Sample viewer

vx.netlux.org/Virus.DOS.Argentina.1249

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:59:39.206919746Z	250	PC: 12a90 \| UNKNOWN!
2018-12-17T22:59:39.208441844Z	53	PC: 12a95 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:59:39.209549971Z	37	PC: 12aa5 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T22:59:39.210589745Z	74	PC: 12ac0 \| Reallocate memory
2018-12-17T22:59:39.219367898Z	75	PC: 12af7 \| Execute program
2018-12-17T22:59:39.234179347Z	76	PC: 13096 \| Terminate with return code (Return code = '0')
2018-12-17T22:59:39.237001211Z	77	PC: 12afb \| Get program return code
2018-12-17T22:59:39.238662467Z	49	PC: 12b04 \| Terminate and stay resident (Return code = '0' \| Memory size = '95')

{"DateBased":true,"Day":9,"Month":7,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":13277,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:37:55.901803885Z	250	PC: 12a90 \| UNKNOWN!
2018-12-25T12:37:55.902713973Z	53	PC: 12a95 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:37:55.903810835Z	37	PC: 12aa5 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:37:55.904741481Z	74	PC: 12ac0 \| Reallocate memory
2018-12-25T12:37:55.905779453Z	75	PC: 12af7 \| Execute program
2018-12-25T12:37:55.915645356Z	76	PC: 13096 \| Terminate with return code (Return code = '0')
2018-12-25T12:37:55.918067202Z	77	PC: 12afb \| Get program return code
2018-12-25T12:37:55.919326377Z	49	PC: 12b04 \| Terminate and stay resident (Return code = '0' \| Memory size = '95')

{"DateBased":true,"Day":17,"Month":8,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":13277,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:37:55.976271053Z	250	PC: 12a90 \| UNKNOWN!
2018-12-25T12:37:55.97732159Z	53	PC: 12a95 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:37:55.978923628Z	37	PC: 12aa5 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:37:55.980401492Z	74	PC: 12ac0 \| Reallocate memory
2018-12-25T12:37:55.982315601Z	75	PC: 12af7 \| Execute program
2018-12-25T12:37:55.999342098Z	76	PC: 13096 \| Terminate with return code (Return code = '0')
2018-12-25T12:37:56.002542541Z	77	PC: 12afb \| Get program return code
2018-12-25T12:37:56.00357784Z	49	PC: 12b04 \| Terminate and stay resident (Return code = '0' \| Memory size = '95')

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":13277,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:37:56.198629402Z	250	PC: 12a90 \| UNKNOWN!
2018-12-25T12:37:56.19999264Z	53	PC: 12a95 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:37:56.202280274Z	37	PC: 12aa5 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:37:56.203713001Z	74	PC: 12ac0 \| Reallocate memory
2018-12-25T12:37:56.20618787Z	75	PC: 12af7 \| Execute program
2018-12-25T12:37:56.231683367Z	76	PC: 13096 \| Terminate with return code (Return code = '0')
2018-12-25T12:37:56.23486205Z	77	PC: 12afb \| Get program return code
2018-12-25T12:37:56.237018103Z	49	PC: 12b04 \| Terminate and stay resident (Return code = '0' \| Memory size = '95')

{"DateBased":true,"Day":25,"Month":5,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":13277,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:37:56.287354489Z	250	PC: 12a90 \| UNKNOWN!
2018-12-25T12:37:56.288765168Z	53	PC: 12a95 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:37:56.290275161Z	37	PC: 12aa5 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:37:56.291347147Z	74	PC: 12ac0 \| Reallocate memory
2018-12-25T12:37:56.293683223Z	75	PC: 12af7 \| Execute program
2018-12-25T12:37:56.308272706Z	76	PC: 13096 \| Terminate with return code (Return code = '0')
2018-12-25T12:37:56.311805988Z	77	PC: 12afb \| Get program return code
2018-12-25T12:37:56.313469965Z	49	PC: 12b04 \| Terminate and stay resident (Return code = '0' \| Memory size = '95')

{"DateBased":true,"Day":20,"Month":6,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":13277,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T12:37:56.34377038Z	250	PC: 12a90 \| UNKNOWN!
2018-12-25T12:37:56.345269655Z	53	PC: 12a95 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:37:56.346768863Z	37	PC: 12aa5 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:37:56.34800226Z	74	PC: 12ac0 \| Reallocate memory
2018-12-25T12:37:56.349532037Z	75	PC: 12af7 \| Execute program
2018-12-25T12:37:56.366516591Z	76	PC: 13096 \| Terminate with return code (Return code = '0')
2018-12-25T12:37:56.370178689Z	77	PC: 12afb \| Get program return code
2018-12-25T12:37:56.371857015Z	49	PC: 12b04 \| Terminate and stay resident (Return code = '0' \| Memory size = '95')