Sample viewer

vx.netlux.org/Virus.DOS.ExeHeader.Olja.398

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T23:08:01.829777721Z 48 PC: 12abe | Get DOS version
2018-12-17T23:08:01.831502597Z 82 PC: 12ac3 | Get DOS internal pointers (SYSVARS)
2018-12-17T23:08:01.833382656Z 42 PC: db38 | Get date 0xdb38: mov word ptr [0x200], dx
0xdb3c: push es
0xdb3d: pop ds
0xdb3e: ljmp ptr cs:[bx + 0x14]
0xdb42: add byte ptr [bx + 0x6c], cl
0xdb45: jns 0xdba8
0xdb47: and byte ptr [bp + di + 0x69], cl
0xdb4a: bound bp, dword ptr [bx + di + 0x6e]
0xdb4d: popaw
0xdb4e: push ax
0xdb4f: mov al, ah
0xdb51: pushf
0xdb52: cmp word ptr cs:[0x200], 0x41a
0xdb59: jne 0xdb6c
0xdb5b: cmp al, 3
0xdb5d: jne 0xdb74
0xdb5f: popf
0xdb60: pop ax
0xdb61: push cs
0xdb62: pop es
2018-12-17T23:08:01.836238924Z 48 PC: 12abe | Get DOS version
2018-12-17T23:08:01.837964314Z 82 PC: 12ac3 | Get DOS internal pointers (SYSVARS)