Sample viewer

vx.netlux.org/Virus.DOS.Albania.575

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:56:11.352525677Z	53	PC: 12b31 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:56:11.354997635Z	37	PC: 12d0e \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:56:11.356154542Z	26	PC: 12b47 \| Set disk transfer address
2018-12-17T22:56:11.35715575Z	25	PC: 12b4b \| Get default drive
2018-12-17T22:56:11.369354593Z	71	PC: 12b61 \| Get current directory
2018-12-17T22:56:11.372568022Z	59	PC: 12c2b \| Change current directory
2018-12-17T22:56:11.377880944Z	78	PC: 12c34 \| Find first file
2018-12-17T22:56:11.383813006Z	67	PC: 12c69 \| Get or set file attributes
2018-12-17T22:56:11.728368476Z	61	PC: 12c6e \| Open file (Filename = 'C:\COMMAND.COM')
2018-12-17T22:56:11.734389624Z	66	PC: 12c7d \| Move file pointer
2018-12-17T22:56:11.735606905Z	63	PC: 12c88 \| Read file or device (Read 7 bytes on handle 5)
2018-12-17T22:56:11.738650063Z	66	PC: 12d02 \| Move file pointer
2018-12-17T22:56:11.739891932Z	63	PC: 12ca5 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:56:11.742772664Z	66	PC: 12d02 \| Move file pointer
2018-12-17T22:56:11.745776349Z	64	PC: 12cc0 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:56:11.748250747Z	66	PC: 12cc9 \| Move file pointer
2018-12-17T22:56:11.749447739Z	64	PC: 12cd5 \| Write file or device (Write 575 bytes on handle 5)
2018-12-17T22:56:11.756846457Z	62	PC: 12ce0 \| Close file
2018-12-17T22:56:11.763801082Z	67	PC: 12ceb \| Get or set file attributes
2018-12-17T22:56:11.772502787Z	26	PC: 12baa \| Set disk transfer address
2018-12-17T22:56:11.773934944Z	59	PC: 12bb2 \| Change current directory
2018-12-17T22:56:11.777286504Z	37	PC: 12d0e \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:56:11.778227087Z	9	PC: 12ae6 \| Display string (String= 'This Is The Base !!!! ')