Sample viewer

vx.netlux.org/Virus.DOS.Anti-AV.695

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T23:10:21.714590484Z	53	PC: 12ecf \| Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:10:21.716240026Z	37	PC: 12edc \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:10:21.717448853Z	47	PC: 13094 \| Get disk transfer address
2018-12-17T23:10:21.718556197Z	26	PC: 130a3 \| Set disk transfer address
2018-12-17T23:10:21.720302096Z	78	PC: 12f79 \| Find first file
2018-12-17T23:10:21.726574606Z	79	PC: 12f7f \| Find next file
2018-12-17T23:10:21.729438053Z	79	PC: 12f7f \| Find next file
2018-12-17T23:10:21.732527445Z	79	PC: 12f7f \| Find next file
2018-12-17T23:10:21.746169412Z	79	PC: 12f7f \| Find next file
2018-12-17T23:10:21.749142215Z	79	PC: 12f7f \| Find next file
2018-12-17T23:10:21.7516921Z	79	PC: 12f7f \| Find next file
2018-12-17T23:10:21.755579617Z	79	PC: 12f7f \| Find next file
2018-12-17T23:10:21.75822538Z	67	PC: 12fb0 \| Get or set file attributes
2018-12-17T23:10:21.763742125Z	67	PC: 12fbe \| Get or set file attributes
2018-12-17T23:10:21.779853748Z	61	PC: 12fc6 \| Open file (Filename = 'TEST.COM')
2018-12-17T23:10:21.786326831Z	87	PC: 12fd2 \| Get or set file date and time
2018-12-17T23:10:21.78766045Z	63	PC: 12fe2 \| Read file or device (Read 3 bytes on handle 5)
2018-12-17T23:10:21.797624041Z	87	PC: 13058 \| Get or set file date and time
2018-12-17T23:10:21.799042427Z	62	PC: 1305c \| Close file
2018-12-17T23:10:21.806194571Z	67	PC: 13067 \| Get or set file attributes
2018-12-17T23:10:21.816244127Z	26	PC: 12e6d \| Set disk transfer address
2018-12-17T23:10:21.817282733Z	37	PC: 12ef8 \| Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T23:10:21.818330644Z	9	PC: 12a82 \| Display string (String= 'Goat file (COM). Size=000003E8h/0000001000d bytes. ')
2018-12-17T23:10:21.822956431Z	76	PC: 12a86 \| Terminate with return code (Return code = '36')