Sample viewer

vx.netlux.org/Virus.DOS.Khizhnjak-based.Hallo.962

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:02:49.820702919Z	53	PC: 12abe \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:02:49.822435594Z	37	PC: 12ad0 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:02:49.824568722Z	25	PC: 12af2 \| Get default drive
2018-12-17T23:02:49.826341192Z	78	PC: 12b25 \| Find first file
2018-12-17T23:02:49.833625559Z	67	PC: 12bac \| Get or set file attributes
2018-12-17T23:02:49.846747433Z	67	PC: 12bb8 \| Get or set file attributes
2018-12-17T23:02:50.078412724Z	61	PC: 12bc6 \| Open file (Filename = '�+Ɋ��C�!��i��}�ظ$%�!��!�>�t�')
2018-12-17T23:02:50.086863522Z	63	PC: 12bdd \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:02:50.095402626Z	66	PC: 12bf2 \| Move file pointer
2018-12-17T23:02:50.097654337Z	66	PC: 12c2c \| Move file pointer
2018-12-17T23:02:50.099869549Z	63	PC: 12c40 \| Read file or device (Read 1 bytes on handle 5)
2018-12-17T23:02:50.103711637Z	66	PC: 12c6c \| Move file pointer
2018-12-17T23:02:50.105134481Z	64	PC: 12c7e \| Write file or device (Write 962 bytes on handle 5)
2018-12-17T23:02:50.115452918Z	66	PC: 12c90 \| Move file pointer
2018-12-17T23:02:50.118453205Z	64	PC: 12ca1 \| Write file or device (Write 3 bytes on handle 5)
2018-12-17T23:02:50.126583561Z	62	PC: 12cc2 \| Close file
2018-12-17T23:02:50.136357696Z	67	PC: 12cd8 \| Get or set file attributes
2018-12-17T23:02:50.147890935Z	37	PC: 12ced \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:02:50.149864994Z	14	PC: 12cf6 \| Set default drive (Drive = 'A')
2018-12-17T23:02:50.15170996Z	9	PC: 12aa2 \| Display string (String= 'ABCDE - This is a 100 byte COM test, 1994 ')