Sample viewer

vx.netlux.org/Virus.DOS.Deviant.916

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:04:21.83867634Z	47	PC: 13cb4 \| Get disk transfer address
2018-12-17T22:04:21.843223055Z	26	PC: 13cc4 \| Set disk transfer address
2018-12-17T22:04:21.844324494Z	71	PC: 13cce \| Get current directory
2018-12-17T22:04:21.847359474Z	78	PC: 13cdd \| Find first file
2018-12-17T22:04:21.853933966Z	67	PC: 13ceb \| Get or set file attributes
2018-12-17T22:04:21.870082576Z	61	PC: 13cf4 \| Open file (Filename = '')
2018-12-17T22:04:21.876587084Z	66	PC: 13cff \| Move file pointer
2018-12-17T22:04:21.878167623Z	63	PC: 13d0a \| Read file or device (Read 31 bytes on handle 5)
2018-12-17T22:04:21.881045096Z	62	PC: 13d5e \| Close file
2018-12-17T22:04:21.882818866Z	67	PC: 13d69 \| Get or set file attributes
2018-12-17T22:04:21.891517157Z	79	PC: 13cdd \| Find next file
2018-12-17T22:04:21.897091656Z	59	PC: 13d4a \| Change current directory
2018-12-17T22:04:21.899766359Z	62	PC: 13e3b \| Close file
2018-12-17T22:04:21.900870892Z	67	PC: 13e4a \| Get or set file attributes
2018-12-17T22:04:21.909828908Z	59	PC: 13e6a \| Change current directory
2018-12-17T22:04:21.913893173Z	26	PC: 13e77 \| Set disk transfer address
2018-12-17T22:04:21.914987816Z	44	PC: 13e87 \| Get time 0x13e87: cmp dl, 0x5a 0x13e8a: jg 0x13e8f 0x13e8c: jmp 0x13ea3 0x13e8e: ljmp 0x968d:0x9b4 0x13e93: push dx 0x13e94: add al, 0xcd 0x13e96: and word ptr [si - 0x32f8], si 0x13e9a: and word ptr [si - 0x72f7], si 0x13e9e: xchg ax, si 0x13e9f: movsw word ptr es:[di], word ptr [si] 0x13ea0: add al, 0xcd 0x13ea2: and word ptr [bx], ax 0x13ea4: push es 0x13ea5: pop ds 0x13ea6: mov ax, es 0x13ea8: add ax, 0x10 0x13eab: add word ptr cs:[bp + 0x3a9], ax 0x13eb0: cli 0x13eb1: add ax, word ptr cs:[bp + 0x3ad] 0x13eb6: mov ss, ax
2018-12-17T22:04:21.917572628Z	9	PC: 12a5c \| Display string (Could not find end pointer)
2018-12-17T22:04:21.92290456Z	76	PC: 12a61 \| Terminate with return code (Return code = '0')