Sample viewer

vx.netlux.org/Virus.DOS.Nanjing.2976.b

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:08:39.504939694Z	255	PC: 17ef0 \| UNKNOWN!
2018-12-17T23:08:39.506255148Z	37	PC: 13479 \| Set interrupt vector (Interrupt = '74' AKA 'Reallocate memory')
2018-12-17T23:08:39.507359571Z	37	PC: 13483 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:08:39.508386188Z	53	PC: 13488 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T23:08:39.510500111Z	37	PC: 1349c \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T23:08:39.511540139Z	74	PC: 134b1 \| Reallocate memory
2018-12-17T23:08:39.512865492Z	75	PC: 134f9 \| Execute program
2018-12-17T23:08:39.534949578Z	99	PC: 14426 \| Get DBCS lead byte table pointer
2018-12-17T23:08:39.536326032Z	68	PC: 14440 \| I/O control for devices (Set for = '')
2018-12-17T23:08:39.537724053Z	68	PC: 1444b \| I/O control for devices (Set for = '')
2018-12-17T23:08:39.544006614Z	68	PC: 14456 \| I/O control for devices (Set for = '')
2018-12-17T23:08:39.546127189Z	68	PC: 1445e \| I/O control for devices (Set for = '��b��g�t�S3��[r�2��W�<t��>W')
2018-12-17T23:08:39.548297107Z	48	PC: 14463 \| Get DOS version
2018-12-17T23:08:39.550123647Z	64	PC: 146e5 \| Write file or device (Write 29 bytes on handle 2)
2018-12-17T23:08:39.556477567Z	64	PC: 146e5 \| Write file or device (Write 9 bytes on handle 1)
2018-12-17T23:08:39.559612805Z	64	PC: 146e5 \| Write file or device (Write 17 bytes on handle 1)
2018-12-17T23:08:39.564344671Z	76	PC: 154f8 \| Terminate with return code (Return code = '4')
2018-12-17T23:08:39.568279171Z	77	PC: 1350d \| Get program return code
2018-12-17T23:08:39.569635967Z	49	PC: 1351d \| Terminate and stay resident (Return code = '4' \| Memory size = '202')