Sample viewer

vx.netlux.org/Virus.DOS.Vienna.600

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:57:25.001832354Z 44 PC: 12d07 | Get time 0x12d07: and dh, 7
0x12d0a: jne 0x12d76
0x12d0c: mov ah, 0xf
0x12d0e: int 0x10
0x12d10: cmp ah, 0x50
0x12d13: jne 0x12d76
0x12d15: mov byte ptr [bp - 0x77], bh
0x12d18: mov dh, 0
0x12d1a: mov di, si
0x12d1c: mov dl, 0
0x12d1e: mov ah, 2
0x12d20: mov bh, byte ptr [bp - 0x77]
0x12d23: int 0x10
0x12d25: mov ah, 8
0x12d27: mov bh, byte ptr [bp - 0x77]
0x12d2a: int 0x10
0x12d2c: stosw word ptr es:[di], ax
0x12d2d: inc dl
0x12d2f: cmp dl, 0x50
0x12d32: jne 0x12d1e

{"DateBased":false,"Day":0,"Month":0,"Year":0,"Hour":0,"Min":0,"Second":0,"TimeBased":true,"OriginalID":12548,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:35:36.819589357Z 44 PC: 12d07 | Get time 0x12d07: and dh, 7
0x12d0a: jne 0x12d76
0x12d0c: mov ah, 0xf
0x12d0e: int 0x10
0x12d10: cmp ah, 0x50
0x12d13: jne 0x12d76
0x12d15: mov byte ptr [bp - 0x77], bh
0x12d18: mov dh, 0
0x12d1a: mov di, si
0x12d1c: mov dl, 0
0x12d1e: mov ah, 2
0x12d20: mov bh, byte ptr [bp - 0x77]
0x12d23: int 0x10
0x12d25: mov ah, 8
0x12d27: mov bh, byte ptr [bp - 0x77]
0x12d2a: int 0x10
0x12d2c: stosw word ptr es:[di], ax
0x12d2d: inc dl
0x12d2f: cmp dl, 0x50
0x12d32: jne 0x12d1e

{"DateBased":false,"Day":0,"Month":0,"Year":0,"Hour":0,"Min":0,"Second":7,"TimeBased":true,"OriginalID":12548,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:35:37.312465676Z 44 PC: 12d07 | Get time 0x12d07: and dh, 7
0x12d0a: jne 0x12d76
0x12d0c: mov ah, 0xf
0x12d0e: int 0x10
0x12d10: cmp ah, 0x50
0x12d13: jne 0x12d76
0x12d15: mov byte ptr [bp - 0x77], bh
0x12d18: mov dh, 0
0x12d1a: mov di, si
0x12d1c: mov dl, 0
0x12d1e: mov ah, 2
0x12d20: mov bh, byte ptr [bp - 0x77]
0x12d23: int 0x10
0x12d25: mov ah, 8
0x12d27: mov bh, byte ptr [bp - 0x77]
0x12d2a: int 0x10
0x12d2c: stosw word ptr es:[di], ax
0x12d2d: inc dl
0x12d2f: cmp dl, 0x50
0x12d32: jne 0x12d1e