: jne 0x12cb3
0x12c5b: call 0x12c78
0x12c5e: ret
0x12c5f: mov ax, 0xca00
0x12c62: mov bx, 0x5442
0x12c65: int 0x2f
0x12c67: cmp al, 0
0x12c69: jne 0x12c6c
0x12c6b: ret
2018-12-17T22:55:19.29717134Z 71 PC: 12aea | Get current directory
2018-12-17T22:55:19.300496003Z 78 PC: 12b18 | Find first file
2018-12-17T22:55:19.307617488Z 67 PC: 12b36 | Get or set file attributes
2018-12-17T22:55:19.313977385Z 67 PC: 12b87 | Get or set file attributes
2018-12-17T22:55:19.330755128Z 61 PC: 12b43 | Open file (Filename = 'TEST.EXE')
2018-12-17T22:55:19.339477083Z 87 PC: 12b4b | Get or set file date and time
2018-12-17T22:55:19.341851922Z 63 PC: 12b58 | Read file or device (Read 28 bytes on handle 5)
2018-12-17T22:55:19.344884297Z 66 PC: 12bda | Move file pointer
2018-12-17T22:55:19.3471733Z 64 PC: 12c28 | Write file or device (Write 626 bytes on handle 5)
2018-12-17T22:55:19.355796013Z 66 PC: 12c30 | Move file pointer
2018-12-17T22:55:19.356838389Z 64 PC: 12c3c | Write file or device (Write 28 bytes on handle 5)
2018-12-17T22:55:19.358700855Z 87 PC: 12b74 | Get or set file date and time
2018-12-17T22:55:19.360504602Z 67 PC: 12b87 | Get or set file attributes
2018-12-17T22:55:19.367995199Z 62 PC: 12b7e | Close file
2018-12-17T22:55:19.376034744Z 79 PC: 12b2a | Find next file
2018-12-17T22:55:19.378837643Z 59 PC: 12afb | Change current directory
2018-12-17T22:55:19.381640287Z 59 PC: 12b09 | Change current directory
2018-12-17T22:55:19.386019076Z 26 PC: 12a92 | Set disk transfer address