Sample viewer

vx.netlux.org/Virus.DOS.HLLO.Aids.13952

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T23:00:55.569822324Z 48 PC: 13268 | Get DOS version
2018-12-17T23:00:55.57266059Z 74 PC: 13268 | Reallocate memory
2018-12-17T23:00:55.574561587Z 37 PC: 13268 | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T23:00:55.676459723Z 53 PC: 13268 | Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T23:00:55.679128894Z 37 PC: 13268 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T23:00:55.681438382Z 25 PC: 13268 | Get default drive
2018-12-17T23:00:55.68300317Z 71 PC: 13268 | Get current directory
2018-12-17T23:00:55.687915706Z 26 PC: 15755 | Set disk transfer address
2018-12-17T23:00:55.690259244Z 78 PC: 15787 | Find first file
2018-12-17T23:00:55.697848852Z 61 PC: 13268 | Open file (Filename = 'SLEEP.COM')
2018-12-17T23:00:55.706535114Z 63 PC: 13268 | Read file or device (Read 256 bytes on handle 5)
2018-12-17T23:00:55.713686463Z 66 PC: 13268 | Move file pointer
2018-12-17T23:00:55.71572724Z 64 PC: 13268 | Write file or device (Write 13952 bytes on handle 5)
2018-12-17T23:00:55.741037146Z 62 PC: 13268 | Close file
2018-12-17T23:00:55.749845452Z 37 PC: 13268 | Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T23:00:55.762483871Z 76 PC: 13268 | Terminate with return code (Return code = '0')