Sample viewer

vx.netlux.org/Virus.DOS.LAVI.Pirania.1617

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:57:21.296977275Z	42	PC: 12d94 \| Get date 0x12d94: cmp dh, 8 0x12d97: jne 0x12dab 0x12d99: cmp dl, 2 0x12d9c: jne 0x12dab 0x12d9e: mov bl, bl 0x12da0: mov ch, ch 0x12da2: call 0x12f78 0x12da5: add bh, 0 0x12da8: sub ch, 0 0x12dab: sub dx, 0 0x12dae: mov di, di 0x12db0: push cs 0x12db1: pop es 0x12db2: sub dx, 0 0x12db5: mov dx, dx 0x12db7: mov si, 0x13f 0x12dba: sub ax, 0 0x12dbd: sub bh, 0 0x12dc0: cmp word ptr [bp + si + 1], 0x414c 0x12dc5: jne 0x12ddd
2018-12-17T22:57:21.29978775Z	185	PC: 12dd1 \| UNKNOWN!

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":12529,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:35:34.331869305Z	42	PC: 12d94 \| Get date 0x12d94: cmp dh, 8 0x12d97: jne 0x12dab 0x12d99: cmp dl, 2 0x12d9c: jne 0x12dab 0x12d9e: mov bl, bl 0x12da0: mov ch, ch 0x12da2: call 0x12f78 0x12da5: add bh, 0 0x12da8: sub ch, 0 0x12dab: sub dx, 0 0x12dae: mov di, di 0x12db0: push cs 0x12db1: pop es 0x12db2: sub dx, 0 0x12db5: mov dx, dx 0x12db7: mov si, 0x13f 0x12dba: sub ax, 0 0x12dbd: sub bh, 0 0x12dc0: cmp word ptr [bp + si + 1], 0x414c 0x12dc5: jne 0x12ddd
2018-12-25T12:35:34.335142097Z	185	PC: 12dd1 \| UNKNOWN!

{"DateBased":true,"Day":1,"Month":8,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":12529,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:35:34.920655141Z	42	PC: 12d94 \| Get date 0x12d94: cmp dh, 8 0x12d97: jne 0x12dab 0x12d99: cmp dl, 2 0x12d9c: jne 0x12dab 0x12d9e: mov bl, bl 0x12da0: mov ch, ch 0x12da2: call 0x12f78 0x12da5: add bh, 0 0x12da8: sub ch, 0 0x12dab: sub dx, 0 0x12dae: mov di, di 0x12db0: push cs 0x12db1: pop es 0x12db2: sub dx, 0 0x12db5: mov dx, dx 0x12db7: mov si, 0x13f 0x12dba: sub ax, 0 0x12dbd: sub bh, 0 0x12dc0: cmp word ptr [bp + si + 1], 0x414c 0x12dc5: jne 0x12ddd
2018-12-25T12:35:34.923068993Z	185	PC: 12dd1 \| UNKNOWN!

{"DateBased":true,"Day":2,"Month":8,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":12529,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:35:34.968687604Z	42	PC: 12d94 \| Get date 0x12d94: cmp dh, 8 0x12d97: jne 0x12dab 0x12d99: cmp dl, 2 0x12d9c: jne 0x12dab 0x12d9e: mov bl, bl 0x12da0: mov ch, ch 0x12da2: call 0x12f78 0x12da5: add bh, 0 0x12da8: sub ch, 0 0x12dab: sub dx, 0 0x12dae: mov di, di 0x12db0: push cs 0x12db1: pop es 0x12db2: sub dx, 0 0x12db5: mov dx, dx 0x12db7: mov si, 0x13f 0x12dba: sub ax, 0 0x12dbd: sub bh, 0 0x12dc0: cmp word ptr [bp + si + 1], 0x414c 0x12dc5: jne 0x12ddd
2018-12-25T12:35:34.97073997Z	0	PC: 12f83 \| Program terminate