Sample viewer

vx.netlux.org/Virus.DOS.SillyC.339.b

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:10:19.077236711Z	47	PC: 12ba7 \| Get disk transfer address
2018-12-17T23:10:19.079953713Z	53	PC: 12bb4 \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:10:19.081367378Z	26	PC: 12bc4 \| Set disk transfer address
2018-12-17T23:10:19.082495512Z	37	PC: 12bcc \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:10:19.084557033Z	78	PC: 12bd6 \| Find first file
2018-12-17T23:10:19.09035005Z	67	PC: 12c2b \| Get or set file attributes
2018-12-17T23:10:19.105893662Z	61	PC: 12c35 \| Open file (Filename = 'U�[��!�$%�4�!�M�'')
2018-12-17T23:10:19.112316739Z	63	PC: 12c45 \| Read file or device (Read 11 bytes on handle 5)
2018-12-17T23:10:19.125808655Z	66	PC: 12c5e \| Move file pointer
2018-12-17T23:10:19.127188445Z	64	PC: 12c8a \| Write file or device (Write 348 bytes on handle 5)
2018-12-17T23:10:19.135485547Z	66	PC: 12c93 \| Move file pointer
2018-12-17T23:10:19.14371796Z	64	PC: 12c9d \| Write file or device (Write 11 bytes on handle 5)
2018-12-17T23:10:19.150068104Z	87	PC: 12caf \| Get or set file date and time
2018-12-17T23:10:19.151591899Z	62	PC: 12cb3 \| Close file
2018-12-17T23:10:19.16004657Z	67	PC: 12cc1 \| Get or set file attributes
2018-12-17T23:10:19.169860545Z	37	PC: 12bef \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:10:19.170907874Z	26	PC: 12bf9 \| Set disk transfer address
2018-12-17T23:10:19.174215075Z	9	PC: 12a82 \| Display string (String= 'Goat file (COM). Size=0000014Dh/0000000333d bytes. ')
2018-12-17T23:10:19.178632909Z	76	PC: 12a86 \| Terminate with return code (Return code = '36')