Sample viewer

vx.netlux.org/Virus.DOS.DogLasi.1537

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T23:04:47.346996551Z 67 PC: 9f771 | Get or set file attributes
2018-12-17T23:04:47.353836244Z 67 PC: 9f77e | Get or set file attributes
2018-12-17T23:04:47.770667129Z 61 PC: 9f789 | Open file (Filename = 'ÿÿÿÿÿÿÿÿÿÿÿÿƒòW')
2018-12-17T23:04:47.777727828Z 87 PC: 9f79e | Get or set file date and time
2018-12-17T23:04:47.779520429Z 66 PC: 9f7b6 | Move file pointer
2018-12-17T23:04:47.781995624Z 63 PC: 9f7c5 | Read file or device (Read 2 bytes on handle 5)
2018-12-17T23:04:47.785374088Z 66 PC: 9f94f | Move file pointer
2018-12-17T23:04:47.787139158Z 63 PC: 9f95f | Read file or device (Read 32 bytes on handle 5)
2018-12-17T23:04:47.791058008Z 44 PC: 9f7dd | Get time 0x9f7dd: mov byte ptr [0x528], dl
0x9f7e1: cmp word ptr [0x632], 0x5a4d
0x9f7e7: je 0x9f843
0x9f7e9: cmp word ptr [0x632], 0x4d5a
0x9f7ef: je 0x9f843
0x9f7f1: mov byte ptr [0x620], 0x43
0x9f7f6: nop
0x9f7f7: inc dl
0x9f7f9: xor byte ptr [0x640], dl
0x9f7fd: inc dl
0x9f7ff: xor byte ptr [0x646], dl
0x9f803: inc dl
0x9f805: xor byte ptr [0x648], dl
0x9f809: lea di, word ptr [0x5fa]
0x9f80d: lea si, word ptr [0x632]
0x9f811: mov cx, 3
0x9f814: rep movsb byte ptr es:[di], byte ptr [si]
0x9f816: call 0x9fa1e
0x9f819: push ax
0x9f81a: mov byte ptr [0x632], 0xe9
2018-12-17T23:04:47.793689447Z 66 PC: 9fa2e | Move file pointer
2018-12-17T23:04:47.79551516Z 66 PC: 9f94f | Move file pointer
2018-12-17T23:04:47.798645578Z 64 PC: 9f972 | Write file or device (Write 32 bytes on handle 5)
2018-12-17T23:04:47.802178782Z 66 PC: 9fa2e | Move file pointer
2018-12-17T23:04:47.803962186Z 64 PC: 9f9d6 | Write file or device (Write 1537 bytes on handle 5)
2018-12-17T23:04:47.81700206Z 87 PC: 9f9fe | Get or set file date and time
2018-12-17T23:04:47.818922803Z 62 PC: 9fa06 | Close file
2018-12-17T23:04:47.827223403Z 67 PC: 9fa1b | Get or set file attributes
2018-12-17T23:04:47.838211669Z 12 PC: 9fb24 | Flush input buffer and input
2018-12-17T23:04:47.843228123Z 48 PC: 9fb24 | Get DOS version
2018-12-17T23:04:47.845101486Z 9 PC: 9fb24 | Display string (Could not find end pointer)