Sample viewer

vx.netlux.org/Virus.DOS.Guerilla.1996

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:00:47.878209103Z	48	PC: 19cbf \| Get DOS version
2018-12-17T23:00:47.879975633Z	9	PC: 19cd0 \| Display string (String= '\Â }â)ö˜ÈyÈÊ€2ó¤´¾á¥,"z ¬§1rì‹NÈ ä!â\|ÎÃˆpÃ^¤b"?Ú«E&À0SÌ±ä OMûSsð¾8`àÒ‹(³ìWQíBAeüµÚW‚ˆ¦Võæ5> tÀøãC9b! †å•kâÍnï•eï²e ~üÂ†U üþÀ^ŽJó‚Vÿ2õvŸ\ò5}ö}ŸTënÿlKäzÌrëðt¤ø×ó/ÇãHêd²èàá@ˆ=/ééJº¶Iù< ·‰')
2018-12-17T23:00:47.881845334Z	82	PC: 1a451 \| Get DOS internal pointers (SYSVARS)
2018-12-17T23:00:47.898446296Z	48	PC: 16cf2 \| Get DOS version
2018-12-17T23:00:47.90014664Z	74	PC: 16d6b \| Reallocate memory
2018-12-17T23:00:47.904468841Z	53	PC: 16de9 \| Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T23:00:47.906116829Z	37	PC: 16dfb \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T23:00:47.907831422Z	68	PC: 16e8b \| I/O control for devices (Set for = 'Æ¤ÃÃ‹&Ü‰Úˆ.ŠÄ‰.&Ä‰6pÄ—_^]Ã')
2018-12-17T23:00:47.910322879Z	68	PC: 16e8b \| I/O control for devices (Set for = '')
2018-12-17T23:00:47.912268674Z	68	PC: 16e8b \| I/O control for devices (Set for = '¥€:×Â##YjL»]BMt¿R=m•£´ÒtHjLy^F¤n~ŸÝ/KÇÏÞTAÒúy©òÔÿ»ÐÃR FýºÓUæ„@-É'àÎ7;ú‚/Í¢"+uäÅ¼LêIS\|gµýç€¸‡®%•ø¨¶Ã¹Þ™&²§úÈk±Ôƒú½–j1Íz9Î¶÷¹›êLWbÀlVJò9u½£P‡D0ŠW“ ;{â¨©“ÀP»V×<æ-ªBœ‘ïrÖêéÆ>gmôªÅé*SÓ«C’ ›Õ”€ ÐY’Y=\|yÔ/Dç¤')
2018-12-17T23:00:47.914219516Z	68	PC: 16e8b \| I/O control for devices (Set for = 'm•£´ÒtHjLy^F¤n~ŸÝ/KÇÏÞTAÒúy©òÔÿ»ÐÃR FýºÓUæ„@-É'àÎ7;ú‚/Í¢"+uäÅ¼LêIS\|gµýç€¸‡®%•ø¨¶Ã¹Þ™&²§úÈk±Ôƒú½–j1Íz9Î¶÷¹›êLWbÀlVJò9u½£P‡D0ŠW“ ;{â¨©“ÀP»V×<æ-ªBœ‘ïrÖêéÆ>gmôªÅé*SÓ«C’ ›Õ”€ ÐY’Y=\|yÔ/Dç¤')
2018-12-17T23:00:47.918190408Z	68	PC: 16e8b \| I/O control for devices (Set for = 'm•£´ÒtHjLy^F¤n~ŸÝ/KÇÏÞTAÒúy©òÔÿ»ÐÃR FýºÓUæ„@-É'àÎ7;ú‚/Í¢"+uäÅ¼LêIS\|gµýç€¸‡®%•ø¨¶Ã¹Þ™&²§úÈk±Ôƒú½–j1Íz9Î¶÷¹›êLWbÀlVJò9u½£P‡D0ŠW“ ;{â¨©“ÀP»V×<æ-ªBœ‘ïrÖêéÆ>gmôªÅé*SÓ«C’ ›Õ”€ ÐY’Y=\|yÔ/Dç¤')
2018-12-17T23:00:47.920051839Z	56	PC: 172d6 \| Get or set country info
2018-12-17T23:00:47.924181526Z	55	PC: 15558 \| Get or set switch character
2018-12-17T23:00:47.935095152Z	68	PC: 15209 \| I/O control for devices (Set for = '')
2018-12-17T23:00:47.944879072Z	43	PC: 15a8f \| Set date
2018-12-17T23:00:47.947031375Z	84	PC: 15aab \| Get verify flag
2018-12-17T23:00:47.948944085Z	51	PC: 15ab3 \| Get or set Ctrl-Break
2018-12-17T23:00:47.951061013Z	51	PC: 15abe \| Get or set Ctrl-Break
2018-12-17T23:00:47.952429508Z	37	PC: 15ac8 \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T23:00:47.955155355Z	53	PC: 156b0 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:00:47.958891803Z	37	PC: 156c0 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:00:47.977948828Z	25	PC: 9fb9f \| Get default drive
2018-12-17T23:00:47.983534718Z	61	PC: 15846 \| Open file (Filename = 'ŠÖ2öÑã.3&3‰Dþ‰Ãƒ>`Ä')
2018-12-17T23:00:47.993052697Z	64	PC: 157ee \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:00:48.01571326Z	64	PC: 157ee \| Write file or device (Write 2 bytes on handle 1)
2018-12-17T23:00:48.069779387Z	12	PC: 172d6 \| Flush input buffer and input