Sample viewer

vx.netlux.org/Virus.DOS.WereWolf.658

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:55:39.304688064Z	71	PC: 13c9c \| Get current directory
2018-12-17T22:55:39.308432987Z	26	PC: 13d89 \| Set disk transfer address
2018-12-17T22:55:39.31037005Z	78	PC: 13dd5 \| Find first file
2018-12-17T22:55:39.317296015Z	67	PC: 13de3 \| Get or set file attributes
2018-12-17T22:55:39.334639863Z	61	PC: 13dea \| Open file (Filename = '')
2018-12-17T22:55:39.343127135Z	63	PC: 13df7 \| Read file or device (Read 24 bytes on handle 5)
2018-12-17T22:55:39.346202839Z	87	PC: 13ead \| Get or set file date and time
2018-12-17T22:55:39.347889691Z	62	PC: 13eb1 \| Close file
2018-12-17T22:55:39.35970891Z	67	PC: 13ebf \| Get or set file attributes
2018-12-17T22:55:39.372145639Z	79	PC: 13dd5 \| Find next file
2018-12-17T22:55:39.379227317Z	26	PC: 13d89 \| Set disk transfer address
2018-12-17T22:55:39.385491027Z	78	PC: 13d59 \| Find first file
2018-12-17T22:55:39.392038411Z	59	PC: 13d80 \| Change current directory
2018-12-17T22:55:39.396661716Z	26	PC: 13d89 \| Set disk transfer address
2018-12-17T22:55:39.398789728Z	26	PC: 13d89 \| Set disk transfer address
2018-12-17T22:55:39.400440583Z	78	PC: 13dd5 \| Find first file
2018-12-17T22:55:39.407090619Z	67	PC: 13de3 \| Get or set file attributes
2018-12-17T22:55:39.420361547Z	61	PC: 13dea \| Open file (Filename = '')
2018-12-17T22:55:39.433809488Z	63	PC: 13df7 \| Read file or device (Read 24 bytes on handle 5)
2018-12-17T22:55:39.441794776Z	87	PC: 13ead \| Get or set file date and time
2018-12-17T22:55:39.444244853Z	62	PC: 13eb1 \| Close file
2018-12-17T22:55:39.45339943Z	67	PC: 13ebf \| Get or set file attributes
2018-12-17T22:55:39.459122524Z	79	PC: 13dd5 \| Find next file
2018-12-17T22:55:39.46242817Z	59	PC: 13caf \| Change current directory
2018-12-17T22:55:39.467806776Z	26	PC: 13d89 \| Set disk transfer address
2018-12-17T22:55:39.469253226Z	78	PC: 13d59 \| Find first file
2018-12-17T22:55:39.475767317Z	59	PC: 13cc8 \| Change current directory
2018-12-17T22:55:39.479385632Z	26	PC: 13cf2 \| Set disk transfer address
2018-12-17T22:55:39.481472256Z	9	PC: 12a5c \| Display string (Could not find end pointer)
2018-12-17T22:55:39.487881801Z	76	PC: 12a61 \| Terminate with return code (Return code = '0')