Sample viewer

vx.netlux.org/Virus.DOS.Bv.569

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T23:05:48.574506687Z 26 PC: 13a2a | Set disk transfer address
2018-12-17T23:05:48.576194671Z 53 PC: 13a32 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:05:48.577435233Z 37 PC: 13a42 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:05:48.578658253Z 78 PC: 13a52 | Find first file
2018-12-17T23:05:48.583567784Z 67 PC: 13c11 | Get or set file attributes
2018-12-17T23:05:48.60123343Z 61 PC: 13a5f | Open file (Filename = 'TEST.EXE')
2018-12-17T23:05:48.608639586Z 63 PC: 13a6f | Read file or device (Read 26 bytes on handle 5)
2018-12-17T23:05:48.611450421Z 66 PC: 13a7b | Move file pointer
2018-12-17T23:05:48.614058816Z 87 PC: 13a92 | Get or set file date and time
2018-12-17T23:05:48.615620883Z 62 PC: 13a98 | Close file
2018-12-17T23:05:48.622383839Z 67 PC: 13c11 | Get or set file attributes
2018-12-17T23:05:48.636947613Z 79 PC: 13a52 | Find next file
2018-12-17T23:05:48.63970645Z 37 PC: 13abc | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:05:48.641071237Z 26 PC: 13ac8 | Set disk transfer address
2018-12-17T23:05:48.643309265Z 9 PC: 12cf8 | Display string (Could not find end pointer)
2018-12-17T23:05:48.647385398Z 76 PC: 12d02 | Terminate with return code (Return code = '0')