Sample viewer

vx.netlux.org/Virus.DOS.Scity.713

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:56:48.269871447Z	48	PC: 12a6e \| Get DOS version
2018-12-17T22:56:48.271555355Z	44	PC: 12a7c \| Get time 0x12a7c: cmp ch, 0x12 0x12a7f: jge 0x12a84 0x12a81: jmp 0x12c47 0x12a84: mov ah, 0x19 0x12a86: int 0x21 0x12a88: call 0x12c3c 0x12a8b: mov byte ptr [bp + 0x378], 0x41 0x12a90: add byte ptr [bp + 0x378], al 0x12a94: mov ah, 0x4e 0x12a96: call 0x12c5a 0x12a99: jae 0x12b05 0x12a9b: fdivp st(5) 0x12a9d: sbb bl, ah
2018-12-17T22:56:48.273760411Z	26	PC: 12bc3 \| Set disk transfer address

{"DateBased":false,"Day":0,"Month":0,"Year":0,"Hour":0,"Min":0,"Second":0,"TimeBased":true,"OriginalID":12345,"SideJobID":0}

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:32:29.628818288Z	48	PC: 12a6e \| Get DOS version
2018-12-25T12:32:29.630677259Z	44	PC: 12a7c \| Get time 0x12a7c: cmp ch, 0x12 0x12a7f: jge 0x12a84 0x12a81: jmp 0x12c47 0x12a84: mov ah, 0x19 0x12a86: int 0x21 0x12a88: call 0x12c3c 0x12a8b: mov byte ptr [bp + 0x378], 0x41 0x12a90: add byte ptr [bp + 0x378], al 0x12a94: mov ah, 0x4e 0x12a96: call 0x12c5a 0x12a99: jae 0x12b05 0x12a9b: fdivp st(5) 0x12a9d: sbb bl, ah
2018-12-25T12:32:29.632795597Z	26	PC: 12bc3 \| Set disk transfer address

{"DateBased":false,"Day":0,"Month":0,"Year":0,"Hour":18,"Min":0,"Second":0,"TimeBased":true,"OriginalID":12345,"SideJobID":0}

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:32:29.878701563Z	48	PC: 12a6e \| Get DOS version
2018-12-25T12:32:29.880511322Z	44	PC: 12a7c \| Get time 0x12a7c: cmp ch, 0x12 0x12a7f: jge 0x12a84 0x12a81: jmp 0x12c47 0x12a84: mov ah, 0x19 0x12a86: int 0x21 0x12a88: call 0x12c3c 0x12a8b: mov byte ptr [bp + 0x378], 0x41 0x12a90: add byte ptr [bp + 0x378], al 0x12a94: mov ah, 0x4e 0x12a96: call 0x12c5a 0x12a99: jae 0x12b05 0x12a9b: fdivp st(5) 0x12a9d: sbb bl, ah
2018-12-25T12:32:29.88254304Z	25	PC: 12a88 \| Get default drive
2018-12-25T12:32:29.88357607Z	26	PC: 12bc3 \| Set disk transfer address
2018-12-25T12:32:29.885102919Z	78	PC: 12bcd \| Find first file
2018-12-25T12:32:29.891036599Z	26	PC: 12bc3 \| Set disk transfer address (See above)
2018-12-25T12:32:29.892203063Z	79	PC: 12bcd \| Find next file (See above)
2018-12-25T12:32:29.894782454Z	26	PC: 12bc3 \| Set disk transfer address (See above)
2018-12-25T12:32:29.89932949Z	79	PC: 12bcd \| Find next file (See above)
2018-12-25T12:32:29.901628374Z	26	PC: 12bc3 \| Set disk transfer address (See above)
2018-12-25T12:32:29.902861605Z	79	PC: 12bcd \| Find next file (See above)
2018-12-25T12:32:29.905579058Z	26	PC: 12bc3 \| Set disk transfer address (See above)
2018-12-25T12:32:29.906597818Z	79	PC: 12bcd \| Find next file (See above)
2018-12-25T12:32:29.909033189Z	26	PC: 12bc3 \| Set disk transfer address (See above)
2018-12-25T12:32:29.910900448Z	79	PC: 12bcd \| Find next file (See above)
2018-12-25T12:32:29.913231741Z	26	PC: 12bc3 \| Set disk transfer address (See above)
2018-12-25T12:32:29.914263931Z	79	PC: 12bcd \| Find next file (See above)
2018-12-25T12:32:29.916986901Z	26	PC: 12bc3 \| Set disk transfer address (See above)
2018-12-25T12:32:29.917878489Z	79	PC: 12bcd \| Find next file (See above)
2018-12-25T12:32:29.920279228Z	26	PC: 12bc3 \| Set disk transfer address (See above)
2018-12-25T12:32:29.921918953Z	79	PC: 12bcd \| Find next file (See above)
2018-12-25T12:32:29.924189008Z	26	PC: 12bc3 \| Set disk transfer address (See above)
2018-12-25T12:32:29.925106121Z	79	PC: 12bcd \| Find next file (See above)
2018-12-25T12:32:29.927709432Z	26	PC: 12bc3 \| Set disk transfer address (See above)