Sample viewer

vx.netlux.org/Virus.DOS.Asmodeous.1160

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:00:18.634060124Z	237	PC: 13fc7 \| UNKNOWN!
2018-12-17T23:00:18.635343548Z	53	PC: 13ff4 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T23:00:18.636385793Z	37	PC: 14004 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T23:00:18.637656911Z	9	PC: 12a86 \| Display string (String= 'Goat file (COM/....). Size=000017D4h/0000006100d bytes. ')
2018-12-17T23:00:18.643888829Z	48	PC: 12a8f \| Get DOS version
2018-12-17T23:00:18.645134197Z	53	PC: 9ef34 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:00:18.646167017Z	37	PC: 9ef34 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:00:18.647781707Z	67	PC: 9ef34 \| Get or set file attributes
2018-12-17T23:00:18.662929577Z	61	PC: 9ef34 \| Open file (Filename = '')
2018-12-17T23:00:18.669465688Z	87	PC: 9ef34 \| Get or set file date and time
2018-12-17T23:00:18.674320913Z	63	PC: 9ef34 \| Read file or device (Read 26 bytes on handle 5)
2018-12-17T23:00:18.676837046Z	66	PC: 9ef34 \| Move file pointer
2018-12-17T23:00:18.678277568Z	63	PC: 9ef34 \| Read file or device (Read 1176 bytes on handle 5)
2018-12-17T23:00:18.686165557Z	66	PC: 9ef34 \| Move file pointer
2018-12-17T23:00:18.690799137Z	64	PC: 9ef34 \| Write file or device (Write 2332 bytes on handle 5)
2018-12-17T23:00:18.699077999Z	66	PC: 9ef34 \| Move file pointer
2018-12-17T23:00:18.70169069Z	64	PC: 9ef34 \| Write file or device (Write 24 bytes on handle 5)
2018-12-17T23:00:18.710956551Z	87	PC: 9ef34 \| Get or set file date and time
2018-12-17T23:00:18.715030341Z	62	PC: 9ef34 \| Close file
2018-12-17T23:00:18.72393251Z	37	PC: 9ef34 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:00:18.725793176Z	61	PC: 12b5c \| Open file (Filename = '')
2018-12-17T23:00:18.733305857Z	93	PC: 12afe \| File sharing functions
2018-12-17T23:00:18.740231876Z	9	PC: 12a86 \| Display string (String= 'Size change=0910h/02320d. ')
2018-12-17T23:00:18.744422741Z	76	PC: 12ae3 \| Terminate with return code (Return code = '1')