Sample viewer

vx.netlux.org/Virus.DOS.Zogzog.915

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:10:17.14420088Z	68	PC: 21ed4 \| I/O control for devices (Set for = '')
2018-12-17T23:10:17.146827532Z	53	PC: 21f18 \| Get interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T23:10:17.148464641Z	37	PC: 21f29 \| Set interrupt vector (Interrupt = '33' AKA 'Random read')
2018-12-17T23:10:17.15048387Z	53	PC: 9f9bf \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:10:17.152915415Z	37	PC: 9f9d0 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:10:17.154904096Z	47	PC: 9f9d4 \| Get disk transfer address
2018-12-17T23:10:17.156782701Z	26	PC: 9f9df \| Set disk transfer address
2018-12-17T23:10:17.15965789Z	78	PC: 9f97c \| Find first file
2018-12-17T23:10:17.166987409Z	78	PC: 9f97c \| Find first file
2018-12-17T23:10:17.174313491Z	78	PC: 9f97c \| Find first file
2018-12-17T23:10:17.181457762Z	26	PC: 9f9f7 \| Set disk transfer address
2018-12-17T23:10:17.182888794Z	67	PC: 9f9fe \| Get or set file attributes
2018-12-17T23:10:17.189107363Z	67	PC: 9fa0b \| Get or set file attributes
2018-12-17T23:10:17.526437124Z	61	PC: 9fa12 \| Open file (Filename = '��~��')
2018-12-17T23:10:17.533623414Z	87	PC: 9fa20 \| Get or set file date and time
2018-12-17T23:10:17.535495426Z	63	PC: 9fa33 \| Read file or device (Read 32 bytes on handle 5)
2018-12-17T23:10:17.538961306Z	66	PC: 9fafa \| Move file pointer
2018-12-17T23:10:17.541790869Z	63	PC: 9fb20 \| Read file or device (Read 10 bytes on handle 5)
2018-12-17T23:10:17.545149979Z	66	PC: 9fb2f \| Move file pointer
2018-12-17T23:10:17.547346842Z	64	PC: 9fac0 \| Write file or device (Write 4 bytes on handle 5)
2018-12-17T23:10:17.551366784Z	66	PC: 9fac9 \| Move file pointer
2018-12-17T23:10:17.553458049Z	64	PC: 9fad3 \| Write file or device (Write 915 bytes on handle 5)
2018-12-17T23:10:17.56365883Z	87	PC: 9fae3 \| Get or set file date and time
2018-12-17T23:10:17.566229716Z	62	PC: 9fb3c \| Close file
2018-12-17T23:10:17.57480553Z	67	PC: 9fb51 \| Get or set file attributes
2018-12-17T23:10:17.579930622Z	37	PC: 9fb61 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:10:17.582153002Z	68	PC: 21f49 \| I/O control for devices (Set for = 'S�')
2018-12-17T23:10:17.584044601Z	9	PC: 12a85 \| Display string (String= 'Goat virus file. jnk trap s COM goat F400H bytes long ')
2018-12-17T23:10:17.590420907Z	0	PC: 12a89 \| Program terminate