Sample viewer

vx.netlux.org/Virus.DOS.HLLW.Antax

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:03:07.698036925Z	48	PC: 12a4c \| Get DOS version
2018-12-17T23:03:07.700789068Z	53	PC: 12bef \| Get interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T23:03:07.702238637Z	53	PC: 12bfc \| Get interrupt vector (Interrupt = '4' AKA 'Auxiliary output')
2018-12-17T23:03:07.703593627Z	53	PC: 12c09 \| Get interrupt vector (Interrupt = '5' AKA 'Printer output')
2018-12-17T23:03:07.705606381Z	53	PC: 12c16 \| Get interrupt vector (Interrupt = '6' AKA 'Direct console I/O')
2018-12-17T23:03:07.706718692Z	37	PC: 12c2a \| Set interrupt vector (Interrupt = '0' AKA 'Program terminate')
2018-12-17T23:03:07.708022986Z	74	PC: 12af4 \| Reallocate memory
2018-12-17T23:03:07.710567888Z	68	PC: 13950 \| I/O control for devices (Set for = 'pyright 1991 Borland Intl.')
2018-12-17T23:03:07.712377883Z	68	PC: 13950 \| I/O control for devices (Set for = '')
2018-12-17T23:03:07.717014898Z	47	PC: 13760 \| Get disk transfer address
2018-12-17T23:03:07.718625651Z	26	PC: 13769 \| Set disk transfer address
2018-12-17T23:03:07.720140172Z	78	PC: 13773 \| Find first file
2018-12-17T23:03:07.725917558Z	26	PC: 1377c \| Set disk transfer address
2018-12-17T23:03:07.729009096Z	67	PC: 1372c \| Get or set file attributes
2018-12-17T23:03:07.735295503Z	67	PC: 1374c \| Get or set file attributes
2018-12-17T23:03:07.753865854Z	86	PC: 15ae1 \| Rename file
2018-12-17T23:03:07.76674371Z	55	PC: 138e8 \| Get or set switch character
2018-12-17T23:03:07.769208855Z	41	PC: 14cd1 \| Parse filename
2018-12-17T23:03:07.770925187Z	41	PC: 14cf0 \| Parse filename
2018-12-17T23:03:07.773046347Z	75	PC: 14d30 \| Execute program
2018-12-17T23:03:07.793477362Z	80	PC: 27979 \| Set current PSP
2018-12-17T23:03:07.794159815Z	48	PC: 2797e \| Get DOS version
2018-12-17T23:03:07.796126674Z	99	PC: 2e160 \| Get DBCS lead byte table pointer
2018-12-17T23:03:07.798864091Z	101	PC: 27a04 \| Get extended country info
2018-12-17T23:03:07.800056901Z	99	PC: 27a0a \| Get DBCS lead byte table pointer
2018-12-17T23:03:07.801840317Z	74	PC: 27a6c \| Reallocate memory
2018-12-17T23:03:07.803073735Z	25	PC: 27aa3 \| Get default drive
2018-12-17T23:03:07.804247895Z	37	PC: 27563 \| Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-17T23:03:07.80580511Z	37	PC: 2756a \| Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-17T23:03:07.806819158Z	37	PC: 27571 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:03:07.810740371Z	74	PC: 2670c \| Reallocate memory
2018-12-17T23:03:07.812587399Z	72	PC: 2674d \| Allocate memory
2018-12-17T23:03:07.814068229Z	72	PC: 26785 \| Allocate memory
2018-12-17T23:03:07.815448322Z	72	PC: 2678d \| Allocate memory