Sample viewer

vx.netlux.org/Virus.DOS.Vienna.618.c

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:56:47.718326017Z	48	PC: 12a72 \| Get DOS version
2018-12-17T22:56:47.721031072Z	47	PC: 12a7e \| Get disk transfer address
2018-12-17T22:56:47.723024139Z	26	PC: 12a8d \| Set disk transfer address
2018-12-17T22:56:47.724608959Z	78	PC: 12b13 \| Find first file
2018-12-17T22:56:47.731341387Z	67	PC: 12b4c \| Get or set file attributes
2018-12-17T22:56:47.738489307Z	67	PC: 12b5d \| Get or set file attributes
2018-12-17T22:56:47.756273925Z	61	PC: 12b67 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:56:47.763808811Z	87	PC: 12b73 \| Get or set file date and time
2018-12-17T22:56:47.766591283Z	44	PC: 12b7d \| Get time 0x12b7d: and dh, 7 0x12b80: jmp 0x12b91 0x12b82: mov ah, 0x40 0x12b84: mov cx, 5 0x12b87: mov dx, si 0x12b89: add dx, 0x8a 0x12b8d: int 0x21 0x12b8f: jmp 0x12bf3 0x12b91: mov ah, 0x3f 0x12b93: mov cx, 3 0x12b96: mov dx, 0xa 0x12b99: add dx, si 0x12b9b: int 0x21 0x12b9d: jb 0x12bf3 0x12b9f: cmp ax, 3 0x12ba2: jne 0x12bf3 0x12ba4: mov ax, 0x4202 0x12ba7: mov cx, 0 0x12baa: mov dx, 0 0x12bad: int 0x21
2018-12-17T22:56:47.768925792Z	63	PC: 12b9d \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:56:47.775843258Z	66	PC: 12baf \| Move file pointer
2018-12-17T22:56:47.778531232Z	64	PC: 12bd2 \| Write file or device (Write 618 bytes on handle 5)
2018-12-17T22:56:47.787772547Z	66	PC: 12be4 \| Move file pointer
2018-12-17T22:56:47.789084533Z	64	PC: 12bf3 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:56:47.795043277Z	87	PC: 12c06 \| Get or set file date and time
2018-12-17T22:56:47.797386222Z	62	PC: 12c0a \| Close file
2018-12-17T22:56:47.80492706Z	67	PC: 12c17 \| Get or set file attributes
2018-12-17T22:56:47.821805684Z	26	PC: 12c21 \| Set disk transfer address
2018-12-17T22:56:47.823267713Z	0	PC: 12a57 \| Program terminate