Sample viewer

vx.netlux.org/Virus.DOS.Gipro.504

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:05:02.178099063Z	47	PC: 130bf \| Get disk transfer address
2018-12-17T23:05:02.18082019Z	26	PC: 130ce \| Set disk transfer address
2018-12-17T23:05:02.182878581Z	53	PC: 130d3 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:05:02.185050466Z	37	PC: 130e4 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:05:02.187604839Z	78	PC: 130ee \| Find first file
2018-12-17T23:05:02.196318897Z	67	PC: 13154 \| Get or set file attributes
2018-12-17T23:05:02.218369404Z	61	PC: 1315e \| Open file (Filename = 'TEST.EXE')
2018-12-17T23:05:02.22657217Z	63	PC: 13174 \| Read file or device (Read 24 bytes on handle 5)
2018-12-17T23:05:02.229516898Z	87	PC: 1325a \| Get or set file date and time
2018-12-17T23:05:02.231408135Z	62	PC: 1325e \| Close file
2018-12-17T23:05:02.239473362Z	67	PC: 1326c \| Get or set file attributes
2018-12-17T23:05:02.252506832Z	79	PC: 130fb \| Find next file
2018-12-17T23:05:02.255532923Z	37	PC: 13107 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:05:02.257172296Z	26	PC: 13111 \| Set disk transfer address
2018-12-17T23:05:02.262562543Z	9	PC: 12a4a \| Display string (Could not find end pointer)
2018-12-17T23:05:02.269921772Z	25	PC: 12d33 \| Get default drive
2018-12-17T23:05:02.27145716Z	71	PC: 12a5b \| Get current directory
2018-12-17T23:05:02.276817029Z	14	PC: 12a7f \| Set default drive (Drive = 'W')
2018-12-17T23:05:02.278226129Z	59	PC: 12a93 \| Change current directory
2018-12-17T23:05:02.283002131Z	14	PC: 12cc5 \| Set default drive (Drive = 'A')
2018-12-17T23:05:02.285131084Z	59	PC: 12d40 \| Change current directory
2018-12-17T23:05:02.289826024Z	59	PC: 12ccf \| Change current directory
2018-12-17T23:05:02.291930882Z	9	PC: 12cd6 \| Display string (Could not find end pointer)
2018-12-17T23:05:02.309812069Z	76	PC: 12cda \| Terminate with return code (Return code = '36')