Sample viewer

vx.netlux.org/Virus.DOS.April_1st.Com.942.a

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T23:07:04.419253293Z 221 PC: 12a5f | UNKNOWN!
2018-12-17T23:07:04.420483392Z 53 PC: 12a8f | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T23:07:04.421555881Z 37 PC: 12a9f | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T23:07:04.422582522Z 53 PC: 12aa4 | Get interrupt vector (Interrupt = '9' AKA 'Display string')
2018-12-17T23:07:04.423928236Z 37 PC: 12ab4 | Set interrupt vector (Interrupt = '9' AKA 'Display string')
2018-12-17T23:07:04.425550302Z 74 PC: 12acf | Reallocate memory
2018-12-17T23:07:04.426962858Z 75 PC: 12b06 | Execute program
2018-12-17T23:07:04.442898336Z 77 PC: 12b0a | Get program return code
2018-12-17T23:07:04.445275122Z 49 PC: 12b13 | Terminate and stay resident (Return code = '0' | Memory size = '75')

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":15740,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:44:22.346824624Z 221 PC: 12a5f | UNKNOWN!
2018-12-25T12:44:22.348041752Z 53 PC: 12a8f | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:44:22.350622479Z 37 PC: 12a9f | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:44:22.351917611Z 53 PC: 12aa4 | Get interrupt vector (Interrupt = '9' AKA 'Display string')
2018-12-25T12:44:22.353274123Z 37 PC: 12ab4 | Set interrupt vector (Interrupt = '9' AKA 'Display string')
2018-12-25T12:44:22.363033443Z 74 PC: 12acf | Reallocate memory
2018-12-25T12:44:22.364701264Z 75 PC: 12b06 | Execute program
2018-12-25T12:44:22.382661901Z 77 PC: 12b0a | Get program return code
2018-12-25T12:44:22.385377895Z 49 PC: 12b13 | Terminate and stay resident (Return code = '0' | Memory size = '75')

{"DateBased":true,"Day":1,"Month":1,"Year":1990,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":15740,"SideJobID":0}

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-25T12:44:22.522917531Z 221 PC: 12a5f | UNKNOWN!
2018-12-25T12:44:22.52390635Z 53 PC: 12a8f | Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:44:22.525700358Z 37 PC: 12a9f | Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-25T12:44:22.528162197Z 53 PC: 12aa4 | Get interrupt vector (Interrupt = '9' AKA 'Display string')
2018-12-25T12:44:22.529564263Z 37 PC: 12ab4 | Set interrupt vector (Interrupt = '9' AKA 'Display string')
2018-12-25T12:44:22.530939113Z 74 PC: 12acf | Reallocate memory
2018-12-25T12:44:22.532991919Z 75 PC: 12b06 | Execute program
2018-12-25T12:44:22.54771018Z 77 PC: 12b0a | Get program return code
2018-12-25T12:44:22.548774505Z 49 PC: 12b13 | Terminate and stay resident (Return code = '0' | Memory size = '75')